Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/F1vr_KVwhSqK8wIjOe0otsQnZhk.roa
File: F1vr_KVwhSqK8wIjOe0otsQnZhk.roa (raw, json)
Hash identifier: 7PKtfhDs+CBE1CkTz9jc+5AK9l+4hXIZ0rTpRSJkAlE=
Subject key identifier: 17:5B:EB:FC:A5:70:85:2A:8A:F3:02:23:39:ED:28:B6:C4:27:66:19
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01899B158AD607F73DF1FF08C9F25F321685
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/F1vr_KVwhSqK8wIjOe0otsQnZhk.roa
Signing time: Fri 28 Jul 2023 06:00:27 +0000
ROA not before: Fri 28 Jul 2023 06:00:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197644
IP address blocks: 77.242.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9b:15:8a:d6:07:f7:3d:f1:ff:08:c9:f2:5f:32:16:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jul 28 06:00:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=175bebfca570852a8af3022339ed28b6c4276619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8a:07:9c:d0:b5:ec:58:6c:c9:40:22:0a:e4:
ef:ac:82:90:53:c2:17:4c:ba:bb:3f:01:84:f6:89:
e3:5d:d9:6e:f8:9f:6a:8c:4a:09:a6:12:18:81:39:
04:f8:31:b1:b2:c2:f7:86:56:eb:03:56:34:da:0b:
2d:98:96:e2:d9:4b:51:24:96:06:d4:15:1b:6e:35:
05:81:cd:c3:03:20:2f:28:d3:9c:7d:a6:9b:07:c3:
4c:5c:76:3c:04:eb:01:e5:92:0b:f3:f5:d7:6f:5c:
8b:fd:3b:34:20:a5:2a:d2:30:f9:bd:18:fd:5e:cd:
8f:c2:89:d7:6c:51:bc:c1:e9:20:d2:3e:87:f2:a6:
7c:37:42:d8:03:ab:49:2f:c5:ee:af:31:2d:ee:d7:
c8:9e:2e:1b:fc:d5:7c:3b:d1:b3:23:0c:96:5c:4c:
56:88:bb:27:59:d3:74:69:9f:c8:42:c7:a7:47:d8:
50:91:d8:bc:a8:5c:45:a1:45:da:ac:34:e1:ec:c1:
7e:68:7c:83:10:9b:90:1b:a3:3d:5e:94:14:03:1d:
c3:9c:15:20:e1:0d:09:86:5f:17:22:b5:94:0c:da:
9d:70:78:86:6f:a2:b1:1d:5d:68:23:a8:e5:35:a9:
29:8b:f2:fc:77:79:82:d7:c9:82:be:64:ad:2d:29:
b5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:5B:EB:FC:A5:70:85:2A:8A:F3:02:23:39:ED:28:B6:C4:27:66:19
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/F1vr_KVwhSqK8wIjOe0otsQnZhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.156.0/24
Signature Algorithm: sha256WithRSAEncryption
21:08:70:d1:6c:eb:09:fb:97:f3:47:9d:1e:0c:29:2b:c6:17:
b9:3f:31:ef:fe:b6:fe:c5:62:86:36:45:c8:e5:b9:f4:c0:98:
36:6e:6e:8b:81:fa:3f:b9:4e:9b:c9:4c:4e:24:05:db:21:fe:
8e:ae:61:0b:9e:61:b8:bf:5d:a6:44:ed:33:bd:09:37:66:30:
aa:6b:9c:b8:d1:73:7f:67:43:d9:1c:a1:2b:f9:e9:61:22:69:
f3:3a:dd:ca:67:74:1d:aa:fb:2f:42:89:24:3d:a8:e1:39:26:
67:08:3e:92:1f:a2:50:ad:15:ff:c3:48:89:b3:1e:b9:f6:da:
c1:6b:7d:a8:1c:eb:b5:c7:ac:d1:ba:e6:e3:5e:3f:c4:9f:d2:
f2:32:8d:c9:7a:2a:ad:a8:58:9e:89:11:f0:b2:c0:ad:1b:4c:
19:bb:17:fa:81:11:c8:fd:5f:0c:2a:9f:7c:2f:a6:4a:93:13:
3b:69:6e:ce:12:99:46:57:a6:6c:f4:45:94:76:d4:e0:db:ea:
f4:9c:a6:7d:2c:04:49:66:b9:ed:af:92:a7:9a:ae:b2:ce:ff:
4c:73:dc:e2:3a:a3:d3:2d:fd:f4:21:aa:e0:57:1d:f7:62:69:
28:9c:ae:73:17:ca:50:34:f7:b0:e4:fc:26:51:4b:ab:ee:83:
df:3d:99:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 4 16:01:59 2023 by rpki-client on console-fra.rpki-client.org