Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/o_MQos3zpLoOSDVEiJ-gNs3XZgY.roa
File: o_MQos3zpLoOSDVEiJ-gNs3XZgY.roa (raw, json)
Hash identifier: 4AR4HtKsiIjpTa09P04K5kBd3O4RwZ5HD3WVD78xppo=
Subject key identifier: A3:F3:10:A2:CD:F3:A4:BA:0E:48:35:44:88:9F:A0:36:CD:D7:66:06
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0189816BB4F7423368E5B08898AB1BB3FEED
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/o_MQos3zpLoOSDVEiJ-gNs3XZgY.roa
Signing time: Sun 23 Jul 2023 06:24:26 +0000
ROA not before: Sun 23 Jul 2023 06:24:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212370
IP address blocks: 194.34.172.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:81:6b:b4:f7:42:33:68:e5:b0:88:98:ab:1b:b3:fe:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 23 06:24:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a3f310a2cdf3a4ba0e483544889fa036cdd76606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:65:7a:db:5c:9e:4e:1b:44:e4:24:58:fd:5f:
a4:62:9d:64:f6:2b:4f:51:a9:26:1d:cb:92:d2:a0:
a1:74:a2:8b:f8:dc:56:83:09:4a:dd:3f:9a:43:63:
b2:5e:c7:f2:e9:53:41:08:e2:70:51:fb:d9:3d:ee:
62:96:48:56:ec:cb:f6:63:1f:8e:8a:7e:1c:e6:31:
93:a1:63:2b:95:84:5e:8e:c0:ea:f5:ac:6e:1f:e8:
c3:80:82:df:f5:d8:9f:b8:3c:75:60:3e:c1:d1:27:
b6:ea:19:5b:cb:3f:f2:f8:c3:5c:33:80:0c:00:7d:
6a:cf:b6:45:a5:0c:61:80:a8:d9:1b:10:17:be:e2:
e9:4a:18:a7:35:92:bc:48:b7:5a:a3:9c:7a:b1:ea:
3b:12:b2:b0:e9:07:67:0c:ba:1b:59:1a:a0:1b:47:
49:25:64:49:6b:ba:18:d9:86:2e:c0:9e:5b:6d:bc:
5f:b3:0e:da:d5:ae:18:ea:d4:73:2a:a1:db:49:e7:
bf:0c:0b:8f:73:8d:59:1d:80:e9:84:f2:4a:51:99:
65:4d:c7:dd:33:4f:06:9e:91:9c:88:ad:1c:75:63:
8b:45:31:4e:8e:f7:09:e1:c9:dd:5b:0c:3f:b3:8a:
9f:20:8c:3b:c1:09:4f:91:c3:0f:10:d1:44:f5:ec:
58:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:F3:10:A2:CD:F3:A4:BA:0E:48:35:44:88:9F:A0:36:CD:D7:66:06
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/o_MQos3zpLoOSDVEiJ-gNs3XZgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.172.0/24
Signature Algorithm: sha256WithRSAEncryption
47:c7:10:64:d4:e4:4a:28:8d:70:18:48:b6:99:fe:13:2a:fa:
aa:4e:29:73:a5:62:85:78:d5:43:1f:a9:32:8b:7d:23:2d:7c:
2d:3b:57:5d:dc:a2:cd:30:78:94:72:00:dd:4b:01:98:93:74:
2a:6a:2c:c6:97:13:06:73:bc:1d:cf:d2:db:35:24:b8:a2:8e:
a0:af:69:0a:6c:bc:ec:d3:a2:ca:0b:29:6a:27:c5:fd:da:62:
a7:76:81:7d:85:cf:86:26:c7:cc:75:23:4a:7c:2e:fd:ad:f5:
07:0f:4d:c5:57:72:4e:07:5e:89:08:d8:fb:a6:4c:ff:c9:05:
bb:75:4e:73:82:c6:5f:30:75:2d:ca:c0:76:14:bc:55:4f:7f:
a6:d0:3a:98:8c:65:db:65:cb:ee:c3:cf:75:e1:b4:0f:b8:3d:
54:c5:9e:fe:d1:1f:18:1a:05:2e:78:e6:12:dd:90:db:9a:43:
d4:24:06:46:6d:92:56:a0:35:26:73:ce:8d:fb:e8:e6:bf:3e:
e9:13:8b:28:f5:f5:b2:c3:02:13:ee:de:db:bc:76:5b:e1:0e:
8b:59:3c:b6:9e:2a:d3:ff:9b:21:26:71:22:44:14:28:96:7c:
23:a8:3f:ce:52:ca:8a:ba:48:8a:10:fb:47:99:af:81:10:b1:
c8:a4:49:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 28 08:30:11 2023 by rpki-client on console-fra.rpki-client.org