Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Ireacd498h2xiqQJfA-iD4Wk4b4.roa
File: Ireacd498h2xiqQJfA-iD4Wk4b4.roa (raw, json)
Hash identifier: BbNq6zpaOrhT+fjEaNMhZr8gI+BZMnsPUdhBNon3xyI=
Subject key identifier: 22:B7:9A:71:DE:3D:F2:1D:B1:8A:A4:09:7C:0F:A2:0F:85:A4:E1:BE
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 018571155D2222C2C2D544B2C968D6AD5B98
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Ireacd498h2xiqQJfA-iD4Wk4b4.roa
Signing time: Mon 02 Jan 2023 06:05:03 +0000
ROA not before: Mon 02 Jan 2023 06:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204098
IP address blocks: 94.42.101.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:5d:22:22:c2:c2:d5:44:b2:c9:68:d6:ad:5b:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22b79a71de3df21db18aa4097c0fa20f85a4e1be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:eb:1c:71:2e:0d:3f:97:e8:18:9a:af:ba:c0:
9c:38:8b:e3:fb:48:35:a1:51:8a:ce:8c:d4:e1:6d:
6e:ca:8c:7c:82:ba:7f:17:a9:70:ed:f6:94:7a:38:
ef:ff:dc:c3:0c:d7:ce:76:96:28:16:81:11:03:c9:
bc:f2:fd:a9:2d:ab:50:54:04:a3:fd:46:26:cc:c7:
08:6c:5b:b2:a9:55:16:1c:f7:51:d4:33:36:04:a5:
dd:cc:41:44:a0:29:a8:e6:84:fd:4b:de:2e:23:9a:
54:c5:96:85:69:f2:0d:3d:ef:38:63:5a:2b:f9:a6:
3d:04:20:60:30:3d:db:4a:ea:72:45:c6:12:63:e8:
c2:dd:39:af:74:51:e4:e3:3c:07:8c:e7:53:fc:76:
12:57:d8:0b:c4:c4:34:6b:05:eb:3c:ee:02:19:00:
99:ec:af:5c:fd:83:f8:4c:74:15:d8:6f:9c:06:44:
e1:84:e5:53:28:94:16:53:31:0e:bb:3c:9c:8d:ce:
85:3c:b3:5c:57:aa:21:d4:2d:6d:9d:d1:d0:7d:01:
ee:1f:66:55:25:a1:b1:f9:37:4f:2f:62:ac:7d:2b:
8a:4e:d4:ab:fe:00:fb:af:3a:24:15:93:90:7b:ba:
d1:be:54:a6:aa:8d:24:89:f2:1a:5a:cd:22:d8:46:
e8:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B7:9A:71:DE:3D:F2:1D:B1:8A:A4:09:7C:0F:A2:0F:85:A4:E1:BE
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Ireacd498h2xiqQJfA-iD4Wk4b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.42.101.0/24
Signature Algorithm: sha256WithRSAEncryption
38:e1:a1:07:ed:c1:cf:29:12:2e:35:43:ec:0b:15:42:8c:91:
69:17:2e:9b:02:23:fa:73:71:47:83:1d:11:a0:e6:b2:8f:6f:
64:1a:a1:9d:1b:d5:52:96:03:1b:1a:c0:10:e7:3f:1f:e5:c8:
fc:69:a1:ad:40:c8:30:4a:d4:a2:5c:ac:40:9f:4a:1a:0d:8e:
ba:7d:6f:54:71:d2:9a:04:9c:76:f0:95:c1:7b:2d:39:46:cb:
97:69:d8:23:95:2c:a1:fe:bf:01:25:d4:2e:b5:a3:57:5b:12:
00:63:fd:c9:17:b8:1a:c3:af:fd:b6:96:6d:fd:f2:de:2f:45:
00:58:b2:78:97:01:3a:b7:02:11:9d:9c:9b:db:79:3c:0e:3a:
e4:b0:bf:43:f4:1b:11:bf:8d:d9:b4:c0:2f:91:5b:45:62:bc:
b4:dd:24:de:7f:d3:6d:3f:3c:12:96:13:20:20:c5:b5:28:78:
9e:20:48:22:c1:8e:48:92:45:81:a9:00:41:07:83:d0:07:0f:
87:a1:f5:4d:bc:2e:c3:4d:e7:c3:52:71:6e:fb:b2:8b:7d:12:
ea:63:a8:ec:f2:c2:a6:df:a9:d7:2e:84:b8:48:0c:6f:27:32:
89:c5:9d:59:11:3c:bc:2a:a0:6e:cf:c9:38:68:8c:4a:8d:97:
8d:99:6e:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:41:22 2024 by rpki-client on console-ams.rpki-client.org