Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/rYwsH1P7-7sxMhdRlW6tj9GI2Dk.roa
File: rYwsH1P7-7sxMhdRlW6tj9GI2Dk.roa (raw, json)
Hash identifier: rYD/AZJ12T5ZE1yrRrwX5A6AsDxA2m9B/JkfnxCetSU=
Subject key identifier: AD:8C:2C:1F:53:FB:FB:BB:31:32:17:51:95:6E:AD:8F:D1:88:D8:39
Certificate issuer: /CN=ecaa5ed7276a6c61cdaf3d38776acf9c24981415
Certificate serial: 0185719E7CDA774F004CF4BD6B63E0BBE6EA
Authority key identifier: EC:AA:5E:D7:27:6A:6C:61:CD:AF:3D:38:77:6A:CF:9C:24:98:14:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Kpe1ydqbGHNrz04d2rPnCSYFBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/rYwsH1P7-7sxMhdRlW6tj9GI2Dk.roa
Signing time: Mon 02 Jan 2023 08:34:50 +0000
ROA not before: Mon 02 Jan 2023 08:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57783
IP address blocks: 195.43.134.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:7c:da:77:4f:00:4c:f4:bd:6b:63:e0:bb:e6:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecaa5ed7276a6c61cdaf3d38776acf9c24981415
Validity
Not Before: Jan 2 08:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad8c2c1f53fbfbbb31321751956ead8fd188d839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b0:32:90:56:38:0f:87:ad:9b:8b:17:0e:59:
bf:d8:82:f3:b4:e1:95:89:2d:25:47:89:cc:b3:09:
7c:0c:79:6e:a3:31:88:9a:e0:25:6e:a2:a3:04:a1:
f8:a5:d5:a2:5a:eb:86:52:b0:cc:15:4a:85:98:3c:
4e:2e:56:ac:a6:5c:0f:ab:ff:10:c0:94:97:c8:d4:
e8:32:53:dd:af:07:f5:17:55:a3:d6:f3:a4:22:cd:
cf:93:b8:9f:ea:53:d7:cc:e8:e2:e2:a2:8a:e9:a6:
04:b4:09:49:ab:fe:40:fb:cb:81:ef:52:72:b9:1a:
51:2a:8e:63:cb:72:a0:81:ba:9c:91:96:03:2a:28:
3e:60:49:17:fc:30:d3:7b:62:b2:80:51:38:0c:5a:
85:ca:d5:b9:4a:e2:e3:29:8d:b2:c4:40:94:4b:de:
ac:05:28:2f:f7:34:6f:5e:79:15:9d:b3:63:e2:dc:
65:6c:48:e3:27:07:11:1e:d1:ba:f2:f9:31:ef:78:
fa:8f:e2:1e:db:7a:7d:bb:13:74:da:99:ce:37:0e:
a6:9e:9b:81:7c:ad:bc:bf:5b:7a:52:b7:79:3a:4f:
a4:cf:17:e9:50:d4:bf:41:15:38:aa:f3:e6:b9:36:
2b:21:74:cc:d3:74:7d:86:79:c6:1a:ce:83:dd:f9:
5d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8C:2C:1F:53:FB:FB:BB:31:32:17:51:95:6E:AD:8F:D1:88:D8:39
X509v3 Authority Key Identifier:
keyid:EC:AA:5E:D7:27:6A:6C:61:CD:AF:3D:38:77:6A:CF:9C:24:98:14:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Kpe1ydqbGHNrz04d2rPnCSYFBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/rYwsH1P7-7sxMhdRlW6tj9GI2Dk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/aff364-9d53-44c7-ae8e-1a106213d444/1/7Kpe1ydqbGHNrz04d2rPnCSYFBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.134.0/24
Signature Algorithm: sha256WithRSAEncryption
48:e9:b1:0b:a4:1c:a6:99:e4:82:a6:73:91:62:3b:5c:d7:a1:
eb:d3:ed:14:ad:4b:9b:a9:fc:58:1f:db:5e:31:64:9c:04:b0:
0c:17:fa:80:56:8b:86:58:28:d5:c7:36:e8:60:b5:7e:04:2b:
c3:cc:c8:0a:75:eb:90:c8:43:95:22:9d:6d:0f:e0:25:87:16:
0a:4b:dc:39:96:62:be:12:a6:35:0b:af:73:4f:87:a2:1b:76:
a9:55:67:44:2f:3f:a3:71:ef:51:83:ab:75:f3:80:6e:35:df:
45:cf:bc:da:0a:24:9c:a0:1b:ed:a0:0f:ba:92:fc:c2:96:e0:
e1:1f:56:b5:27:1f:a7:bd:60:19:73:18:ff:0f:75:f7:c0:0e:
a6:fa:7a:45:53:e9:57:86:e4:29:60:3c:a8:97:50:a5:12:33:
71:86:39:ef:5d:10:38:63:ef:f5:bb:09:ff:29:2a:6b:98:08:
a4:af:c1:ca:b5:a6:59:2a:c0:97:1e:88:08:03:20:0d:53:75:
19:ee:02:ad:a9:1c:86:e6:93:5d:7b:35:ff:6c:f3:be:c1:49:
c9:5f:0a:e0:4e:88:b4:8a:46:67:ad:fc:ae:8a:20:d2:4b:2e:
54:2d:75:94:32:e4:bd:bf:7e:70:ba:14:12:d1:2a:0e:24:af:
22:3e:5f:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:30 2024 by rpki-client on console-fra.rpki-client.org