Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/dJFg2s03PVBJb6f82_RzTNnA2hw.roa
File: dJFg2s03PVBJb6f82_RzTNnA2hw.roa (raw, json)
Hash identifier: FYH+wD9N3WThZ+Eo9bx8LaIhM3g+knNVoD2Fi7qyE6U=
Subject key identifier: 74:91:60:DA:CD:37:3D:50:49:6F:A7:FC:DB:F4:73:4C:D9:C0:DA:1C
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 01874FF1A8B8B45D5794334F144E585EB723
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/dJFg2s03PVBJb6f82_RzTNnA2hw.roa
Signing time: Wed 05 Apr 2023 05:44:10 +0000
ROA not before: Wed 05 Apr 2023 05:44:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25211
IP address blocks: 87.246.16.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4f:f1:a8:b8:b4:5d:57:94:33:4f:14:4e:58:5e:b7:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Apr 5 05:44:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=749160dacd373d50496fa7fcdbf4734cd9c0da1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ef:2d:97:06:de:12:ee:52:f8:b2:a6:9e:87:
95:c3:87:dd:3a:cc:48:5c:b5:67:4e:b4:6f:c7:13:
d9:9b:8b:d6:13:22:4c:fd:71:aa:e8:64:9e:9a:1e:
ab:a7:e6:98:f7:c6:01:1f:99:d4:62:0d:ff:25:97:
d2:1f:5b:66:ab:53:05:94:5c:2d:5d:52:9a:af:f9:
cc:1a:4d:08:6a:1e:df:77:58:4a:c3:b0:61:f2:e6:
01:f1:bd:b4:d2:e2:36:81:04:46:ca:19:5a:f0:0e:
cf:4e:4a:02:58:89:4e:d6:84:06:69:c3:80:fb:ea:
41:b8:fe:cb:5f:75:e9:31:8d:83:c1:25:66:ff:e9:
3c:eb:84:92:2a:1f:73:d2:a5:ea:f9:67:d8:ca:a6:
e8:d0:4f:6f:63:11:77:84:7d:a1:8c:18:7b:57:72:
11:2a:f8:f5:24:de:41:4e:92:07:bb:1e:41:a8:34:
ae:f0:62:91:28:c3:07:c0:17:d6:b0:83:f5:55:e7:
22:23:e1:4a:7c:88:d0:e5:25:b9:b2:0b:a4:ec:d1:
c0:ed:f4:c9:8b:58:23:9a:86:55:16:a6:7c:ba:74:
47:74:e7:e6:7c:fd:3d:55:38:52:f5:02:b7:3a:a6:
8a:35:34:e5:c9:54:48:ef:8f:39:9f:18:04:4b:32:
33:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:91:60:DA:CD:37:3D:50:49:6F:A7:FC:DB:F4:73:4C:D9:C0:DA:1C
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/dJFg2s03PVBJb6f82_RzTNnA2hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.246.16.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:4a:9d:b3:e4:1f:c0:ec:d9:35:cc:42:a2:ee:eb:63:0d:0c:
2c:30:66:84:ed:e2:a5:f8:c8:63:ec:c8:2d:84:2e:62:48:fd:
66:60:16:ae:5d:14:73:6a:49:cc:54:ed:e0:e7:26:8d:ba:04:
d7:42:bd:90:9e:1c:71:cc:90:1a:b9:b9:67:78:fd:19:2b:ef:
f8:bf:fc:15:ef:4d:94:f3:9b:2e:e3:59:64:9d:a7:c8:31:d8:
6e:7c:49:96:97:17:3e:25:20:6f:24:6a:96:65:ce:b7:53:9e:
7d:b9:86:a1:45:4a:98:33:7c:59:0e:6e:5e:4e:8a:18:73:37:
8a:7f:4c:43:8c:70:d2:8c:54:e3:8e:8d:30:32:be:70:c6:87:
6d:5f:4b:1b:a2:11:97:a5:50:bc:a5:6b:11:15:88:2c:37:c1:
38:fa:32:a4:00:14:b8:98:69:c3:77:87:bd:a3:5f:82:50:e3:
e0:38:f2:d6:1c:ae:0d:8a:5c:ea:0e:aa:a2:cb:ad:a8:4a:e8:
f0:61:ab:db:ef:83:4e:76:b0:a3:d5:75:7a:20:70:d6:06:ab:
38:20:5d:e2:7e:6f:fb:f8:67:6c:ac:b2:3b:92:71:02:b2:d3:
02:5c:b7:e4:c2:19:2d:f0:ea:24:ac:40:19:48:6f:3c:4c:03:
64:52:5a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:40 2023 by rpki-client on console-fra.rpki-client.org