Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/iRA4GYOH7VAsVZb1ObAVfgtJGQ8.roa
File: iRA4GYOH7VAsVZb1ObAVfgtJGQ8.roa (raw, json)
Hash identifier: jMUTHBpcbYTO797ComfdC/IkXCHp0wGdobzxZ8BZkgQ=
Subject key identifier: 89:10:38:19:83:87:ED:50:2C:55:96:F5:39:B0:15:7E:0B:49:19:0F
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 0185E56583F87BBF9BCE762F1611D7E96DD9
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/iRA4GYOH7VAsVZb1ObAVfgtJGQ8.roa
Signing time: Tue 24 Jan 2023 20:08:33 +0000
ROA not before: Tue 24 Jan 2023 20:08:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 84.239.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e5:65:83:f8:7b:bf:9b:ce:76:2f:16:11:d7:e9:6d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Jan 24 20:08:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=891038198387ed502c5596f539b0157e0b49190f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:43:cd:6d:da:ca:1d:7b:c2:73:cf:ee:c1:ec:
6d:79:4e:15:09:20:d9:13:6e:79:5d:0b:9c:f7:07:
79:94:0a:c5:fe:b8:5c:c5:6e:6c:11:91:ea:a9:23:
19:3e:f4:72:d0:fe:d2:54:e9:66:4f:bc:2f:af:92:
83:c5:36:6a:62:a3:13:6c:60:92:f7:d7:67:b9:2f:
09:83:3f:12:b9:a2:6d:48:b3:a0:1a:40:79:5e:70:
db:90:9b:a3:6f:38:d7:e6:03:61:6d:96:fa:e4:99:
69:5f:b1:ce:89:d0:6d:bf:14:68:11:ad:5e:7c:01:
42:eb:72:f7:1a:13:d4:f4:21:f8:f6:3a:69:3f:4a:
57:22:43:4c:56:9f:83:e1:86:fa:50:fb:63:2f:4b:
07:25:8d:98:2c:85:7f:5e:30:c6:c9:6f:3b:f9:8b:
1a:c8:ca:9a:96:ce:e8:07:98:55:a3:f0:94:b1:53:
7c:20:2a:e7:d8:b5:9a:e6:70:20:f3:46:ea:bc:79:
1a:b5:b2:5c:31:83:21:ec:d9:5c:93:c3:e1:c5:c7:
7b:ca:3a:be:d3:7d:f5:5d:e1:1d:1d:78:c7:78:e7:
e9:82:15:dc:de:20:3c:7d:b7:b5:67:86:37:c0:3c:
ee:72:bc:92:da:36:85:8a:30:d0:48:cf:fc:f6:9f:
be:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:10:38:19:83:87:ED:50:2C:55:96:F5:39:B0:15:7E:0B:49:19:0F
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/iRA4GYOH7VAsVZb1ObAVfgtJGQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.42.0/24
Signature Algorithm: sha256WithRSAEncryption
82:9f:95:83:54:54:d1:10:82:99:c8:9b:2c:f9:ad:a3:83:12:
e8:ec:93:61:27:43:cf:b2:96:31:0b:bb:36:c2:93:47:a0:c4:
44:a6:29:ba:7c:57:25:96:4a:95:7c:af:68:05:72:89:f6:54:
db:e2:05:da:40:32:af:c7:c3:36:c1:7f:a8:f0:80:9d:61:6b:
10:89:3f:bf:0a:b2:0e:a1:9c:4e:47:4c:4e:80:5d:c0:76:65:
66:f2:46:f5:8a:39:1b:91:b4:e5:1d:86:a0:85:4e:8d:f8:f5:
58:29:5b:ff:cd:74:4a:87:42:9d:04:5e:c4:86:73:88:84:2e:
82:14:21:07:ba:e7:3b:72:15:ac:c1:38:ce:72:8e:97:f6:73:
56:26:71:66:6f:ed:25:e1:c5:53:7d:f0:b5:ef:88:08:5a:4b:
c7:f4:0a:0b:b9:2c:7b:59:b6:6d:69:cf:f2:9d:1b:4f:fe:79:
81:01:1f:52:9c:13:e9:c8:4b:98:40:44:71:18:57:6c:b5:c4:
7c:12:0b:d5:a6:9b:1c:60:7a:06:8a:b9:6e:41:76:2e:b2:45:
98:28:a6:b7:cf:b4:70:b4:2f:9d:c2:fe:85:aa:ef:d9:b2:13:
59:f2:60:b5:74:b7:a0:aa:b9:55:98:17:ec:c6:88:6a:c8:07:
98:ca:6b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:06 2023 by rpki-client on console-ams.rpki-client.org