Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/IE7aslpd3DwHQuUYE01531XfnhM.roa
File: IE7aslpd3DwHQuUYE01531XfnhM.roa (raw, json)
Hash identifier: bjWuot9kc7S3RZg6yrkaYaPkluLBgsF2XrkxNDnSecM=
Subject key identifier: 20:4E:DA:B2:5A:5D:DC:3C:07:42:E5:18:13:4D:79:DF:55:DF:9E:13
Certificate issuer: /CN=e875464e89816ef00b0369502018a7e59ce2d36c
Certificate serial: 01856ECB6572C91CEDA19C72190DE60D5CE3
Authority key identifier: E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/IE7aslpd3DwHQuUYE01531XfnhM.roa
Signing time: Sun 01 Jan 2023 19:25:01 +0000
ROA not before: Sun 01 Jan 2023 19:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24429
IP address blocks: 79.133.176.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:65:72:c9:1c:ed:a1:9c:72:19:0d:e6:0d:5c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e875464e89816ef00b0369502018a7e59ce2d36c
Validity
Not Before: Jan 1 19:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=204edab25a5ddc3c0742e518134d79df55df9e13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:43:b7:19:9b:f0:66:d5:a8:4e:d7:3a:56:dc:
b0:f6:b0:8b:2a:79:23:0b:50:56:8e:34:f4:7e:40:
0b:8a:8e:2c:80:64:f5:8f:90:a6:5e:5a:b1:fe:fc:
c8:05:d7:c4:42:85:1a:3b:f4:d5:98:f9:a8:31:9d:
e8:05:ea:81:ef:dd:7e:bb:9f:8d:41:d1:de:90:3b:
a0:97:44:55:2f:4d:07:a9:27:ac:e8:0d:19:04:b1:
8b:7d:11:2e:0a:51:c9:2a:ed:b1:13:1a:e6:92:b8:
f9:c3:37:ba:6c:e1:c0:fe:73:7e:76:ee:04:50:11:
d0:41:49:bf:bc:09:35:42:92:10:74:5b:b7:1f:14:
54:54:be:cf:02:a7:83:a0:dd:ef:99:79:9e:66:12:
7e:c7:55:e4:cf:a0:87:07:89:ca:5c:d9:b4:3c:f3:
aa:70:3b:94:5a:cd:14:f8:73:82:fa:eb:25:32:5f:
88:e7:3d:79:da:39:67:cd:26:c3:e5:8b:5a:43:4b:
56:c6:00:03:b1:fc:ae:2b:60:47:19:78:41:16:12:
23:1d:0c:ae:36:e7:3a:7e:bf:a8:11:dd:4c:4c:ca:
8e:e3:81:03:2f:6a:cb:0d:7a:df:e7:7e:a7:5b:ce:
e3:70:a3:33:88:2f:a1:83:cf:25:26:db:bd:a8:0a:
38:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4E:DA:B2:5A:5D:DC:3C:07:42:E5:18:13:4D:79:DF:55:DF:9E:13
X509v3 Authority Key Identifier:
keyid:E8:75:46:4E:89:81:6E:F0:0B:03:69:50:20:18:A7:E5:9C:E2:D3:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HVGTomBbvALA2lQIBin5Zzi02w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/IE7aslpd3DwHQuUYE01531XfnhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/c3069e-5ffc-4c8c-91dc-31d197f139d8/1/6HVGTomBbvALA2lQIBin5Zzi02w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.133.176.0/23
Signature Algorithm: sha256WithRSAEncryption
88:cb:97:1b:9a:c2:25:59:ed:94:c8:d0:a2:a7:33:40:21:06:
c2:d3:89:40:94:db:a8:aa:04:cc:2e:ff:c6:d3:81:d4:3d:15:
23:2a:fd:8e:d4:ca:7f:b3:cb:9f:d8:34:17:66:eb:f3:13:2f:
94:3e:f6:d4:31:b7:6f:39:3c:a2:c5:6c:7a:54:18:14:9c:56:
2a:38:a6:2e:34:76:7d:fa:11:f1:61:85:a3:c7:d2:a7:9d:c8:
2a:ad:66:f9:f5:b0:87:08:30:b3:6e:6b:8f:ab:1f:ec:84:3b:
81:67:bf:db:10:46:0a:4c:83:9d:c9:24:22:37:12:2c:4e:ff:
f5:f5:85:d4:cb:49:fd:32:df:a9:e6:ad:cd:43:3f:8d:c3:4c:
5f:75:e4:1c:8b:aa:21:1b:d7:4a:cc:e7:b0:55:50:26:06:58:
d8:56:e3:0b:50:fa:b4:b3:4f:d4:8b:d9:90:79:2a:44:89:d1:
db:c7:63:65:dd:84:c9:5c:d6:f7:3e:af:7a:b1:68:86:33:8c:
4f:2b:88:ad:2a:87:d8:77:3a:de:55:a7:4b:43:de:65:34:55:
de:89:1b:e6:fa:70:b8:2a:41:fc:6d:ae:83:1f:2d:67:43:5a:
58:1e:19:bc:1b:23:57:28:64:80:dc:d7:7d:02:09:9d:bd:c5:
40:f8:c7:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:21 2024 by rpki-client on console-fra.rpki-client.org