Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/lFuiWQ_po9KsnMfAaHkyB07I24k.roa
File: lFuiWQ_po9KsnMfAaHkyB07I24k.roa (raw, json)
Hash identifier: mD5yHpYpNtK2SlwBVuMvRKH34d51EE82XYaoRmfVRIE=
Subject key identifier: 94:5B:A2:59:0F:E9:A3:D2:AC:9C:C7:C0:68:79:32:07:4E:C8:DB:89
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0189D481B61B2BA13DEA8C66D79EDAF48167
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/lFuiWQ_po9KsnMfAaHkyB07I24k.roa
Signing time: Tue 08 Aug 2023 09:36:57 +0000
ROA not before: Tue 08 Aug 2023 09:36:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11938
IP address blocks: 185.255.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:81:b6:1b:2b:a1:3d:ea:8c:66:d7:9e:da:f4:81:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Aug 8 09:36:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=945ba2590fe9a3d2ac9cc7c0687932074ec8db89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6d:83:2e:66:85:18:1a:99:50:5a:d3:b5:d5:
c3:45:68:6a:6e:21:7a:7d:b9:bf:50:62:48:07:95:
75:fc:c1:dc:14:cc:cf:cf:53:c2:d7:07:2d:da:13:
c4:c8:71:ec:85:21:e1:3e:74:4f:23:2d:0a:83:6c:
9c:63:27:a2:53:67:ca:bf:c9:39:a0:ef:f3:04:b7:
10:4d:9d:98:4d:ff:25:c9:98:39:de:d3:7f:8e:42:
05:fe:93:36:7d:88:db:61:62:aa:67:15:2e:cb:d8:
2c:5c:8d:22:1a:ac:17:3c:c5:dd:0d:45:72:69:62:
91:b3:50:e4:35:43:1e:8a:3d:ea:45:86:66:e5:07:
1e:cf:89:e3:7b:17:03:8a:92:ce:0c:fa:29:12:6e:
16:3a:a1:5f:61:46:b7:ab:23:2f:78:6c:86:de:3a:
2b:41:fe:c5:0c:9c:c3:81:62:29:fb:93:cc:ce:10:
96:85:32:8b:b6:dd:86:cd:5b:5d:16:4d:69:62:c1:
c0:fa:44:9e:8f:a4:cb:30:71:0e:2e:33:cc:2c:e1:
1f:7e:8e:6c:8c:14:b2:30:f1:bd:e2:85:b2:6a:57:
42:6c:e9:f9:06:37:41:91:12:11:d7:17:4a:4c:ec:
a0:7d:3e:75:78:26:4a:2d:87:34:78:56:88:a3:51:
6e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5B:A2:59:0F:E9:A3:D2:AC:9C:C7:C0:68:79:32:07:4E:C8:DB:89
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/lFuiWQ_po9KsnMfAaHkyB07I24k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.114.0/24
Signature Algorithm: sha256WithRSAEncryption
50:4b:80:e8:cb:e3:43:97:ac:f4:36:3f:c1:96:df:c4:df:86:
68:b4:19:28:e7:35:87:4c:65:1a:ae:0e:7f:b7:81:30:44:04:
d2:d6:76:d8:19:b3:21:b9:4b:de:54:d0:02:17:f1:39:c8:be:
07:bc:3c:6b:be:08:cd:25:fc:bd:91:21:91:b2:ab:3e:01:3c:
8b:35:7b:07:16:f2:e0:33:dc:c6:c0:04:51:01:8b:82:7a:92:
de:6a:2a:09:f2:03:30:c7:b2:37:ba:1c:95:20:82:07:8b:b8:
b5:4b:2a:42:96:48:67:5f:cb:36:8a:02:c6:9c:96:1a:72:76:
b4:a3:5c:6a:87:c0:45:06:9f:59:9d:0c:a0:e5:67:d0:82:0a:
b3:de:e4:8a:28:53:1b:73:ab:b6:e1:43:1d:43:ca:40:b5:1c:
60:d5:78:e1:60:bd:1d:87:0c:6b:2b:bc:71:71:b5:99:82:ac:
f8:08:ef:ff:46:a1:63:6c:a7:1b:fb:6f:37:e5:9e:10:61:4b:
42:3f:b3:9c:f9:af:ae:c3:5e:67:bd:9e:a6:bc:c9:9a:d1:76:
4b:04:41:5d:19:13:ba:ae:8a:27:95:7c:be:de:a6:aa:03:90:
9d:b9:50:d5:0a:a9:89:08:a8:b2:ce:fe:83:a6:93:72:76:c3:
45:f1:7a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:58 2024 by rpki-client on console-ams.rpki-client.org