Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/vQxsjzFL9gQ4TdNQmbqVwmN2EGw.roa
File: vQxsjzFL9gQ4TdNQmbqVwmN2EGw.roa (raw, json)
Hash identifier: poTmVKQRZxZIvqJscUhO0QqwmFIpRuDYm7AnSd4A5ZE=
Subject key identifier: BD:0C:6C:8F:31:4B:F6:04:38:4D:D3:50:99:BA:95:C2:63:76:10:6C
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 01857139CE1E7B3A519F75FC94AF71DAC0C0
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/vQxsjzFL9gQ4TdNQmbqVwmN2EGw.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58104
IP address blocks: 94.184.88.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ce:1e:7b:3a:51:9f:75:fc:94:af:71:da:c0:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd0c6c8f314bf604384dd35099ba95c26376106c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:32:0f:92:63:04:b4:11:d8:76:f9:18:f5:f4:
bf:3f:5c:ae:f4:0f:ec:b9:f2:b9:eb:98:60:6c:35:
18:28:2f:10:05:a5:ac:d3:d2:1c:12:ad:d9:5b:da:
70:20:0f:2e:bf:69:66:a7:57:61:84:b3:92:c8:8e:
6d:dd:72:65:a1:86:82:e3:14:b9:f3:0f:ca:8e:e7:
ac:ae:08:0c:1c:df:1e:8d:79:88:11:9b:48:db:59:
aa:99:45:b1:3e:61:af:43:c9:4a:72:6e:80:39:c7:
34:51:60:c5:10:8e:a6:95:c5:48:bc:e5:6d:1a:24:
19:03:e1:67:d9:5c:84:3f:59:7c:a9:54:9f:5d:94:
a4:cd:70:c5:56:13:04:6e:76:be:4e:1a:e2:82:b0:
fa:26:de:35:3c:6d:70:ba:db:d9:b4:46:62:50:83:
fc:7b:7e:51:04:7b:44:7b:1c:85:5e:d9:79:73:5b:
f8:52:31:3a:85:0d:da:c6:b9:f3:0c:0e:31:45:3d:
c8:0c:24:73:57:0e:03:96:c7:5c:7e:6c:c2:e9:0d:
c0:3d:77:1e:52:82:db:68:14:65:2b:02:ae:8c:ef:
eb:07:90:ee:d2:68:cb:46:07:9a:39:bb:22:b2:ce:
96:d2:03:e0:a3:ea:7e:1f:36:38:72:8e:90:98:ea:
27:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0C:6C:8F:31:4B:F6:04:38:4D:D3:50:99:BA:95:C2:63:76:10:6C
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/vQxsjzFL9gQ4TdNQmbqVwmN2EGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.184.88.0/22
Signature Algorithm: sha256WithRSAEncryption
43:aa:52:89:9a:df:93:fd:e9:fa:b1:3f:b6:ac:96:6f:2d:30:
41:f3:4c:cb:9b:9b:e0:2c:de:8d:0d:04:6e:d1:a3:a9:94:1d:
ce:98:41:23:6a:37:01:5c:be:3d:58:7d:bb:bf:13:22:13:cc:
c6:4c:33:5d:47:c4:cd:be:29:18:7e:9e:78:4d:ca:74:df:00:
50:07:ae:ac:b6:49:19:44:82:b3:ca:58:d8:d3:ed:7b:ce:82:
35:43:d9:1b:22:47:83:65:cb:eb:73:ad:67:2f:05:2b:dd:35:
e6:50:4a:e1:4a:b3:23:e2:28:50:3d:cf:e7:d9:aa:51:4f:fe:
a3:a0:6a:9b:c4:09:5e:a2:73:47:d4:bb:db:7b:df:e6:42:4d:
b2:89:4a:06:48:9b:49:6c:13:d8:6c:2e:09:b5:0d:f5:ea:74:
aa:87:a2:eb:74:4a:57:94:a3:75:e7:2c:21:fc:17:4a:0c:45:
00:51:38:c9:eb:ac:0b:e8:bf:46:2a:6c:54:15:5a:53:df:9e:
f1:2a:cc:da:ec:1a:6a:1e:4c:0f:f3:ed:79:8c:db:77:80:3e:
98:1f:53:41:7d:c8:87:ff:d5:2a:22:ca:ba:ae:bd:4e:36:90:
1e:f4:86:92:96:94:a2:a9:42:62:dd:ce:ae:f1:8a:5c:89:c9:
74:fc:e6:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:42 2024 by rpki-client on console-ams.rpki-client.org