Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/IQzq59CrqViH6BcsMe7vuoFTiYk.roa
File: IQzq59CrqViH6BcsMe7vuoFTiYk.roa (raw, json)
Hash identifier: 5FsRwrDod9+bR+wn3k08KvZ4OarE7Czi5ubfcUfi1DY=
Subject key identifier: 21:0C:EA:E7:D0:AB:A9:58:87:E8:17:2C:31:EE:EF:BA:81:53:89:89
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 018570707A0117FAABC6C15408B03BC7DA7B
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/IQzq59CrqViH6BcsMe7vuoFTiYk.roa
Signing time: Mon 02 Jan 2023 03:04:57 +0000
ROA not before: Mon 02 Jan 2023 03:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 87.254.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7a:01:17:fa:ab:c6:c1:54:08:b0:3b:c7:da:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Jan 2 03:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=210ceae7d0aba95887e8172c31eeefba81538989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:b4:1a:17:88:ce:1b:94:56:84:ab:90:73:ba:
62:c1:f6:30:ef:1a:be:f1:ab:3a:39:59:b9:f5:15:
e2:95:7d:57:4e:0c:84:20:07:17:b9:d3:56:e6:93:
81:4f:3c:3b:2c:8d:76:e1:b4:79:d3:2c:eb:22:77:
42:6c:aa:f9:a5:86:27:24:10:84:fd:59:e8:93:09:
e3:cb:55:d2:57:d9:82:6f:53:01:8a:b5:73:74:f6:
7f:44:aa:00:b4:fd:90:bf:39:0d:77:bd:c6:31:10:
f9:53:26:c6:c9:0d:4c:ea:a4:1a:7a:5b:70:d9:f3:
d2:1c:06:95:db:f1:c9:28:61:82:11:6e:5b:6b:ae:
95:04:e1:fa:03:8d:02:06:08:0e:b8:33:fb:d1:91:
df:86:5a:9b:ec:54:22:2e:54:1c:7e:df:b3:ec:63:
77:f2:13:e3:d0:68:38:c8:fa:bd:6b:ad:e0:54:f8:
e6:72:c0:a2:46:f4:42:02:1c:11:13:ef:fd:c9:fb:
38:a6:20:bd:0b:a1:a4:fe:92:19:64:e5:0f:97:96:
10:2e:81:53:41:2f:ac:a9:01:6f:ea:23:5a:c2:2a:
0b:7e:72:ca:11:fc:4c:32:3d:c2:99:ac:27:7d:1c:
16:be:db:87:9d:b2:9f:57:79:d2:4b:0d:42:9c:20:
11:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0C:EA:E7:D0:AB:A9:58:87:E8:17:2C:31:EE:EF:BA:81:53:89:89
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/IQzq59CrqViH6BcsMe7vuoFTiYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.3.0/24
Signature Algorithm: sha256WithRSAEncryption
25:d1:35:fa:69:23:60:a2:33:d6:e6:02:d7:3b:37:c6:30:f2:
58:29:c8:36:0a:fd:9e:95:f9:37:7c:48:2a:4f:ac:66:0a:34:
24:62:a7:e7:79:ab:ce:94:ae:c5:14:94:28:43:82:bd:57:e8:
58:9f:48:68:c2:f4:11:55:f8:f5:bb:1c:60:ca:53:cf:2c:75:
24:b7:38:10:ee:a6:b1:af:d6:0e:35:0e:db:b9:2a:98:6b:d6:
b5:9e:86:d8:e2:07:d8:4f:28:61:dc:cb:6b:a8:cc:7d:2b:97:
02:f4:b3:9d:c7:44:ce:c4:13:75:eb:8a:7f:32:b7:49:2a:ea:
ac:e5:ef:40:8d:6f:ee:a8:a8:23:67:a4:5d:0b:51:13:ee:18:
b5:89:92:40:6a:7c:60:cc:d8:af:88:a6:f8:ac:42:c8:84:e8:
fb:26:76:10:ac:8e:41:46:47:9d:03:d8:4e:33:ef:14:d8:20:
5d:bf:25:16:2d:d4:e2:e4:42:15:1b:2a:28:6e:4b:1f:65:3f:
6b:e6:ce:6a:15:25:a9:79:18:24:2e:16:aa:19:58:50:79:0f:
c5:8e:62:76:6a:97:6d:69:7d:02:0d:61:24:8f:a3:af:76:cf:
87:ff:ec:dd:1b:c8:d8:e2:30:db:24:cf:67:b5:9c:2b:c2:03:
60:22:15:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:48 2023 by rpki-client on console-fra.rpki-client.org