Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/V97lpO9_ooxiBfVrf99QsweEitg.roa
File: V97lpO9_ooxiBfVrf99QsweEitg.roa (raw, json)
Hash identifier: T3bQ6JeNdlyBUjFx09NQRJWTKelPHYnoimWJFu9KWeA=
Subject key identifier: 57:DE:E5:A4:EF:7F:A2:8C:62:05:F5:6B:7F:DF:50:B3:07:84:8A:D8
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 01857115542077BD221146D7320908B6BFC4
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/V97lpO9_ooxiBfVrf99QsweEitg.roa
Signing time: Mon 02 Jan 2023 06:05:01 +0000
ROA not before: Mon 02 Jan 2023 06:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197848
IP address blocks: 78.133.240.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:54:20:77:bd:22:11:46:d7:32:09:08:b6:bf:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57dee5a4ef7fa28c6205f56b7fdf50b307848ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:45:35:bf:17:63:46:62:7b:29:ef:ab:7c:ee:
3b:1d:b0:60:e0:88:1d:54:96:65:2f:52:63:65:27:
f1:3a:22:5e:b9:08:9e:48:e6:7d:a3:9b:db:22:71:
51:dd:a5:e7:5b:45:9e:38:23:3d:ab:8c:d8:ac:c4:
fd:02:9c:84:29:ee:2a:6a:0a:02:0c:1b:f3:7b:42:
39:19:4b:4a:c9:cb:8e:df:2a:35:e8:1d:87:17:34:
af:e6:f7:57:7d:51:f7:16:27:f3:b2:46:22:9f:33:
e4:94:41:98:30:61:15:c1:fa:16:3a:90:76:17:ef:
0c:17:79:28:09:1e:e6:ea:61:e3:58:67:c2:6c:99:
97:a7:c7:b6:1c:d5:e3:d0:65:95:54:4a:6f:31:85:
12:c2:88:24:0a:c7:34:e6:07:83:2b:29:bf:44:56:
9d:fb:e3:e4:d9:21:30:e0:7f:55:4a:20:f8:5b:00:
14:19:95:ce:dc:21:0f:d8:57:25:a2:7d:a8:48:4b:
12:72:ef:48:e4:b2:38:7b:cd:a7:15:61:bb:91:48:
3d:ba:8b:12:91:9a:36:fb:fa:c5:46:2e:3a:67:24:
db:f7:7d:b8:e4:a1:ac:67:c9:25:ee:2d:13:b4:93:
9e:be:ea:c7:e3:e2:93:54:0e:a1:ca:45:83:23:8b:
d3:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:DE:E5:A4:EF:7F:A2:8C:62:05:F5:6B:7F:DF:50:B3:07:84:8A:D8
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/V97lpO9_ooxiBfVrf99QsweEitg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.240.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:9d:4f:ca:63:42:33:c2:04:c9:91:30:a3:99:bf:8e:e8:2a:
55:d8:14:f3:db:90:2b:50:86:22:30:10:61:14:12:72:a1:0a:
c7:11:eb:54:19:fa:49:20:7a:2a:a4:0a:64:fe:b1:40:10:a4:
f4:0b:aa:81:af:72:ff:86:75:d1:e3:3b:54:c1:0d:81:9e:8c:
70:5e:69:1d:66:12:55:1d:b0:38:d1:f7:fa:3d:fb:8b:93:45:
51:31:b5:c3:6a:e8:63:e3:85:83:ba:b9:81:b6:37:ef:0e:d2:
36:0b:bd:05:d1:4c:be:63:75:4e:5a:31:d5:a4:ca:53:7a:e4:
a0:ac:85:d9:5e:38:86:2e:39:1c:30:59:51:f1:b4:3b:32:1c:
bb:1b:04:b3:1d:96:06:9d:92:5f:e4:82:5c:10:f9:dd:67:58:
32:80:af:fc:83:d1:b1:26:87:42:d9:8e:96:ad:b9:dd:5e:f6:
d9:07:51:d9:e3:8d:21:98:56:26:49:3b:ca:c8:c5:77:e6:11:
25:11:55:3c:25:73:ea:61:0c:ed:ad:45:b9:4d:4b:c3:61:84:
96:ba:75:e5:93:68:94:a5:a0:7d:77:7b:6f:fe:b0:27:d4:d7:
04:6d:7a:0a:a2:7f:46:bb:fe:7a:92:d8:a8:1d:e0:6d:a7:c0:
24:90:75:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:29 2024 by rpki-client on console-fra.rpki-client.org