Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/cc4WRAbxKJy3KYxCwoSQ-uR2wqI.roa
File: cc4WRAbxKJy3KYxCwoSQ-uR2wqI.roa (raw, json)
Hash identifier: LH8HiVesKjmaK7Xlu4UptKyna1Y+RbtBiM/EuW6MMLc=
Subject key identifier: 71:CE:16:44:06:F1:28:9C:B7:29:8C:42:C2:84:90:FA:E4:76:C2:A2
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 018571154E578BEE2EF39D7FF5ADA60AC1BC
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/cc4WRAbxKJy3KYxCwoSQ-uR2wqI.roa
Signing time: Mon 02 Jan 2023 06:04:59 +0000
ROA not before: Mon 02 Jan 2023 06:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41464
IP address blocks: 78.133.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:4e:57:8b:ee:2e:f3:9d:7f:f5:ad:a6:0a:c1:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71ce164406f1289cb7298c42c28490fae476c2a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b7:de:37:81:9d:0e:c4:87:c2:73:5d:e2:e3:
29:23:78:40:ee:36:d3:b3:5d:47:3e:ae:99:4e:1c:
85:a4:34:4f:47:18:ac:6a:f4:9c:4c:e4:b3:4d:a7:
c6:59:3b:c4:f1:3c:77:da:65:30:c2:8d:10:b5:fe:
9a:82:2f:0c:f3:17:49:ad:11:b0:2b:8b:48:9a:88:
40:5b:1f:21:c0:e2:ab:98:1a:22:b8:59:b4:6b:f3:
f3:13:42:88:4e:8f:2e:81:35:68:5e:02:12:28:d1:
a6:c1:44:b8:d7:6b:8d:80:0f:db:5f:b4:52:22:da:
e5:e8:1d:4f:21:0d:a6:38:c9:d3:76:e1:b0:2c:47:
a4:b8:18:8b:84:b7:7d:35:73:77:a0:80:cc:7a:29:
ad:c7:95:90:c5:a2:83:5a:0c:f1:18:89:11:12:d9:
18:51:7f:ec:d4:78:03:d2:b0:1e:3a:61:4c:9b:19:
22:4b:0a:1b:52:c8:95:36:74:34:42:00:b4:a7:98:
d5:44:b2:a4:f0:6b:49:be:1a:c7:4a:70:a9:fc:d1:
e8:a2:ff:44:66:b3:64:d0:b8:95:c5:69:5e:f1:84:
34:0c:7c:85:11:0d:98:4a:9d:d1:f0:83:62:70:af:
a4:54:a8:15:00:4f:b3:37:78:4b:28:f7:b9:30:44:
a4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CE:16:44:06:F1:28:9C:B7:29:8C:42:C2:84:90:FA:E4:76:C2:A2
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/cc4WRAbxKJy3KYxCwoSQ-uR2wqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.133.168.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:40:d9:ad:f7:3f:4a:a9:a4:39:f2:6a:7e:d4:5d:b4:eb:ce:
67:66:eb:c8:d9:f6:29:62:f7:b3:7d:63:f1:73:1a:72:3c:45:
25:a8:68:6c:ea:7b:0d:4f:48:ae:93:1a:67:b3:ad:04:c3:7d:
81:30:c6:4c:b4:68:c6:b3:d6:ce:92:1b:b2:13:77:1c:ac:9f:
2d:a2:8a:e6:7e:89:72:bf:85:89:9d:8e:a4:1c:5c:5e:04:ad:
b3:22:d7:7a:b6:c5:11:3f:91:a5:95:72:67:17:a7:02:21:0c:
a6:73:e5:b5:0c:90:85:ee:83:2f:97:25:9f:4c:a7:8d:f4:37:
ca:60:87:1b:ac:ad:75:8b:41:c9:59:b8:82:8f:e9:56:f1:13:
ed:7b:aa:b7:d6:32:70:50:f9:3f:f9:20:8b:89:c8:e5:c7:31:
50:b1:f7:44:ac:72:b2:87:94:71:75:12:a4:ef:1d:71:67:2e:
df:6b:07:5b:e8:d5:b4:71:13:1c:fb:a2:13:18:06:2f:ec:24:
19:a1:74:a0:63:05:ec:ad:16:59:2c:17:55:4d:d9:fc:e4:d7:
99:39:2d:bd:cc:c7:ec:07:de:5b:4f:0f:f1:90:60:82:d3:4f:
9c:31:6a:92:7a:d9:79:ec:22:06:58:7f:fa:41:d2:aa:7f:5d:
fc:b2:8a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:29 2024 by rpki-client on console-fra.rpki-client.org