Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-98E1PD10uIMCOb1BIReOr3P6lI.roa
File: 1-98E1PD10uIMCOb1BIReOr3P6lI.roa (raw, json)
Hash identifier: bI2hdJyB1ue3TvH3PBxW3f7rGBzSMKy5HiMk1xm5gI8=
Subject key identifier: FB:DF:04:D4:F0:F5:D2:E2:0C:08:E6:F5:04:84:5E:3A:BD:CF:EA:52
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186DB99CA9F86F9C7110E442F45E828606E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-98E1PD10uIMCOb1BIReOr3P6lI.roa
Signing time: Mon 13 Mar 2023 15:32:14 +0000
ROA not before: Mon 13 Mar 2023 15:32:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 194.58.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:99:ca:9f:86:f9:c7:11:0e:44:2f:45:e8:28:60:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 13 15:32:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbdf04d4f0f5d2e20c08e6f504845e3abdcfea52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a5:97:33:84:13:41:f6:ad:e7:df:97:1b:6c:
ea:e7:79:ac:6b:b1:f3:c7:c4:51:7d:ba:3d:99:d7:
65:95:14:0a:d4:63:0b:dd:75:85:c0:73:ab:fa:31:
33:7f:e8:85:eb:8d:2e:12:0a:e1:87:b7:ed:f2:b3:
22:c8:b4:16:9e:d5:b9:df:59:00:52:a5:ed:a7:63:
b3:85:81:6c:9b:bd:aa:e9:c7:c4:35:f1:4e:60:3e:
57:c0:8a:4f:c1:3b:67:3c:a0:18:5a:ce:8f:6b:86:
c3:ee:94:aa:fd:ea:18:c5:33:be:91:f8:d5:61:73:
c3:d6:df:06:75:d2:51:96:4a:38:53:85:09:20:15:
8d:1f:28:50:c7:c7:d6:64:18:ef:a9:ca:a4:be:91:
c6:ff:2a:c5:e0:c0:56:75:86:68:9a:42:4c:41:cf:
c8:04:aa:1f:35:43:bd:93:b8:83:7f:96:a9:21:51:
d8:83:a6:6c:3b:65:42:9a:3b:09:c6:d9:71:40:0f:
00:04:a2:cd:0e:27:ab:3c:03:57:c3:4f:f0:3e:b7:
85:1b:d3:98:8c:34:59:87:b2:3d:20:e2:21:2f:6c:
07:c4:c4:3e:f0:a3:9e:98:7c:e4:ee:c1:fc:9a:02:
9f:bc:3b:a5:9a:a8:1b:32:b1:88:df:cd:36:05:7b:
8e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:DF:04:D4:F0:F5:D2:E2:0C:08:E6:F5:04:84:5E:3A:BD:CF:EA:52
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-98E1PD10uIMCOb1BIReOr3P6lI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.44.0/24
Signature Algorithm: sha256WithRSAEncryption
42:f3:60:60:f6:4f:e0:dc:ce:99:13:67:7a:f5:75:f5:92:b6:
5b:77:f9:c1:b5:3b:27:91:36:b4:6d:d4:04:02:b4:61:64:b9:
b1:40:23:1e:b2:ca:de:6b:9b:28:ec:2b:87:5d:39:0e:19:40:
b8:5d:46:34:6a:61:2e:fb:d7:2b:ad:b7:23:66:80:60:58:b7:
76:6e:b0:61:93:20:4c:32:0a:92:5c:3c:5b:cf:5b:93:39:ef:
f8:ed:25:d3:15:a0:d0:d5:26:5e:51:7c:95:d4:9e:0f:fa:2f:
75:e5:34:74:91:e0:a2:2c:d6:49:cc:cc:98:21:bd:2d:27:c6:
d4:0b:13:a4:73:dd:81:cf:bd:bd:f0:e7:2c:17:22:11:7f:08:
54:60:bb:04:77:a7:e3:65:b9:39:e8:ac:7a:ed:c4:75:6c:e6:
ea:1c:f7:b6:dd:7b:45:d1:cd:09:fa:01:a8:aa:16:49:39:6d:
5a:3a:cf:68:c7:8b:62:ec:78:0e:a6:62:13:42:1d:df:18:49:
f8:e4:8e:37:1b:01:02:4e:bc:22:56:3f:08:62:cb:15:da:ac:
1c:5d:77:49:e3:a1:87:05:31:36:ef:6e:1a:46:9c:e1:d6:ab:
f2:b4:e6:a8:c8:5d:57:7c:6c:b4:32:57:d4:8c:1d:4b:a2:d2:
83:7b:54:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:48 2023 by rpki-client on console-ams.rpki-client.org