Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/4b83db-f4ff-4f0c-a3f6-154574fbb389/1/vUpwlssV3gs1GYeygPaw4YlXFWg.roa
File: vUpwlssV3gs1GYeygPaw4YlXFWg.roa (raw, json)
Hash identifier: Yj26AgPhBx760r9RVW6E5aLMirgU5QEsnjFZEMriYGE=
Subject key identifier: BD:4A:70:96:CB:15:DE:0B:35:19:87:B2:80:F6:B0:E1:89:57:15:68
Certificate issuer: /CN=7339870e10262c6709b7b61637134b5f9a6c78ca
Certificate serial: 01856CB83F74520C9C10CD6D2343B220FD87
Authority key identifier: 73:39:87:0E:10:26:2C:67:09:B7:B6:16:37:13:4B:5F:9A:6C:78:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czmHDhAmLGcJt7YWNxNLX5pseMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/4b83db-f4ff-4f0c-a3f6-154574fbb389/1/vUpwlssV3gs1GYeygPaw4YlXFWg.roa
Signing time: Sun 01 Jan 2023 09:44:52 +0000
ROA not before: Sun 01 Jan 2023 09:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25091
IP address blocks: 213.139.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:3f:74:52:0c:9c:10:cd:6d:23:43:b2:20:fd:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7339870e10262c6709b7b61637134b5f9a6c78ca
Validity
Not Before: Jan 1 09:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd4a7096cb15de0b351987b280f6b0e189571568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c0:c4:db:e2:f2:71:b9:de:83:d5:9d:fb:63:
b5:dc:7e:64:dd:7b:b5:43:67:2d:65:fd:d7:97:7b:
bf:a4:f8:0a:7e:c8:c8:aa:65:53:ea:4a:8b:88:9f:
a9:41:fc:cf:1b:e5:0b:53:83:5f:e5:ef:44:75:f8:
56:07:1c:1f:5f:92:2d:1e:78:34:60:16:7d:53:6a:
6d:db:9b:cc:9d:a5:83:2a:b4:87:ec:b9:58:bb:99:
d6:3b:e7:aa:86:02:b7:82:73:ba:81:a8:f0:da:a5:
24:02:63:65:7c:9a:15:1a:17:81:47:14:94:25:76:
01:a8:9f:64:45:62:f9:93:b3:ea:a4:44:94:96:a0:
c7:e5:38:6f:11:86:b2:98:99:37:e7:65:60:b4:d1:
6e:a9:a9:fb:3e:62:b9:b7:ce:fd:3a:4d:b0:38:d2:
47:53:a4:38:aa:c1:e0:08:14:bc:20:e2:69:2d:f6:
5a:68:29:3b:d2:b8:c1:3a:0b:3a:c5:be:fe:78:33:
52:ec:b0:08:f6:a1:4c:8c:5a:c7:a4:41:88:ce:ef:
81:93:cc:a5:00:18:ee:8c:95:a9:d6:85:81:2a:0c:
ed:03:5b:8c:a6:f2:2d:b9:2d:35:8a:5d:44:21:a9:
45:17:77:4e:56:84:3e:9c:43:0e:e0:0b:f0:0b:0d:
29:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:4A:70:96:CB:15:DE:0B:35:19:87:B2:80:F6:B0:E1:89:57:15:68
X509v3 Authority Key Identifier:
keyid:73:39:87:0E:10:26:2C:67:09:B7:B6:16:37:13:4B:5F:9A:6C:78:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czmHDhAmLGcJt7YWNxNLX5pseMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4b83db-f4ff-4f0c-a3f6-154574fbb389/1/vUpwlssV3gs1GYeygPaw4YlXFWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/4b83db-f4ff-4f0c-a3f6-154574fbb389/1/czmHDhAmLGcJt7YWNxNLX5pseMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.139.244.0/22
Signature Algorithm: sha256WithRSAEncryption
43:40:dd:16:30:6b:51:44:3d:bd:76:a2:4a:b6:42:fb:74:05:
66:c2:7b:e2:6b:f8:a1:7d:b9:90:65:d5:8b:bf:28:95:8c:94:
96:68:36:9a:2f:cf:d5:cb:5a:cd:30:17:c8:1a:50:33:63:e4:
70:d2:9f:51:96:ea:c7:1e:b3:dc:e0:03:f9:f4:cd:2a:af:9b:
1a:cc:4b:f7:db:a1:ce:29:82:d0:c6:65:ed:e3:a2:b5:d8:2f:
e0:23:ad:b7:37:16:f6:56:ea:13:df:31:e2:c1:e7:6a:3a:ac:
45:7e:7b:6d:d0:36:4d:97:c3:fa:e2:93:29:35:eb:40:cb:be:
98:98:c8:7c:d9:fd:d6:80:6c:93:74:d0:48:50:a7:48:4c:c6:
e3:8b:bb:6c:01:63:5d:d7:12:3a:93:b0:cd:fc:51:61:bc:3d:
5d:19:90:3a:36:df:e7:ed:46:40:18:74:a6:43:6f:7b:08:0f:
b6:a5:d1:42:fa:2b:8e:0c:23:d1:cd:55:6d:fe:27:44:38:4f:
c9:a2:5e:31:60:02:67:58:0c:f4:6d:00:58:93:11:b1:37:7c:
b9:c6:99:fe:27:e3:02:ac:33:dc:6c:da:cb:b9:35:cb:9d:18:
11:50:11:0e:ed:ac:82:ec:56:07:9a:db:59:e2:46:4b:09:91:
8d:0f:b2:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:07 2024 by rpki-client on console-fra.rpki-client.org