Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/b8dGhpi2BuCUkv92JnMyub-D-0U.roa
File: b8dGhpi2BuCUkv92JnMyub-D-0U.roa (raw, json)
Hash identifier: Mn2+0g+JUWANY7zTFRUz8wkwbfj4pTVWEBlHxlsgm9g=
Subject key identifier: 6F:C7:46:86:98:B6:06:E0:94:92:FF:76:26:73:32:B9:BF:83:FB:45
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 01857139CB855737BAB5F852096E810955C1
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/b8dGhpi2BuCUkv92JnMyub-D-0U.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47558
IP address blocks: 94.184.176.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cb:85:57:37:ba:b5:f8:52:09:6e:81:09:55:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fc7468698b606e09492ff76267332b9bf83fb45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7f:72:ba:40:f3:5d:84:31:b9:f9:ed:9b:0d:
cf:d0:d2:49:3e:72:c8:4b:20:f9:ce:6d:54:8d:fc:
78:ea:af:be:a5:14:59:9d:2f:e8:3d:40:e2:e1:a5:
c9:24:f9:de:38:84:40:f9:7d:fa:10:d8:27:11:32:
f5:b6:39:94:9b:1e:3a:1a:05:cd:35:89:e6:da:62:
0d:50:23:5f:11:2d:6f:af:df:72:77:61:eb:1b:34:
20:39:75:c3:83:24:71:cc:cb:8a:39:56:d1:af:fc:
47:df:f3:f7:73:5f:ef:8b:d2:e2:55:9b:16:10:3c:
6f:d1:d0:cb:0b:2c:86:d1:96:01:58:d6:51:7d:00:
00:46:ef:75:00:06:51:fc:46:a9:32:ea:42:11:8b:
28:c0:12:2a:03:50:1d:2a:e7:65:33:33:5b:36:35:
5d:e5:0b:d3:dd:48:9e:e7:bb:61:28:27:b1:8f:4c:
a0:78:53:41:cf:f4:a1:91:a1:6d:5c:f8:f1:45:3e:
03:e2:7d:f6:ad:eb:b0:fc:01:37:ee:e9:3d:02:ea:
66:5e:c9:b9:aa:c1:72:73:f5:8f:f4:49:a5:72:7e:
66:b5:b7:37:6e:66:82:6b:b1:2b:81:85:6d:00:46:
3b:91:a0:54:f3:25:29:b5:46:d1:a4:dd:fa:e2:78:
27:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C7:46:86:98:B6:06:E0:94:92:FF:76:26:73:32:B9:BF:83:FB:45
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/b8dGhpi2BuCUkv92JnMyub-D-0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.184.176.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:34:c9:f2:24:8e:65:ab:e4:7d:96:58:a1:b5:b2:e7:b0:23:
43:08:f1:64:8d:50:1e:ce:72:de:4d:e5:f9:6b:c6:11:de:8f:
ff:47:a2:7a:19:20:3e:32:64:37:4a:41:fd:5c:2d:4c:63:9c:
42:95:d3:8f:1d:35:6c:5f:53:87:5d:fc:53:e6:24:c8:08:d0:
75:a0:43:fa:3c:d7:06:98:b0:2e:57:ce:6e:d9:67:55:c1:b8:
9e:9f:97:8e:f5:9a:3d:c0:b8:03:ab:36:1a:fe:e3:76:9c:c9:
79:f4:df:d5:30:f6:ca:24:f6:b7:e9:50:91:f8:42:dc:6b:92:
14:6d:09:bb:4f:e6:84:ce:2c:c0:41:5e:1d:38:e5:88:2f:d0:
07:ad:92:0c:1d:68:55:49:85:2d:59:76:39:96:ea:09:e0:f9:
71:c9:e0:71:88:e0:f4:f2:5d:eb:70:cf:f5:bc:2b:47:26:84:
7f:9b:37:e7:07:7f:dc:1e:66:ee:b8:19:ed:9c:50:6f:88:b2:
44:59:43:a0:a6:94:a3:e5:bd:5d:ac:83:b4:aa:01:55:a6:87:
6f:cc:43:e9:e1:b3:19:47:49:42:51:63:1c:c1:bf:46:71:98:
26:e3:a2:47:9d:22:1b:32:e0:aa:02:fb:56:41:9f:36:5f:e7:
e0:10:39:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:00 2024 by rpki-client on console-fra.rpki-client.org