Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/7rpD-snDLa7J2CSisNemkzoCMY4.roa
File: 7rpD-snDLa7J2CSisNemkzoCMY4.roa (raw, json)
Hash identifier: Bj+98gqjVrPYW8uF82DKRXzTvCRq+C9lRSLFCkSBaKk=
Subject key identifier: EE:BA:43:FA:C9:C3:2D:AE:C9:D8:24:A2:B0:D7:A6:93:3A:02:31:8E
Certificate issuer: /CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Certificate serial: 01856E0B10A2C0985F25D93DE79F475F479D
Authority key identifier: 04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/7rpD-snDLa7J2CSisNemkzoCMY4.roa
Signing time: Sun 01 Jan 2023 15:54:56 +0000
ROA not before: Sun 01 Jan 2023 15:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25415
IP address blocks: 185.60.21.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:10:a2:c0:98:5f:25:d9:3d:e7:9f:47:5f:47:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a5ec5f52668be50b4518b687cf8bd95930ae39
Validity
Not Before: Jan 1 15:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeba43fac9c32daec9d824a2b0d7a6933a02318e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c4:a1:89:73:55:a2:70:e9:eb:ba:e2:6a:c3:
51:ff:5d:16:44:78:b3:fa:10:02:64:f9:99:2d:c8:
fd:94:4e:27:34:fc:15:12:8a:20:bf:db:00:e7:c5:
25:62:32:5d:84:4d:0e:20:4f:3a:6b:4d:5c:b9:b5:
11:9f:6e:04:83:ff:92:b7:0d:f1:52:17:5e:3a:78:
c8:d2:ab:0b:4d:75:70:60:44:e4:e7:06:53:00:c9:
3b:0c:d7:3b:c3:43:71:34:5a:0a:92:65:ca:e4:14:
bb:4c:f4:d1:cd:42:eb:c1:58:51:6d:db:65:1b:61:
e7:fe:99:3b:9c:cb:1f:46:77:ca:9f:f8:d7:a4:b6:
d6:b1:98:b2:b0:a6:11:4e:c6:92:b5:71:67:ba:c3:
07:ae:d5:c0:91:6b:4e:a8:43:6d:db:f0:aa:97:ba:
7e:43:2f:4c:4d:39:17:6a:ff:8c:6c:c8:32:35:16:
44:a0:be:f5:48:19:41:45:4d:9a:65:6e:21:a3:50:
ad:35:d5:73:41:10:37:b5:0f:91:a5:0d:2b:c6:82:
1c:7b:38:8e:b2:b9:b2:98:e7:03:95:88:45:2c:22:
d1:63:05:04:a4:3d:f5:b0:32:39:44:44:95:76:32:
e7:4d:b2:63:5f:ce:51:90:26:86:74:d8:b9:02:17:
5a:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BA:43:FA:C9:C3:2D:AE:C9:D8:24:A2:B0:D7:A6:93:3A:02:31:8E
X509v3 Authority Key Identifier:
keyid:04:A5:EC:5F:52:66:8B:E5:0B:45:18:B6:87:CF:8B:D9:59:30:AE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/7rpD-snDLa7J2CSisNemkzoCMY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/00e33e-fd74-4583-984e-c6b84cc58610/1/BKXsX1Jmi-ULRRi2h8-L2Vkwrjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.60.21.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:22:d0:85:d0:b6:54:3c:77:70:fd:1e:33:40:7c:f8:41:fc:
be:af:10:94:fc:af:dc:80:64:d9:d1:ee:6d:00:5f:af:bb:44:
0f:56:50:75:6a:9b:a9:c1:64:05:6f:e1:5c:32:55:9b:28:33:
f1:30:db:b5:d4:8f:2a:61:ed:41:e6:44:ee:d2:78:a9:60:b6:
68:52:ea:c2:f3:56:ee:e7:49:01:25:10:1c:2a:a0:b5:54:35:
b7:e7:a8:46:28:22:89:23:4d:f5:e1:b1:6e:d8:93:ba:79:ec:
6c:fd:41:1c:d2:48:6a:31:f5:17:76:6f:9e:95:00:62:fa:a4:
7d:67:cd:8c:0b:c5:c1:e6:a8:fa:1d:7d:af:2b:0d:a8:6e:ae:
69:4a:fa:4f:db:15:06:6b:7e:df:a0:1d:41:b0:63:81:cd:be:
46:c1:6e:d5:cf:84:d8:f8:6a:fe:cd:9c:0c:d7:38:e9:ca:fc:
08:42:43:03:7d:2a:c7:4a:35:1d:83:18:80:36:2f:42:91:74:
d3:8c:a4:cb:5d:e7:2a:90:80:06:20:3c:c5:d6:de:2d:17:29:
8d:aa:dc:23:b6:c5:b3:c4:4c:65:48:72:81:13:c1:56:a9:f8:
f1:42:29:d1:de:4a:75:2b:48:da:00:62:8a:ed:f1:7d:f6:15:
b5:ae:2c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:38 2024 by rpki-client on console-fra.rpki-client.org