Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/6d0270-95ab-4da3-abf5-8dc0d833f54b/1/7rlnM3AsYRATtaYdyMyxGkKNxNM.roa
File: 7rlnM3AsYRATtaYdyMyxGkKNxNM.roa (raw, json)
Hash identifier: QNEl/vzEfHyarwQv2dDKkOze3G8HQo0TUJSYQZ+lzUw=
Subject key identifier: EE:B9:67:33:70:2C:61:10:13:B5:A6:1D:C8:CC:B1:1A:42:8D:C4:D3
Certificate issuer: /CN=dd0feb9a5fa040341ea18534c5b6aed7ecd2a0de
Certificate serial: 01856D015FA6F77954FCAF169AE869CE6249
Authority key identifier: DD:0F:EB:9A:5F:A0:40:34:1E:A1:85:34:C5:B6:AE:D7:EC:D2:A0:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Q_rml-gQDQeoYU0xbau1-zSoN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/6d0270-95ab-4da3-abf5-8dc0d833f54b/1/7rlnM3AsYRATtaYdyMyxGkKNxNM.roa
Signing time: Sun 01 Jan 2023 11:04:44 +0000
ROA not before: Sun 01 Jan 2023 11:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49729
IP address blocks: 195.64.126.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:5f:a6:f7:79:54:fc:af:16:9a:e8:69:ce:62:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd0feb9a5fa040341ea18534c5b6aed7ecd2a0de
Validity
Not Before: Jan 1 11:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeb96733702c611013b5a61dc8ccb11a428dc4d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6a:fa:08:18:55:3d:d3:5e:20:69:27:e1:dc:
30:06:0a:9d:a1:a9:0b:b8:6a:cd:31:8f:ed:5b:58:
ff:17:25:4e:60:02:75:8c:40:9c:8f:6d:55:d8:1a:
4d:29:55:dd:84:a4:83:bd:2f:68:4a:9c:b5:86:5d:
23:73:b1:a8:b3:37:b8:8a:b4:67:3a:ec:51:d6:df:
1e:7b:78:c0:0c:e1:ed:93:72:d4:ec:6f:e4:4c:34:
2e:06:11:f9:5e:c8:cf:86:e5:72:a5:c9:43:3b:3f:
e8:28:49:ce:19:63:3e:b5:6b:23:32:4d:f0:ed:bb:
27:84:b8:6b:e8:8c:95:ac:07:6b:1e:0c:88:dd:85:
15:93:04:53:02:d0:25:80:d0:2c:e2:49:ca:52:82:
61:10:d3:6a:0c:96:fe:1e:8a:d7:42:74:5a:15:de:
b8:15:dc:2b:ec:ff:68:3a:ca:83:bf:4b:e0:7b:8a:
c0:a5:61:aa:c1:12:a7:9f:1a:6a:87:2c:57:54:b3:
c0:84:de:52:9a:f1:6a:e9:44:9a:0f:63:00:cb:25:
c7:01:a1:e3:f8:b9:22:69:02:9d:72:82:ac:dd:ee:
03:91:ce:23:96:27:3c:bf:84:33:6e:21:58:1e:29:
d4:13:0a:4e:06:ba:0a:d8:36:c4:66:2a:89:2d:b8:
e4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B9:67:33:70:2C:61:10:13:B5:A6:1D:C8:CC:B1:1A:42:8D:C4:D3
X509v3 Authority Key Identifier:
keyid:DD:0F:EB:9A:5F:A0:40:34:1E:A1:85:34:C5:B6:AE:D7:EC:D2:A0:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Q_rml-gQDQeoYU0xbau1-zSoN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/6d0270-95ab-4da3-abf5-8dc0d833f54b/1/7rlnM3AsYRATtaYdyMyxGkKNxNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/6d0270-95ab-4da3-abf5-8dc0d833f54b/1/3Q_rml-gQDQeoYU0xbau1-zSoN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.126.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:fd:03:fd:ed:66:6b:79:a6:9c:52:f5:3a:a1:e9:ff:6e:29:
27:23:90:66:8f:47:1f:93:68:8a:ce:6d:e7:1e:84:26:04:1f:
2e:e8:f3:06:31:fc:0d:93:7b:a4:ab:45:7c:ee:75:94:4a:8c:
38:35:3a:58:4e:3b:4e:58:8d:41:e1:05:f0:96:53:f4:76:1c:
7b:ea:45:f6:34:55:2a:f7:87:ad:ba:11:35:4f:8a:fc:66:dd:
49:c5:a1:6d:d3:df:6a:87:64:6c:43:72:d0:3c:f9:63:09:51:
71:c9:a7:37:4c:32:4f:cf:29:50:78:df:8d:35:83:c6:d0:e8:
56:79:f4:a6:e2:44:a5:0d:57:f8:99:b2:53:2e:70:2f:85:91:
79:3a:31:4e:e4:b5:43:17:f8:70:30:c6:19:5f:e1:4c:05:29:
65:79:77:c1:b0:00:0d:44:d5:b6:82:4f:0c:f5:0f:ee:97:f7:
c3:bc:26:7f:a0:5e:0a:e3:8e:8f:d9:49:e2:1e:d6:5d:39:39:
80:23:6d:0c:88:fb:f3:ca:b6:4d:e9:40:87:38:54:27:36:b7:
b8:91:2f:57:36:71:31:47:a5:13:d1:9a:1d:b8:e8:9f:7f:ce:
5d:8b:af:8b:2c:0b:75:f1:3f:e0:69:40:60:4b:4f:10:cb:90:
a6:1c:0c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:47 2024 by rpki-client on console-fra.rpki-client.org