Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/aBuefZCh1QlguDbSs-x-h7KIdvA.roa
File: aBuefZCh1QlguDbSs-x-h7KIdvA.roa (raw, json)
Hash identifier: /mT+ajZCzC050GJCrJfD8wKHe2C39yXfBguOeAKtfVw=
Subject key identifier: 68:1B:9E:7D:90:A1:D5:09:60:B8:36:D2:B3:EC:7E:87:B2:88:76:F0
Certificate issuer: /CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Certificate serial: 01857139B6E3DB44F561DC41C903C23AE406
Authority key identifier: 92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/aBuefZCh1QlguDbSs-x-h7KIdvA.roa
Signing time: Mon 02 Jan 2023 06:44:45 +0000
ROA not before: Mon 02 Jan 2023 06:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 79.143.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b6:e3:db:44:f5:61:dc:41:c9:03:c2:3a:e4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92bf6464ce6e19a4dcf8a32b27a2f1cbe1551055
Validity
Not Before: Jan 2 06:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=681b9e7d90a1d50960b836d2b3ec7e87b28876f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ca:bb:d6:07:cf:1a:c3:a7:4d:44:e9:cf:28:
e2:3b:b7:9e:88:16:dc:98:d5:d6:0e:8c:20:f9:c5:
31:fb:0c:fc:fd:10:e6:44:d6:0e:45:45:0c:bb:35:
31:6f:c8:f2:52:05:2c:d8:f4:63:8e:fb:51:53:4c:
89:d0:bb:8f:8d:5a:d1:bd:41:9d:a8:1e:8e:15:54:
54:40:d7:f5:15:78:f6:f3:32:41:5d:b1:20:09:f7:
41:e8:1d:92:51:3e:7e:3c:a4:f0:d7:ef:b4:13:57:
4b:5e:37:fe:53:b4:78:81:dc:31:f8:fb:a4:5e:63:
6e:23:81:8a:47:04:19:8b:c9:9f:32:35:c9:70:11:
2f:20:d0:26:52:ab:b2:38:07:a0:85:b4:0b:a0:25:
50:e7:96:36:7d:a6:6f:7f:48:cb:01:3c:00:ab:0f:
1f:be:db:08:59:90:36:e6:f1:6b:f8:19:b6:01:cd:
f7:52:15:a4:2e:44:10:71:47:02:84:95:fb:a1:70:
11:39:16:2f:00:38:a1:d5:a9:1f:31:e0:19:26:57:
0c:27:34:6d:d7:16:4a:f4:44:fd:17:95:88:c6:b4:
4f:04:cb:3a:fd:00:34:d9:d7:52:b5:b1:35:ab:82:
95:a1:be:ac:c4:00:a5:27:b3:2f:a1:49:44:ca:17:
a9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1B:9E:7D:90:A1:D5:09:60:B8:36:D2:B3:EC:7E:87:B2:88:76:F0
X509v3 Authority Key Identifier:
keyid:92:BF:64:64:CE:6E:19:A4:DC:F8:A3:2B:27:A2:F1:CB:E1:55:10:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/aBuefZCh1QlguDbSs-x-h7KIdvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/f1d697-bc8e-4f14-8b37-b53e30e1412a/1/kr9kZM5uGaTc-KMrJ6Lxy-FVEFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.143.87.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:ca:0e:a9:7e:2a:38:c9:2c:4c:53:73:25:5a:97:89:41:01:
a3:bb:e6:1d:1f:42:1f:b6:1a:51:3a:d4:4f:d2:f6:9e:95:22:
4c:7c:95:3f:de:ee:e5:5f:1d:2b:66:f6:bb:72:37:30:79:79:
57:e5:41:35:2d:c3:3a:7c:8b:ad:86:6c:dc:2c:e7:47:d3:7a:
c4:bf:2b:ad:c0:5d:98:4a:10:67:12:ce:b0:44:f5:02:e5:df:
2e:52:ff:9c:9f:8b:98:8b:96:80:2c:10:5e:e7:e8:0a:6f:c2:
0a:d2:06:6f:cd:a6:5f:77:f1:b8:d9:c7:59:4a:19:6f:cf:e4:
b6:de:9d:e5:80:8f:fc:c6:e4:2b:99:12:50:8e:46:64:d9:5c:
c0:55:58:0b:25:93:07:dc:cc:09:db:4a:d7:96:83:4a:01:3d:
66:48:69:37:dd:65:0b:48:5d:ad:0b:9c:62:3f:e8:6f:90:ef:
61:0d:58:ce:91:9a:27:65:23:69:47:51:7a:c0:61:32:67:3f:
e6:43:e9:42:99:82:b7:3c:1c:66:38:df:5a:f9:f8:de:95:c5:
c8:8d:95:80:3d:37:d7:50:e5:54:47:71:c4:de:52:60:86:2c:
1b:b5:4c:ba:07:4b:84:ee:44:3a:cd:a2:c2:b0:96:8c:96:81:
d5:48:1f:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:20 2024 by rpki-client on console-fra.rpki-client.org