Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/kYqqmN3udIF5PQQRBY2KlQLeyZs.roa
File: kYqqmN3udIF5PQQRBY2KlQLeyZs.roa (raw, json)
Hash identifier: iNEgQS6xbmn2ED914Xeqv5ScETKyKVBC6eoac+t8CYY=
Subject key identifier: 91:8A:AA:98:DD:EE:74:81:79:3D:04:11:05:8D:8A:95:02:DE:C9:9B
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 01881E62763D324F8B119EA0930512566174
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/kYqqmN3udIF5PQQRBY2KlQLeyZs.roa
Signing time: Mon 15 May 2023 07:49:09 +0000
ROA not before: Mon 15 May 2023 07:49:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15723
IP address blocks: 85.158.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1e:62:76:3d:32:4f:8b:11:9e:a0:93:05:12:56:61:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: May 15 07:49:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=918aaa98ddee7481793d0411058d8a9502dec99b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ea:95:36:86:f2:f9:a0:90:0e:87:bf:b5:11:
5e:c1:0b:1f:69:74:28:ac:5f:7f:1b:a7:72:31:46:
f1:24:87:eb:57:99:81:8f:af:d3:57:7d:8a:d2:63:
36:01:25:e0:0e:4e:21:f2:79:3e:bb:cf:d6:e5:b9:
6c:39:79:62:ea:b9:41:1d:fd:a2:3b:d1:d7:f3:8c:
ef:70:94:0b:0a:17:af:68:82:ae:8b:51:26:f5:02:
49:f3:8d:89:39:77:ab:d9:9e:fc:03:d6:9e:e9:12:
95:23:08:f1:33:7c:90:23:8c:14:ca:2d:5b:3e:61:
06:fb:53:91:55:49:a9:5b:46:04:14:99:8b:37:50:
b4:ea:34:d4:9f:56:7b:e7:a3:66:7f:d0:b7:92:b1:
fe:d3:e0:e7:8a:de:02:16:29:ce:8f:66:ff:8c:74:
e7:ad:ff:58:a6:19:fd:a2:bc:27:0e:4e:12:63:4e:
35:ce:5e:36:ad:bb:4e:dd:dd:d6:dc:97:52:30:f7:
30:cb:2a:56:40:ca:50:81:d4:e0:1e:78:db:13:be:
15:90:cb:b6:61:ec:aa:62:56:2b:13:c4:06:e5:1c:
08:1a:37:02:7e:3f:34:05:90:7b:34:88:b3:50:0c:
e6:bb:e7:b6:ca:50:4a:5f:f4:f1:4e:06:58:2c:cc:
6f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:8A:AA:98:DD:EE:74:81:79:3D:04:11:05:8D:8A:95:02:DE:C9:9B
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/kYqqmN3udIF5PQQRBY2KlQLeyZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.147.0/24
Signature Algorithm: sha256WithRSAEncryption
28:57:cb:8e:63:9a:51:65:e1:81:79:ec:f7:f6:ef:dc:6c:1a:
18:19:ef:6d:e5:2b:7d:61:d1:3c:77:90:ea:8c:2d:24:11:21:
9e:bf:90:1b:f0:34:0e:f4:fd:33:ba:a8:ad:24:84:e5:9a:62:
4f:91:3d:31:c2:a3:f9:e9:cc:85:9d:ea:1e:b5:ff:a0:32:78:
a4:72:31:b3:3f:8e:0a:32:11:c2:ef:2e:2b:ad:ee:d7:f0:59:
fc:0f:8f:bb:17:08:24:64:24:c6:a3:1d:b2:d5:ac:31:6f:47:
2d:3f:b8:00:ff:a9:3c:ba:e2:db:55:81:62:8d:86:ee:9f:ca:
a9:89:46:13:b7:3d:02:4e:16:c8:98:58:b8:b1:a1:9d:00:6b:
aa:a4:df:27:7c:00:f9:71:d6:e3:85:25:9b:f7:72:f2:1f:d0:
ef:ad:11:9d:bb:c4:1b:b7:e0:d1:16:bc:6b:10:73:56:d4:58:
dd:7b:32:3e:46:eb:b2:9a:7b:7c:2e:ff:35:7c:c1:9a:f2:07:
b1:11:ea:65:14:78:81:e6:e8:66:89:1d:68:d5:46:3f:1f:c0:
5c:e4:db:d9:4d:7b:ee:ae:8a:3c:c6:78:7e:77:09:1b:46:8d:
13:b6:df:67:e0:24:56:ed:4f:55:0c:79:b9:e4:15:4d:39:c0:
b6:bf:e9:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:01 2023 by rpki-client on console-fra.rpki-client.org