Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/DLn0QAvjtkU_NMOi8rbOwCAJtgc.roa
File: DLn0QAvjtkU_NMOi8rbOwCAJtgc.roa (raw, json)
Hash identifier: nObtcib3bcrI2wsoVo/g34rvuljJDi8+8auItCtrkR4=
Subject key identifier: 0C:B9:F4:40:0B:E3:B6:45:3F:34:C3:A2:F2:B6:CE:C0:20:09:B6:07
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE61E30C55A8692E30EE390DD0004BE
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/DLn0QAvjtkU_NMOi8rbOwCAJtgc.roa
Signing time: Sun 01 Jan 2023 10:34:58 +0000
ROA not before: Sun 01 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60522
IP address blocks: 194.62.248.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:1e:30:c5:5a:86:92:e3:0e:e3:90:dd:00:04:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cb9f4400be3b6453f34c3a2f2b6cec02009b607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cd:e2:c9:81:ab:21:db:8f:5a:da:9f:e0:a5:
ee:aa:a7:a8:47:f6:40:12:32:bd:0b:8c:28:45:a7:
9c:f9:a6:4d:ce:fa:10:4e:16:98:64:5d:c7:33:69:
88:1e:fc:e3:f5:ad:a4:3d:8d:ca:cd:5b:70:e7:fc:
ee:5a:d8:4d:04:94:3b:2b:16:c8:0a:88:b9:e0:ff:
c6:38:3a:82:db:ed:b8:be:ea:d9:1d:75:59:fa:3f:
92:af:31:e9:db:cc:4d:ca:ac:1f:59:a6:0c:d8:6b:
eb:d1:49:9b:bb:0c:f1:ea:56:5d:6b:3d:9b:4a:0e:
1e:60:db:a7:f2:0a:02:24:98:d7:16:f6:20:14:df:
c8:34:70:0c:c3:2d:98:d6:c5:67:2a:03:57:53:47:
43:d3:36:ac:c3:8b:85:d9:3f:c9:ed:fd:e7:ed:d9:
76:fd:5d:f5:1d:67:c1:ec:59:e3:b5:9f:fe:92:da:
85:16:30:6b:a8:9a:d7:40:6f:c6:a9:2e:ae:13:15:
3f:cd:f1:05:39:15:7f:b2:00:3f:58:24:9b:c6:74:
20:2e:0c:c8:9d:ee:3c:0f:fe:ad:d4:40:f0:3f:d7:
8f:23:bd:3b:dc:8b:c6:d2:15:f2:1b:e2:2f:e7:66:
1f:da:b9:a3:2e:dd:74:de:84:67:f5:e3:5a:2f:6c:
a9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B9:F4:40:0B:E3:B6:45:3F:34:C3:A2:F2:B6:CE:C0:20:09:B6:07
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/DLn0QAvjtkU_NMOi8rbOwCAJtgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.248.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:9f:e5:a2:6d:38:aa:aa:57:23:2e:f5:3c:98:5d:d4:90:ee:
41:e3:39:98:32:8b:c6:aa:e4:9a:7b:bf:3e:df:ee:78:13:c2:
fe:08:4b:42:bc:4a:19:20:88:2f:17:5e:5b:d1:90:e3:9e:51:
ef:f0:c7:02:c8:d6:a7:34:d4:68:d3:a0:f9:33:f0:57:9f:18:
d8:6e:07:99:8d:d6:8f:f0:54:a5:ac:9b:d3:54:34:96:29:de:
48:c1:32:b2:24:11:f1:79:5e:b2:ea:bd:d2:5f:8d:79:57:07:
54:c7:0f:9c:b6:76:2f:3e:49:43:91:a4:52:b1:e9:d0:bc:88:
ae:86:a8:36:78:c3:4a:de:64:aa:cf:27:39:0e:1c:c0:ab:d4:
5b:21:40:97:dd:85:8a:b7:4b:4b:2d:55:90:15:26:36:19:56:
2d:2b:0d:1c:f5:0b:3d:a7:b7:0c:92:34:31:89:81:4c:2d:d8:
a8:02:d3:41:fb:f0:28:6e:63:90:69:f9:ae:2d:12:b2:f3:c7:
c5:bd:6e:a0:c4:1e:75:fa:05:68:25:23:22:17:09:29:ba:6c:
7a:88:b9:e4:bc:56:ed:57:e8:3e:d2:c7:84:d9:7f:c0:55:90:
23:d0:25:67:64:73:e3:45:b0:56:16:ea:49:b8:61:6e:2b:5d:
34:95:c8:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:24 2024 by rpki-client on console-ams.rpki-client.org