Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/NOrsu_ulPmyXgdA-dPUc6_-iAkg.roa
File: NOrsu_ulPmyXgdA-dPUc6_-iAkg.roa (raw, json)
Hash identifier: bfCUxw0/dRHfOnPhU1ssQf6elvchJzmJSek6viuZGsw=
Subject key identifier: 34:EA:EC:BB:FB:A5:3E:6C:97:81:D0:3E:74:F5:1C:EB:FF:A2:02:48
Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Certificate serial: 0185706730717703E5A156B908E18FB269AD
Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/NOrsu_ulPmyXgdA-dPUc6_-iAkg.roa
Signing time: Mon 02 Jan 2023 02:54:48 +0000
ROA not before: Mon 02 Jan 2023 02:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61157
IP address blocks: 84.246.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:30:71:77:03:e5:a1:56:b9:08:e1:8f:b2:69:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Validity
Not Before: Jan 2 02:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34eaecbbfba53e6c9781d03e74f51cebffa20248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b1:af:4a:23:05:64:c7:f1:25:9e:8b:6a:af:
28:f6:c5:a0:5c:4e:06:9d:d0:b3:19:5d:a1:6d:23:
9d:60:a6:0a:fd:81:19:60:46:35:3b:90:21:3e:25:
a8:ad:88:dd:64:42:13:09:4c:45:f2:84:ef:f1:f8:
b5:9c:d0:0d:c1:ac:c1:60:44:94:65:a0:57:e4:a8:
16:e3:aa:f6:52:29:03:f9:2a:2a:a2:87:21:d7:c9:
9d:89:74:b0:59:49:13:7d:53:11:f2:61:24:9f:c5:
60:aa:c8:b6:84:4b:96:a4:9c:74:8f:89:3d:e1:e2:
46:9f:7d:a4:a7:c4:c6:35:c2:c9:5c:2f:e4:18:b6:
72:b8:85:43:9f:7f:a7:37:32:a0:6d:1b:c3:d5:d1:
b8:c4:5c:e8:80:0a:ab:62:2b:71:e4:9c:f2:41:bc:
13:75:12:62:ae:7a:e4:f1:e8:29:99:05:a9:5a:7d:
40:7a:1d:1a:51:07:b3:ce:0c:62:35:79:2f:39:37:
2a:ea:1b:dc:f7:63:0a:8c:1d:ea:e9:da:33:71:67:
2d:3f:b7:e2:23:ee:40:4e:83:ff:29:51:34:37:f7:
3e:ec:d6:bd:4b:b9:0b:36:cd:ff:cb:a6:a8:41:bb:
9d:04:0e:65:18:99:24:f5:4d:82:2f:20:78:76:f1:
20:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EA:EC:BB:FB:A5:3E:6C:97:81:D0:3E:74:F5:1C:EB:FF:A2:02:48
X509v3 Authority Key Identifier:
keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/NOrsu_ulPmyXgdA-dPUc6_-iAkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.246.125.0/24
Signature Algorithm: sha256WithRSAEncryption
36:4e:66:67:68:9e:48:d8:9d:c9:b1:89:77:73:71:3c:08:14:
bc:ef:d6:6f:e6:6e:dd:00:ee:f1:9b:84:b6:58:db:fd:c0:80:
33:26:85:5c:5b:dc:96:86:a5:e4:9c:8a:af:ad:38:d6:43:2a:
e8:4c:4a:3d:4a:ee:c9:d0:51:8c:2f:72:17:0b:15:f5:f9:43:
e6:b0:c8:d0:ed:5c:64:4f:a3:5d:3d:1e:41:81:fd:78:c5:e4:
75:63:0d:60:9c:7d:da:90:2c:46:69:98:91:aa:57:cf:dc:20:
33:52:54:c8:3e:6e:73:f5:9d:38:fd:29:5b:51:fa:bc:21:fe:
b9:a5:32:03:e0:b6:1d:a1:51:77:6a:d9:3a:47:ee:58:1e:9b:
90:61:2f:92:5b:5a:86:26:6e:8b:64:d5:4d:f3:68:e7:08:21:
73:26:24:3b:36:42:a9:b6:9f:b9:e4:46:66:ea:58:f9:a8:95:
e8:e0:33:54:05:d2:17:60:c8:0d:72:b5:6c:75:48:81:27:45:
0b:a8:39:a0:f9:4c:e8:e2:df:0c:41:8d:82:75:46:dd:12:d0:
21:00:98:4a:f5:b6:7b:52:35:c5:76:ae:5f:9d:d5:c4:d7:8e:
c7:d3:83:87:61:6a:4f:8e:9c:6f:b1:15:45:5f:6e:e2:55:47:
c5:e4:70:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:25 2024 by rpki-client on console-fra.rpki-client.org