Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/riyAVi-OfBRaVdtEHEnW_omw0wA.roa
File: riyAVi-OfBRaVdtEHEnW_omw0wA.roa (raw, json)
Hash identifier: Rv6wWYu1qIB3TfDbs+3JUT3jFxZZS+Pp8NLUecyYscY=
Subject key identifier: AE:2C:80:56:2F:8E:7C:14:5A:55:DB:44:1C:49:D6:FE:89:B0:D3:00
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 0185703071BAC249DD23F83C36AD61BA028A
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/riyAVi-OfBRaVdtEHEnW_omw0wA.roa
Signing time: Mon 02 Jan 2023 01:55:01 +0000
ROA not before: Mon 02 Jan 2023 01:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204494
IP address blocks: 84.2.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:71:ba:c2:49:dd:23:f8:3c:36:ad:61:ba:02:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae2c80562f8e7c145a55db441c49d6fe89b0d300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:6a:ff:05:62:4d:97:61:b0:0e:46:c8:b3:02:
eb:5f:d5:05:d2:5b:96:d1:f3:4a:b4:22:90:f8:b3:
a2:62:a3:0e:53:b8:79:f2:b1:99:41:a0:37:07:e6:
8f:59:c6:4c:d1:36:83:a2:b4:01:79:3a:94:fc:ab:
61:14:25:8b:7f:04:c8:c5:d4:be:1a:c7:b0:6b:66:
f6:60:37:85:6f:ae:74:52:33:e8:eb:df:8c:b1:07:
23:f9:93:06:8b:ed:a8:bf:19:1e:64:9f:24:a6:ce:
b5:b3:4e:3c:58:ff:aa:13:60:66:a5:49:01:47:d0:
45:9b:cd:f0:73:c8:9d:3b:8b:a8:dd:86:b1:dc:66:
f2:ff:05:b9:7b:0c:13:26:52:5f:dd:4d:40:79:8d:
71:ca:c6:ee:b9:77:c1:eb:fc:41:d7:18:8f:b7:f3:
e8:1b:f7:f4:cb:ba:ca:fd:7d:24:df:1d:0e:3e:3c:
32:b7:8a:a2:21:64:71:f5:24:0d:19:c6:ad:d6:ae:
c6:41:f4:04:91:33:e9:3e:2b:0b:8a:69:9f:58:cb:
62:e7:43:44:7e:a5:0f:49:a2:21:7c:00:04:13:00:
8e:fe:6c:00:73:6b:c5:1b:af:7a:a1:2c:53:4a:b2:
93:82:86:50:a9:2f:1e:14:de:dd:4f:d2:b5:88:8f:
75:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:2C:80:56:2F:8E:7C:14:5A:55:DB:44:1C:49:D6:FE:89:B0:D3:00
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/riyAVi-OfBRaVdtEHEnW_omw0wA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.2.55.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:13:ad:18:cc:2b:28:70:ea:15:93:61:68:23:1d:d3:5d:36:
e5:2e:14:f3:1e:3e:aa:fb:ed:8d:b7:fe:f5:c4:8d:4d:db:9a:
80:83:5d:73:7c:9d:c0:a3:87:bc:5e:87:f0:e2:ea:43:ea:0c:
06:3b:3c:a9:bf:d9:ad:75:dd:13:02:31:3a:36:ba:05:a1:7e:
d1:54:d0:7b:6a:05:07:3b:aa:ac:98:32:d4:2d:d9:05:88:aa:
0f:61:29:0b:45:a7:5a:bc:d7:58:d9:f2:bc:b0:61:06:b6:ec:
49:99:43:13:2c:25:68:89:3f:69:2d:d6:db:16:01:2d:6f:96:
cf:3f:e7:66:f6:b7:fb:7c:52:99:4a:ff:94:87:d0:41:4b:5d:
b0:d2:b3:28:01:3a:58:fb:88:bf:46:fe:ba:65:93:31:58:74:
40:19:74:6f:b0:db:5b:fd:88:88:78:86:ae:c1:90:c2:15:9d:
5d:2d:c0:42:29:2a:55:26:fc:3f:40:cf:91:56:df:9f:e8:02:
02:47:e8:04:4b:91:3a:f0:a5:ab:d5:2e:08:fb:29:f2:1b:97:
8c:c7:c1:f9:ce:95:1a:b1:4d:0e:23:83:ae:5b:6f:22:ac:be:
b3:91:be:e7:e9:b4:ba:fb:fc:b5:18:c5:30:bd:6d:77:d1:f5:
f0:20:84:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:51 2024 by rpki-client on console-ams.rpki-client.org