Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/VXvjiLqi_qREXGlUHaSn06PEdG4.roa
File: VXvjiLqi_qREXGlUHaSn06PEdG4.roa (raw, json)
Hash identifier: sBns4MepWNMuLhoNleZ+0ZRPI5a2plEPaPOtxIgy3p0=
Subject key identifier: 55:7B:E3:88:BA:A2:FE:A4:44:5C:69:54:1D:A4:A7:D3:A3:C4:74:6E
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018573F1944A8F3E8BAED8249E35BAF84DD3
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/VXvjiLqi_qREXGlUHaSn06PEdG4.roa
Signing time: Mon 02 Jan 2023 19:24:50 +0000
ROA not before: Mon 02 Jan 2023 19:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41376
IP address blocks: 87.246.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:f1:94:4a:8f:3e:8b:ae:d8:24:9e:35:ba:f8:4d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 2 19:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=557be388baa2fea4445c69541da4a7d3a3c4746e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:5e:0c:0b:69:c5:31:2c:42:d3:5e:25:3e:0f:
e8:95:5b:19:0e:bc:61:d2:d1:d7:94:79:34:e5:a3:
e1:60:ce:93:06:4a:51:a5:c0:b3:66:74:61:1c:0e:
03:e4:28:83:a1:3e:fb:15:ac:11:91:ea:d5:d0:5f:
94:dd:cd:3c:bb:c1:8d:3c:e5:21:df:bb:7f:a4:e2:
29:60:21:68:fc:89:58:29:9c:3a:b8:e1:6d:55:ed:
75:93:af:6e:87:c5:41:45:79:64:65:8a:fd:bf:3c:
34:13:eb:59:da:1d:5a:2e:54:74:cf:4d:19:43:74:
7c:3d:7a:e0:97:9d:dc:97:65:c4:f5:75:5b:7a:b1:
92:cb:a1:dd:84:ce:bc:60:c6:6f:cc:a9:71:16:10:
e1:60:5a:1a:96:71:42:69:aa:53:0c:b8:9b:85:ae:
66:5a:4c:35:30:8d:18:96:1b:d7:b7:30:6b:20:af:
85:3c:b7:2b:e0:52:9b:24:9e:11:78:01:42:16:7f:
59:b7:dc:88:99:f7:16:f9:bc:62:a4:76:3a:b1:e9:
5c:68:f3:d0:f7:98:9a:e2:54:c2:e5:b6:2b:79:05:
a2:ef:dd:11:c8:7d:67:f9:65:46:a7:e3:0f:b5:d0:
26:ed:66:62:99:be:5b:04:95:e4:a2:47:98:21:f5:
08:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:7B:E3:88:BA:A2:FE:A4:44:5C:69:54:1D:A4:A7:D3:A3:C4:74:6E
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/VXvjiLqi_qREXGlUHaSn06PEdG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.161.0/24
Signature Algorithm: sha256WithRSAEncryption
24:86:c4:a4:e0:dd:5b:47:4f:fa:d5:73:09:2e:49:25:57:71:
2d:85:03:15:96:fc:58:8c:c5:15:80:82:be:2a:14:25:9f:08:
73:aa:2b:c5:a4:be:35:c2:6f:2b:a4:35:2f:b9:d9:85:ba:cf:
65:b0:3b:8f:c1:3c:6f:b1:08:98:39:db:df:ea:38:8a:36:6a:
57:61:3a:35:7b:7c:21:47:15:29:45:76:3e:60:78:52:38:9f:
62:55:89:35:ae:e7:3f:e5:dc:80:8f:4c:d2:8e:2a:5c:92:52:
1b:dc:65:dc:66:af:57:ab:3e:0c:ea:51:8a:55:59:41:cd:d0:
03:d7:63:30:16:11:45:07:ae:a8:3e:20:9c:6f:d6:05:7b:19:
e9:6b:87:b1:62:85:04:72:9c:c7:b7:0c:ba:de:7f:7d:2f:68:
d9:af:8f:f8:fb:bf:2f:c6:ee:a6:61:73:93:6f:54:f1:4c:ce:
f0:1b:a9:2e:6e:33:0a:d0:e7:c5:55:42:bb:58:42:11:a7:a7:
9d:8e:58:c3:ae:e5:ef:1b:ad:5d:e3:1e:25:f7:55:2e:33:f4:
9e:b5:8c:23:09:31:30:0c:d3:c6:70:49:12:34:1a:81:82:e5:
d9:ab:d8:b6:af:80:50:e4:e2:b7:7f:a5:33:46:14:70:09:9d:
98:35:27:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:12 2024 by rpki-client on console-ams.rpki-client.org