Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pXHPdcOTwkgLfZHHI_0d2TPcBDA.roa
File: pXHPdcOTwkgLfZHHI_0d2TPcBDA.roa (raw, json)
Hash identifier: +L7gx0kxdma/wv6+rrh016d7jO+QqIuHLce41ihf+is=
Subject key identifier: A5:71:CF:75:C3:93:C2:48:0B:7D:91:C7:23:FD:1D:D9:33:DC:04:30
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01856DC1D2AED50360EB7B895A2012E9D3E3
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pXHPdcOTwkgLfZHHI_0d2TPcBDA.roa
Signing time: Sun 01 Jan 2023 14:34:56 +0000
ROA not before: Sun 01 Jan 2023 14:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199820
IP address blocks: 194.124.38.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:d2:ae:d5:03:60:eb:7b:89:5a:20:12:e9:d3:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 14:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a571cf75c393c2480b7d91c723fd1dd933dc0430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:f1:04:de:82:9e:83:99:d2:a7:09:68:35:01:
e6:3e:72:bc:a7:27:15:66:95:6f:ef:ec:6e:09:a3:
2b:8e:a6:8a:8d:dc:52:ea:20:54:37:16:5b:35:d2:
a7:a8:c7:77:16:4a:b0:42:39:b2:0c:6a:a1:df:fd:
42:59:12:28:6f:b6:69:f6:17:2b:eb:2e:48:2d:4a:
c4:26:69:37:ea:dc:03:4c:61:e8:3c:29:83:a8:b9:
c7:90:f5:08:a3:75:e2:43:62:e8:0c:60:3f:fd:75:
27:31:2a:ec:09:bd:ce:40:a8:ed:c4:93:cb:13:5c:
d3:0e:d2:fc:dd:79:6d:09:6a:c6:a6:e1:a3:83:e6:
d6:76:1b:cd:69:58:20:8f:96:67:53:73:75:ca:68:
01:5d:06:a5:5c:27:5e:34:ee:da:10:fe:c9:46:90:
2a:d6:9e:a6:ba:73:25:be:c0:52:f3:77:84:05:69:
80:ed:e3:56:46:cc:3e:02:02:18:a0:6f:cb:e3:cc:
d6:b2:da:69:08:bd:39:0a:5c:cf:87:43:09:e6:3a:
2b:23:df:79:34:4d:9e:35:08:ff:8d:8c:d0:bd:e6:
97:7c:f0:f9:9d:16:aa:a3:d5:23:7c:1f:18:81:73:
7d:0d:fc:63:fa:f3:47:4e:39:73:86:3d:11:15:a8:
1b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:71:CF:75:C3:93:C2:48:0B:7D:91:C7:23:FD:1D:D9:33:DC:04:30
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/pXHPdcOTwkgLfZHHI_0d2TPcBDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.38.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b3:60:04:45:21:d6:17:8c:f7:bf:bf:6c:73:de:44:db:46:
6e:4c:84:d1:cf:f5:75:f7:9c:eb:5b:a4:ee:cf:c1:9e:b2:86:
ea:f1:08:2f:bb:8e:16:d4:18:a7:ad:6d:c6:18:68:f4:15:67:
80:2c:43:85:02:05:18:03:ff:6c:b5:fb:b5:09:49:dc:12:de:
f2:c8:f6:1c:e6:ae:71:ff:d7:7c:d0:7c:d7:4a:f2:06:49:4b:
5b:e6:3b:92:04:18:ac:99:b0:f3:18:47:e5:c0:66:d8:fa:80:
40:b3:88:2e:7e:6b:98:b3:97:79:ad:ff:34:1e:d0:f2:8c:aa:
33:c8:5c:a1:f9:99:95:47:dc:28:47:74:49:8e:1e:cc:c2:6e:
a6:20:17:64:e1:0a:38:e2:83:ea:01:33:98:57:3a:7d:72:3a:
46:1f:07:0e:93:ff:92:cb:61:04:6f:e2:81:b7:2f:1f:4b:38:
62:ec:18:f6:d7:cc:45:44:f4:a6:23:f1:bd:cc:2b:8b:7a:4c:
b0:aa:ef:52:26:cc:dd:2a:56:bd:d2:c3:a2:e5:d2:34:cd:5e:
d9:7e:d1:93:d7:82:84:6e:56:dd:1a:5a:f2:54:67:99:0e:1d:
5e:f8:de:50:16:06:b1:32:a0:9a:cb:fe:5e:33:01:b6:af:bf:
d2:56:fc:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org