Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/fYkLepjQ_SthehqiI2JkJPjhFuY.roa
File: fYkLepjQ_SthehqiI2JkJPjhFuY.roa (raw, json)
Hash identifier: s9bLxII3Ids3+IQ1d1WmEhSP0ebNo+uUmJozkMOyY2o=
Subject key identifier: 7D:89:0B:7A:98:D0:FD:2B:61:7A:1A:A2:23:62:64:24:F8:E1:16:E6
Certificate issuer: /CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Certificate serial: 01856F0B40E7F1B92CE25E790723093CA22B
Authority key identifier: 77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/fYkLepjQ_SthehqiI2JkJPjhFuY.roa
Signing time: Sun 01 Jan 2023 20:34:46 +0000
ROA not before: Sun 01 Jan 2023 20:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62336
IP address blocks: 185.99.56.0/22 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:40:e7:f1:b9:2c:e2:5e:79:07:23:09:3c:a2:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7792c3fc69154ac7d515bcac9daa07e78bc229cc
Validity
Not Before: Jan 1 20:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d890b7a98d0fd2b617a1aa223626424f8e116e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:47:8a:0e:f0:24:be:0a:9c:b8:a8:4b:b7:6e:
98:ca:84:43:dc:16:b5:cb:1b:20:a7:12:42:22:b2:
ad:4f:10:23:c2:7e:ba:aa:d4:ae:ca:6b:af:cd:40:
a6:d4:54:93:32:85:bd:02:ed:8b:aa:f7:8d:54:45:
70:bb:21:dc:94:a4:d1:b3:e6:b9:75:89:83:f7:88:
16:76:36:05:e3:6e:ae:91:50:1f:36:4c:59:c5:06:
22:59:5a:5b:e2:1a:17:c5:5d:61:24:60:39:ae:33:
0c:57:e0:04:29:f8:a2:6c:60:b7:f6:03:63:91:c0:
b1:fc:a3:fb:5a:88:f8:7a:6d:44:3d:2f:00:ae:33:
98:75:30:2e:96:22:5d:f2:fd:10:34:86:c8:3e:b8:
28:b5:1a:04:65:5b:15:aa:30:3d:c5:41:b9:cc:44:
d5:4a:ed:f6:4a:a5:a7:da:d2:f9:53:a9:a5:5c:5a:
37:50:52:f5:c2:0b:44:ab:4d:fd:bd:f5:92:7d:1c:
8b:98:75:ba:82:1c:b6:e0:20:ed:f5:ee:69:da:ef:
0c:a1:44:4d:90:5a:2e:d7:2e:cb:83:9a:27:65:62:
51:85:82:1b:88:4c:01:9f:ed:5e:31:5e:bf:a5:d4:
ce:d7:97:b1:ca:80:9f:50:f1:5d:e4:89:7c:9b:32:
3c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:89:0B:7A:98:D0:FD:2B:61:7A:1A:A2:23:62:64:24:F8:E1:16:E6
X509v3 Authority Key Identifier:
keyid:77:92:C3:FC:69:15:4A:C7:D5:15:BC:AC:9D:AA:07:E7:8B:C2:29:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5LD_GkVSsfVFbysnaoH54vCKcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/fYkLepjQ_SthehqiI2JkJPjhFuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/52b48d-28a8-48f5-a4df-4db40a36563e/1/d5LD_GkVSsfVFbysnaoH54vCKcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.56.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:bc:54:f5:3d:ef:7b:7b:a0:ac:44:19:d7:d5:e7:1f:e4:aa:
27:87:5c:dc:ac:d9:3f:78:35:b1:64:49:ae:9a:1e:d1:10:1f:
69:2e:28:ed:30:39:39:0f:91:f8:0d:03:1e:75:87:ac:1d:75:
65:01:95:05:0b:77:7b:49:51:d2:f1:fd:bd:3f:f2:94:e1:27:
48:57:97:12:bd:31:0a:fd:53:21:40:db:3a:f7:59:bb:f7:d8:
92:35:18:3a:3d:8c:da:7d:62:a3:77:c4:b3:66:25:46:28:3d:
69:28:91:14:fb:0b:19:0c:84:59:ea:8d:69:9b:39:e0:36:2b:
ac:12:64:71:86:89:95:98:3b:88:99:44:7e:9f:d7:f6:e9:95:
b1:71:85:d5:1a:5f:9c:d6:00:3a:af:83:a2:b6:77:83:51:06:
cd:5f:b8:39:8a:5b:0f:b7:06:fe:05:f6:17:7a:9e:49:c2:4e:
31:30:cc:9e:c9:36:a2:96:b9:61:7e:e5:8a:07:79:81:d7:11:
7b:49:9d:34:b5:06:aa:b2:76:24:6f:1b:09:5d:68:86:61:c8:
88:ca:7d:6e:e1:63:70:64:e6:a1:70:fc:d9:88:a8:d8:6d:8b:
1d:a1:17:4b:ed:4b:8d:48:da:71:3c:10:a8:80:96:78:23:1a:
6b:36:08:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:10 2024 by rpki-client on console-ams.rpki-client.org