Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/0cCKDly1MP-0OYWFbT15q4_B4dU.roa
File: 0cCKDly1MP-0OYWFbT15q4_B4dU.roa (raw, json)
Hash identifier: 6t+A+komlMIQnh4ScKEEwpsSN/nndM2X+GYfFASbGQo=
Subject key identifier: D1:C0:8A:0E:5C:B5:30:FF:B4:39:85:85:6D:3D:79:AB:8F:C1:E1:D5
Certificate issuer: /CN=68639a21759796fe3a1d919f9b5737eb68d708e4
Certificate serial: 01856FE7199CEC9EE3203781AEC8FCE6BC0F
Authority key identifier: 68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/0cCKDly1MP-0OYWFbT15q4_B4dU.roa
Signing time: Mon 02 Jan 2023 00:34:54 +0000
ROA not before: Mon 02 Jan 2023 00:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21375
IP address blocks: 82.116.61.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:19:9c:ec:9e:e3:20:37:81:ae:c8:fc:e6:bc:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68639a21759796fe3a1d919f9b5737eb68d708e4
Validity
Not Before: Jan 2 00:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1c08a0e5cb530ffb43985856d3d79ab8fc1e1d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:93:75:26:33:d4:c6:83:8d:75:55:9a:c0:b7:
07:df:36:6c:2f:7b:fe:15:9e:16:fe:a4:91:7b:53:
de:ca:6d:dc:a3:d4:d4:3b:72:0e:e3:05:82:1f:a3:
f8:f9:3b:2b:67:86:f1:a1:7c:95:3d:db:13:d9:8a:
11:38:19:ef:6b:b3:22:0d:24:6f:0d:97:7b:2d:f7:
87:9a:00:0e:7e:2f:d5:47:81:b3:3b:39:1f:f1:68:
dc:a0:47:28:6c:c4:57:c4:94:c8:d4:eb:bc:1b:03:
dd:e7:9e:b9:d7:ba:1a:96:94:78:4b:d6:25:97:3d:
f6:da:22:0c:47:46:38:7f:d1:ab:36:91:60:b2:0b:
33:ad:98:f9:84:5b:db:4e:7a:89:49:63:d4:ce:c8:
ee:9b:0f:2d:78:33:74:39:2e:0f:46:8b:9a:53:8a:
db:97:c1:9a:9c:4b:9f:2e:25:e2:dd:52:a7:3b:4a:
2e:c1:cd:fc:95:b4:bd:22:65:e3:19:d2:e1:f3:3c:
0f:67:f7:c8:9c:5b:72:cb:a8:8c:0a:ab:2a:e6:ef:
f8:cf:92:32:3a:23:4e:6f:87:71:17:c5:57:60:73:
1c:a7:2c:9b:fe:72:9f:27:45:16:7d:48:13:25:c0:
cd:a2:2c:8c:ac:af:ab:c9:01:35:ec:08:1d:14:5c:
1e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C0:8A:0E:5C:B5:30:FF:B4:39:85:85:6D:3D:79:AB:8F:C1:E1:D5
X509v3 Authority Key Identifier:
keyid:68:63:9A:21:75:97:96:FE:3A:1D:91:9F:9B:57:37:EB:68:D7:08:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aGOaIXWXlv46HZGfm1c362jXCOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/0cCKDly1MP-0OYWFbT15q4_B4dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e56811-9801-4595-87e7-13d168d59b11/1/aGOaIXWXlv46HZGfm1c362jXCOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.116.61.0/24
Signature Algorithm: sha256WithRSAEncryption
64:8f:25:c9:0c:0f:86:09:de:be:e8:ee:bb:50:c5:c1:85:46:
8a:92:4c:85:66:1b:08:b6:5a:c0:96:5c:28:91:a5:b0:d0:a3:
a6:2d:c7:55:fd:e5:47:37:c7:a7:dd:78:be:6c:aa:8c:e0:55:
b8:41:0e:e3:67:4c:31:ed:b5:ee:4e:41:9b:ca:8e:6d:9c:c0:
f1:dc:60:62:17:b9:25:9e:73:22:c3:b9:c1:08:9d:1f:0c:54:
31:cf:6e:25:2c:71:96:18:6f:84:6c:46:a6:71:68:d5:cf:3d:
ab:9c:ec:32:a1:57:de:76:26:23:7b:ec:16:55:b5:e1:53:c1:
d6:74:e3:34:8e:99:5f:8d:55:03:2c:92:b9:4e:f4:cf:1f:31:
08:b4:75:29:88:89:b1:97:45:30:7d:7a:17:b6:30:27:5f:da:
a3:f1:8f:e8:1d:ea:15:e9:ea:7c:87:c1:76:37:f2:47:96:19:
a8:67:56:e1:df:29:14:80:19:2e:3e:4c:aa:a1:98:0c:e5:ad:
ce:96:c1:dd:85:79:36:b2:a8:e7:c0:01:26:48:ee:4e:fb:e7:
1b:8c:d5:38:a3:db:e4:73:82:17:63:76:17:a9:89:25:4f:0c:
50:85:6c:72:56:ad:0d:27:f0:13:9b:97:8c:e3:30:57:0d:21:
c7:f5:84:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:35 2024 by rpki-client on console-ams.rpki-client.org