Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/I1W0B_x115Beo5a4I5xAkyMOkw0.roa
File: I1W0B_x115Beo5a4I5xAkyMOkw0.roa (raw, json)
Hash identifier: UipkovgatGPN8qNn/E/oqdA/s2VZyyaGGaLYTUFvjqI=
Subject key identifier: 23:55:B4:07:FC:75:D7:90:5E:A3:96:B8:23:9C:40:93:23:0E:93:0D
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 0185711559D8F9E92A6BAFB3CFA2E30C2482
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/I1W0B_x115Beo5a4I5xAkyMOkw0.roa
Signing time: Mon 02 Jan 2023 06:05:02 +0000
ROA not before: Mon 02 Jan 2023 06:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201488
IP address blocks: 94.42.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:59:d8:f9:e9:2a:6b:af:b3:cf:a2:e3:0c:24:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2355b407fc75d7905ea396b8239c4093230e930d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a4:4c:06:26:ad:cb:3b:a1:61:c0:31:d2:42:
93:e0:41:f7:5e:5a:62:48:b0:15:ba:47:d0:4f:2f:
b4:1f:d6:d2:70:0a:08:a6:a9:98:96:b8:62:2b:c4:
9b:17:27:47:e3:82:11:69:09:82:ef:ad:54:dc:60:
5e:13:7f:11:d1:db:87:e3:cf:cf:a3:30:19:f3:c1:
db:15:20:75:59:3f:6b:d7:f5:58:8a:f5:97:22:39:
97:a5:0f:f9:d5:6c:56:fc:c0:51:e0:95:df:19:ed:
03:75:bd:96:23:b8:f9:7a:f9:86:9c:81:44:21:f3:
9b:db:52:d8:7d:8e:13:bf:b5:4f:d6:91:0e:46:69:
ef:0a:ff:1c:55:02:7b:6a:52:53:f5:76:2c:a5:91:
56:3c:56:a9:e5:ce:3e:93:8d:dd:d4:f9:48:cc:9e:
9a:d4:af:84:8e:90:fe:a3:e0:e4:83:db:4e:f6:0f:
3a:55:6c:7f:8d:a2:05:ee:0d:f6:ca:04:33:60:99:
d3:41:f3:f4:13:bb:be:5c:b9:21:fe:6c:3d:f2:d8:
32:23:dc:b3:e7:b3:07:01:40:17:0f:50:af:21:f5:
87:7e:bd:79:8a:35:00:26:9f:4e:c0:60:a0:6b:32:
f8:1f:69:05:66:97:a6:b3:96:b2:a3:8a:36:a4:8b:
98:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:55:B4:07:FC:75:D7:90:5E:A3:96:B8:23:9C:40:93:23:0E:93:0D
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/I1W0B_x115Beo5a4I5xAkyMOkw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.42.89.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:58:50:90:0e:37:1d:05:93:1d:18:33:29:7f:16:74:99:c5:
0e:85:a9:6c:d6:31:60:e4:92:1f:17:d1:43:70:75:de:46:5f:
b7:2f:15:07:11:26:b6:ec:e3:1a:3e:03:4b:0f:36:e2:32:50:
48:b5:5e:85:1f:13:66:fe:a8:e0:69:6f:36:06:af:e7:db:08:
b8:05:96:19:1f:47:f8:69:e2:80:ff:7d:bd:06:94:fc:40:4d:
2a:16:2e:20:00:00:da:67:c2:4e:6d:07:1d:1d:1c:84:3b:e2:
08:13:d5:0a:a6:8a:c4:d5:26:f8:2b:b5:3f:69:51:a9:f1:13:
4c:2c:45:a1:66:d7:e7:e5:8c:80:d8:53:c8:6e:8b:d3:ed:dd:
cf:12:98:26:1e:69:e5:73:ff:07:01:ed:9f:55:2d:3e:fd:8c:
93:c7:dc:07:05:55:16:83:9e:16:17:70:22:de:cd:b2:75:33:
d8:ab:ec:65:c1:fc:ed:0c:06:33:fb:44:b3:80:ce:78:cf:7a:
74:a2:de:a1:32:8f:52:bc:7b:59:47:24:c7:7d:0d:e8:7f:02:
22:33:ab:25:1a:dd:88:fa:cc:21:91:a0:94:59:b8:5e:e1:7f:
77:a4:71:88:24:22:00:ab:df:21:08:73:8e:6e:98:83:71:85:
f1:88:42:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:29 2024 by rpki-client on console-fra.rpki-client.org