Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/YuDlR39hDe38tKChepoQlI2Nr0M.roa
File: YuDlR39hDe38tKChepoQlI2Nr0M.roa (raw, json)
Hash identifier: faRKVJDtYpaV9+L4L0gqCNtUWT2td1FSLS+ZEqL+M+U=
Subject key identifier: 62:E0:E5:47:7F:61:0D:ED:FC:B4:A0:A1:7A:9A:10:94:8D:8D:AF:43
Certificate issuer: /CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Certificate serial: 01874666CFE11BB963109C91C0CFA1EB8C43
Authority key identifier: 21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/YuDlR39hDe38tKChepoQlI2Nr0M.roa
Signing time: Mon 03 Apr 2023 09:15:55 +0000
ROA not before: Mon 03 Apr 2023 09:15:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202080
IP address blocks: 77.247.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:46:66:cf:e1:1b:b9:63:10:9c:91:c0:cf:a1:eb:8c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21530e9d09e2ff8c38413615589a5f206e7f3ea9
Validity
Not Before: Apr 3 09:15:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e0e5477f610dedfcb4a0a17a9a10948d8daf43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ed:e7:46:b9:11:7b:06:d2:78:80:f8:61:68:
df:fa:b4:69:ef:62:85:99:fe:23:d5:a2:58:6b:80:
44:ea:fc:df:81:75:c1:b8:7f:ad:ce:d6:45:52:17:
fe:da:f7:c4:37:13:fa:73:5b:aa:00:2f:04:36:bf:
4c:c1:f6:3c:b6:bf:94:b0:86:ca:0b:0b:01:68:5e:
e3:68:ab:ed:8d:11:c1:77:3f:4b:5c:f3:87:d1:e5:
93:87:0e:43:84:ac:26:94:38:bd:23:fc:13:07:44:
85:25:92:6d:d7:3b:15:e5:3c:66:ab:5a:34:c1:90:
f8:44:5c:81:90:0c:65:f5:69:73:c5:c9:c2:c1:d0:
56:a0:a8:15:69:78:4e:bb:ac:41:ac:65:3a:66:c3:
0e:70:0c:d1:cc:54:aa:0f:ec:85:64:66:a3:4c:e6:
9b:01:c1:3e:33:b3:9d:63:c0:58:2d:a9:e0:d2:37:
82:56:62:7f:ec:8e:8c:70:23:46:94:3e:a0:eb:03:
06:46:74:05:93:16:9a:36:5c:ea:f0:36:25:65:a2:
8a:72:fa:ac:2f:35:a3:9c:3f:6d:95:08:71:1c:1d:
59:20:a2:11:4a:17:20:39:b2:3d:33:65:b6:43:8e:
d9:f5:4f:d6:73:fe:09:21:6a:04:4d:7d:2f:cb:e4:
48:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E0:E5:47:7F:61:0D:ED:FC:B4:A0:A1:7A:9A:10:94:8D:8D:AF:43
X509v3 Authority Key Identifier:
keyid:21:53:0E:9D:09:E2:FF:8C:38:41:36:15:58:9A:5F:20:6E:7F:3E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVMOnQni_4w4QTYVWJpfIG5_Pqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/YuDlR39hDe38tKChepoQlI2Nr0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/f2dad3-a6e6-4b77-8342-624f4c141f2c/1/IVMOnQni_4w4QTYVWJpfIG5_Pqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.195.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:11:c3:62:b0:c3:54:c9:9e:b0:ff:a0:b2:e2:e1:51:f4:0b:
12:ce:37:86:bb:79:73:fe:06:5f:ea:79:8b:35:a2:13:a9:18:
c1:64:04:23:53:87:3b:83:a5:8a:35:19:73:b2:7f:34:d9:22:
f0:f2:a8:16:94:c1:a9:d7:51:d2:3e:32:ef:71:69:1e:ea:1a:
af:b2:b6:f9:ab:6b:64:63:fe:f9:6e:ee:10:4a:d6:7d:f3:dd:
cf:8a:3e:47:b4:a4:2c:bc:da:96:aa:17:14:ef:0a:d9:48:cf:
db:fb:5d:41:cf:b2:e1:f5:48:09:e4:e0:e1:1d:0b:17:e2:2d:
ed:00:28:90:f8:2b:96:1b:52:e7:74:f9:08:2a:34:77:09:bd:
9c:c0:9c:47:03:32:95:99:7e:59:6e:f9:d6:51:42:e1:45:39:
4f:65:38:c0:cb:17:aa:d3:54:80:fd:08:56:0c:82:8f:86:74:
e0:db:15:ec:5f:a0:07:86:28:2b:83:51:72:0d:1d:72:99:19:
df:51:e8:01:4f:40:d3:25:f3:fa:c2:b9:7f:db:f0:27:54:a3:
b1:b1:54:b0:46:86:90:92:5d:aa:2a:52:61:9b:8b:f7:b2:a1:
65:30:69:33:22:ff:36:74:16:1e:64:21:41:62:73:5f:d5:6f:
30:e1:b8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:31 2024 by rpki-client on console-fra.rpki-client.org