Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/IDyzsVb6LWVyPRp4EMOYjqUOvIY.roa
File: IDyzsVb6LWVyPRp4EMOYjqUOvIY.roa (raw, json)
Hash identifier: axLKmjg2y4qo3YUlxOCWedDFAKyVXpOsKLpKwjQQ3fg=
Subject key identifier: 20:3C:B3:B1:56:FA:2D:65:72:3D:1A:78:10:C3:98:8E:A5:0E:BC:86
Certificate issuer: /CN=00775d9471b85d963fef6d283590e2d942dd5c21
Certificate serial: 01856F5DB6AB8BE5892B2ACF774DD94E022C
Authority key identifier: 00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/IDyzsVb6LWVyPRp4EMOYjqUOvIY.roa
Signing time: Sun 01 Jan 2023 22:04:50 +0000
ROA not before: Sun 01 Jan 2023 22:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49207
IP address blocks: 87.107.94.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:b6:ab:8b:e5:89:2b:2a:cf:77:4d:d9:4e:02:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00775d9471b85d963fef6d283590e2d942dd5c21
Validity
Not Before: Jan 1 22:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=203cb3b156fa2d65723d1a7810c3988ea50ebc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c9:bf:24:66:21:12:16:8d:f4:33:19:78:d9:
66:91:2b:3a:9c:df:bc:40:1f:08:6b:da:34:cd:02:
dc:b1:6c:ce:b1:cf:e8:39:ef:a6:6e:dc:51:a2:2f:
d5:58:7a:df:72:f5:8d:f7:8b:bc:ac:b4:b6:11:71:
19:98:f4:d9:fe:f8:5d:e8:2f:30:a2:d7:71:b9:5e:
85:fb:d0:06:20:38:b1:d3:a0:c3:6b:35:67:0a:5a:
4a:8f:f7:d2:70:12:fc:a3:a4:40:da:89:cf:5b:1b:
00:b6:a0:84:58:29:56:6b:24:6b:7a:8f:43:c7:4c:
ca:e0:17:93:35:91:3d:76:5b:55:6c:c3:ad:dd:2a:
22:0e:8e:0c:14:f3:00:f3:47:68:7a:55:7c:1a:fe:
b7:04:07:2d:45:f5:76:ad:db:13:24:e1:7e:e4:d1:
f9:dc:0e:2e:eb:7b:01:81:76:5d:cd:dc:c4:3e:2d:
28:4e:12:82:03:4e:1e:82:35:2e:96:b3:41:c6:8e:
9e:e1:7e:bd:4b:14:48:6d:c0:e7:ef:dd:c7:b7:80:
51:e5:b7:82:d9:9e:95:28:2b:1d:60:c9:6d:04:fb:
6f:e1:0a:b8:72:1f:cf:4f:e9:dc:10:73:5f:d1:14:
59:b6:9e:db:69:a9:f9:c5:df:f0:6c:60:02:1f:34:
f3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3C:B3:B1:56:FA:2D:65:72:3D:1A:78:10:C3:98:8E:A5:0E:BC:86
X509v3 Authority Key Identifier:
keyid:00:77:5D:94:71:B8:5D:96:3F:EF:6D:28:35:90:E2:D9:42:DD:5C:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHddlHG4XZY_720oNZDi2ULdXCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/IDyzsVb6LWVyPRp4EMOYjqUOvIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/63760c-e21b-4baf-a9a4-76b33e4ce821/1/AHddlHG4XZY_720oNZDi2ULdXCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.107.94.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:a2:45:a5:64:3a:a8:20:d7:2b:78:65:b5:1c:87:0d:62:d3:
05:00:1d:ff:7a:2a:dd:0d:a2:bd:02:96:04:05:d9:d1:6b:c4:
19:54:c3:d2:14:42:a3:fb:44:e4:df:51:94:7f:ad:5c:e1:48:
e6:a7:c1:c9:8b:13:f5:f4:5c:c4:51:d3:32:25:72:b9:c1:55:
70:21:dd:58:ab:36:6f:53:95:6e:cf:18:16:17:17:df:00:1e:
5e:17:af:51:f2:aa:5b:dc:57:f7:8f:40:54:08:ae:88:e9:68:
a8:db:0e:ad:2e:aa:16:d1:c1:7f:cd:2f:d5:25:fd:e0:7b:35:
c6:c5:52:9c:c3:c7:f2:dd:77:47:3b:8f:7b:7c:eb:c4:bd:b6:
b1:1a:e0:95:58:f4:da:41:0e:d2:6e:c9:3f:cd:f5:18:5e:02:
81:af:92:e8:6b:1a:06:50:01:21:2d:0b:2b:47:f4:61:62:af:
4f:9f:b4:31:fd:6b:7a:bc:64:20:73:47:df:10:c3:ef:ca:c5:
d5:84:2f:72:d2:34:96:c0:97:fc:f7:cf:b9:87:08:4d:03:8c:
5a:1f:7d:52:3b:62:95:bd:93:a0:a0:bc:41:fc:8f:0d:f0:7b:
fa:c6:76:11:69:cc:89:8b:a9:46:79:9f:b8:54:73:07:94:e9:
9b:86:77:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:54 2024 by rpki-client on console-ams.rpki-client.org