Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DTLlA5qwfjnZ1U5uAcEzmUXCqsw.roa
File: DTLlA5qwfjnZ1U5uAcEzmUXCqsw.roa (raw, json)
Hash identifier: d8pnPVd5eSvVsiiYJMZfv1SgUTePvKMnY8gGpiK5Y3w=
Subject key identifier: 0D:32:E5:03:9A:B0:7E:39:D9:D5:4E:6E:01:C1:33:99:45:C2:AA:CC
Certificate issuer: /CN=da00e981953061972c896bd6d27738d083aadb0e
Certificate serial: 01856F0229B1F6575F0FCE79BFE32877FB92
Authority key identifier: DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DTLlA5qwfjnZ1U5uAcEzmUXCqsw.roa
Signing time: Sun 01 Jan 2023 20:24:50 +0000
ROA not before: Sun 01 Jan 2023 20:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 94.177.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:29:b1:f6:57:5f:0f:ce:79:bf:e3:28:77:fb:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da00e981953061972c896bd6d27738d083aadb0e
Validity
Not Before: Jan 1 20:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d32e5039ab07e39d9d54e6e01c1339945c2aacc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f0:ba:a4:a0:58:2f:31:ee:c7:22:b7:0c:c8:
bd:96:b1:88:44:af:7f:e2:47:2e:84:c5:f2:22:37:
64:f0:74:eb:21:47:7f:c3:a5:89:98:30:ad:37:b0:
93:82:68:ba:36:c6:b0:f9:25:e4:b8:4c:20:e4:17:
45:62:2d:79:90:15:b2:30:de:da:22:0d:50:17:46:
13:47:e1:72:9e:85:7d:61:af:de:7d:57:03:ea:ae:
ee:71:a5:87:20:2e:d7:50:27:a1:d9:1e:1d:9e:7a:
39:2b:7e:5e:fb:7d:b4:9e:1c:68:d0:63:23:34:77:
ba:7c:11:df:b2:c9:0a:52:8b:4c:df:05:ef:da:f3:
af:25:64:08:dc:01:c1:57:dd:fc:2b:24:7e:e5:c7:
c4:c4:3a:c8:d3:7c:52:46:fb:53:ed:9f:4c:34:66:
de:4f:cc:61:92:5d:04:4b:12:10:c7:27:ea:17:98:
d4:27:2d:f2:b2:c2:38:d8:b0:d5:34:a2:f1:a6:6e:
c7:86:dc:53:9a:1d:62:4e:2a:8e:8a:01:39:e2:e3:
a8:27:ea:95:62:7a:bf:ce:95:f1:a9:6f:b8:3f:58:
4a:c3:4f:f5:0b:68:21:80:12:9c:58:3a:b6:30:bb:
0e:75:9e:0d:84:91:fc:d5:13:24:c4:4b:f2:18:b5:
89:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:32:E5:03:9A:B0:7E:39:D9:D5:4E:6E:01:C1:33:99:45:C2:AA:CC
X509v3 Authority Key Identifier:
keyid:DA:00:E9:81:95:30:61:97:2C:89:6B:D6:D2:77:38:D0:83:AA:DB:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gDpgZUwYZcsiWvW0nc40IOq2w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/DTLlA5qwfjnZ1U5uAcEzmUXCqsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82a7d6-92a9-4204-9ae0-9a48ecf9e15e/1/2gDpgZUwYZcsiWvW0nc40IOq2w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.118.0/24
Signature Algorithm: sha256WithRSAEncryption
49:f4:2b:da:cb:3a:09:f5:c4:5e:3e:76:52:d3:54:30:fb:53:
af:79:3c:da:a8:25:8c:4b:2d:b8:5e:7b:a1:f0:f0:4d:9e:85:
e2:27:46:ca:62:5d:fc:60:e5:20:f2:9c:20:ac:f0:ce:84:28:
0b:a5:df:a5:65:db:d2:2f:5b:14:33:aa:e4:51:af:1c:7b:8c:
36:49:22:00:be:c4:37:0c:b7:31:40:56:71:e3:26:b5:a4:e1:
bf:c6:99:20:ed:a2:a5:49:a3:06:ec:5e:59:26:a1:0c:12:7c:
b5:ec:cc:58:3e:b1:5b:29:d3:21:ef:d4:ed:34:f3:b1:cf:53:
05:3c:8a:4e:a1:86:03:4c:bd:e2:76:03:d0:a1:19:85:68:d6:
5c:52:84:95:fc:96:b4:5a:21:53:d1:cc:7a:e9:1f:12:1b:be:
7e:ac:13:e7:06:7c:97:de:30:5b:e4:ce:10:8a:20:45:f9:e8:
72:a0:6d:8b:cd:56:89:e4:10:c4:86:c5:0b:2b:40:23:19:ba:
5b:47:10:25:23:46:ea:5e:5e:7c:5b:42:c1:0b:75:ee:54:48:
45:0a:9e:6d:27:ef:0c:5e:02:ef:c4:6a:7b:e8:7f:f1:82:c2:
93:c1:a4:c8:11:11:77:c8:75:01:d9:bb:12:83:f1:ce:8c:73:
56:a4:20:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:04 2023 by rpki-client on console-fra.rpki-client.org