Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/2a24GsSYyX473tjXyePsBv3RXXo.roa
File: 2a24GsSYyX473tjXyePsBv3RXXo.roa (raw, json)
Hash identifier: lgfcn8pQk1eeYGo+agPqYDjcZrrufEm7UtyHZ/jQVAE=
Subject key identifier: D9:AD:B8:1A:C4:98:C9:7E:3B:DE:D8:D7:C9:E3:EC:06:FD:D1:5D:7A
Certificate issuer: /CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Certificate serial: 018B693979B378A1BAF000E21666C24BAA89
Authority key identifier: 29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/2a24GsSYyX473tjXyePsBv3RXXo.roa
Signing time: Wed 25 Oct 2023 23:44:16 +0000
ROA not before: Wed 25 Oct 2023 23:44:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 79.110.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:69:39:79:b3:78:a1:ba:f0:00:e2:16:66:c2:4b:aa:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2983841bc09f1fd4fe3de991016c0b7126fba52e
Validity
Not Before: Oct 25 23:44:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9adb81ac498c97e3bded8d7c9e3ec06fdd15d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:83:30:74:db:ac:61:3f:63:8b:d4:6a:ce:47:
38:f5:38:c9:ac:c0:50:6e:6e:e3:03:9f:8f:0f:c9:
d2:06:3d:9a:56:e8:dd:a4:72:bc:b7:3d:c4:7b:f6:
fa:9c:32:b0:fd:cb:07:f6:b2:76:83:34:36:e5:ca:
a2:ad:eb:30:a0:bd:67:08:9c:93:49:21:d9:d4:f0:
29:74:b8:da:c7:6e:84:c0:aa:08:56:a9:6f:ea:10:
50:d3:d0:b0:95:f1:b4:a3:45:f4:34:24:ec:48:a8:
58:18:02:c2:ec:39:a9:7b:78:22:f6:d0:3f:53:1b:
ac:9f:1d:55:17:a9:bc:a2:39:8c:d2:fd:ea:4e:46:
f1:39:5c:27:46:18:d2:75:03:6f:2f:95:c5:4f:3f:
92:61:55:28:66:c2:89:7b:2d:d5:88:93:ee:89:f9:
95:b9:5e:be:00:3e:a4:b0:0d:a7:87:32:b0:3a:0f:
c5:a8:dc:72:2a:88:d9:35:89:a6:c4:2b:af:a6:96:
1f:ce:91:db:65:f3:a7:f4:c1:0c:c2:22:55:89:dc:
80:ab:ae:1d:7b:ab:99:b3:43:18:ad:b5:25:49:fe:
e8:6d:2d:57:b5:eb:77:7f:d9:be:5f:83:fb:f8:51:
4e:d9:e2:ab:58:34:71:50:d1:bc:8a:bd:6c:da:5b:
2b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:AD:B8:1A:C4:98:C9:7E:3B:DE:D8:D7:C9:E3:EC:06:FD:D1:5D:7A
X509v3 Authority Key Identifier:
keyid:29:83:84:1B:C0:9F:1F:D4:FE:3D:E9:91:01:6C:0B:71:26:FB:A5:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYOEG8CfH9T-PemRAWwLcSb7pS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/2a24GsSYyX473tjXyePsBv3RXXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/cc37cf-b056-41d9-b57b-1dd5dab36f9f/1/KYOEG8CfH9T-PemRAWwLcSb7pS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.166.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:61:ca:b0:81:da:30:ee:72:58:c5:8f:65:19:de:70:0c:af:
9e:38:ac:07:95:71:ed:c9:26:aa:a8:fd:8d:55:9b:7b:f6:72:
5c:1b:39:34:10:4c:4e:ef:f0:5a:60:78:6d:f9:bc:09:fb:79:
d5:ad:e2:8f:f5:19:30:81:78:6e:68:b3:4d:24:7d:cf:04:43:
36:7a:8a:76:41:5b:ff:9d:56:29:83:77:0b:d3:b2:99:0f:a9:
5d:26:df:8b:ee:00:af:a4:1c:ea:69:26:8c:a8:74:26:de:fb:
fc:d5:64:91:92:52:a5:a2:cb:1b:fe:f7:c0:14:30:fb:4d:52:
44:49:0a:d6:f6:43:1e:94:ce:57:b6:b7:da:56:2b:c9:c6:b6:
93:bd:17:53:b8:07:d4:da:6b:c5:f0:6c:40:44:c5:83:f2:11:
ca:9b:20:92:ff:75:0e:60:32:24:fd:49:fc:c9:19:fb:c2:b3:
8c:a8:b7:65:fa:70:2a:17:7d:04:07:87:50:8b:5d:d8:8f:f8:
98:8d:cf:54:74:8b:fc:07:9f:76:07:03:d3:a4:80:04:77:f4:
16:a2:1c:16:6c:53:63:9a:47:14:88:d5:78:25:6f:b9:2b:f5:
8b:cc:fd:cb:0f:33:18:dc:f2:77:ee:57:50:55:d4:e2:8c:87:
cd:02:ad:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 26 15:52:31 2023 by rpki-client on console-fra.rpki-client.org