Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/83PtnvKjDx8lAH9tX2XoS3i5cUI.roa
File: 83PtnvKjDx8lAH9tX2XoS3i5cUI.roa (raw, json)
Hash identifier: e6nDKsfOyGHUCxaDi8ZWDIY6S2R2Ecxt6Tvx9siUuiI=
Subject key identifier: F3:73:ED:9E:F2:A3:0F:1F:25:00:7F:6D:5F:65:E8:4B:78:B9:71:42
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0185779578C57415E2B78686ECE05A6AF2D4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/83PtnvKjDx8lAH9tX2XoS3i5cUI.roa
Signing time: Tue 03 Jan 2023 12:22:42 +0000
ROA not before: Tue 03 Jan 2023 12:22:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 194.87.188.0/24 maxlen: 24
194.87.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 07:09:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:77:95:78:c5:74:15:e2:b7:86:86:ec:e0:5a:6a:f2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 3 12:22:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f373ed9ef2a30f1f25007f6d5f65e84b78b97142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:58:b5:30:70:38:e2:c0:50:81:1f:f4:0b:43:
82:09:10:76:9a:7b:f3:c3:39:03:0e:63:4c:d8:92:
fb:df:74:bc:cf:cc:8d:b5:d8:2e:d1:1a:f2:26:23:
bb:54:34:06:0b:61:c1:97:fe:c7:7a:c2:85:7a:9d:
15:be:be:b5:c7:47:cf:e5:dc:14:f2:95:b3:8c:7a:
45:7f:bf:24:54:e1:38:78:c6:3f:d3:f5:cf:06:af:
4e:c9:96:07:af:2b:73:cc:58:b6:88:7c:e6:7c:d6:
4a:9a:e5:31:10:67:1d:f3:b7:63:cd:71:58:1e:f9:
59:13:f1:a0:b2:49:89:9b:3b:34:7a:eb:2c:77:24:
75:e4:ce:42:09:b1:ff:1e:99:70:4c:d5:01:0c:a7:
00:34:58:28:ff:2d:2b:d3:d2:f8:b6:50:e0:b7:d6:
da:3d:ba:5a:1f:7e:7b:f9:72:da:8c:f3:42:42:4c:
ba:f2:de:1c:e6:1b:51:9a:23:92:91:9e:4e:b9:86:
b3:b7:23:00:0a:01:2c:f6:6c:ef:59:8a:fa:45:94:
12:7e:ea:ec:b9:3a:80:ab:b6:28:f5:c8:f9:e8:90:
15:b7:ff:1f:22:33:ed:3d:8e:23:84:1f:72:f8:cc:
d9:4b:18:c6:e1:67:de:4d:ae:d5:d2:33:f0:d9:c7:
61:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:73:ED:9E:F2:A3:0F:1F:25:00:7F:6D:5F:65:E8:4B:78:B9:71:42
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/83PtnvKjDx8lAH9tX2XoS3i5cUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.91.0/24
194.87.188.0/24
Signature Algorithm: sha256WithRSAEncryption
06:4d:30:d2:4b:ea:55:6c:62:56:a4:ea:9c:dd:65:1b:8f:52:
97:8c:a9:e2:8e:03:99:9d:12:ac:d1:bf:9d:82:ea:bd:d1:1d:
f9:cb:eb:83:29:18:18:3c:4c:ce:1f:14:22:b0:d8:01:2d:c6:
b9:f6:28:f3:e0:17:b6:9a:bc:e0:31:0e:5e:14:9e:c1:f8:76:
59:43:91:92:b9:0f:7d:2d:e6:b3:13:92:b7:ac:74:51:b7:d5:
6a:cf:7b:d0:b4:bf:cc:24:12:13:52:ca:60:dc:51:f9:f1:47:
51:d3:cf:00:26:16:98:e3:6e:c6:78:ea:a8:b5:b0:bb:37:66:
2f:33:96:0d:f9:2f:9c:c9:8d:ed:38:f4:84:07:db:b7:ec:d9:
d0:f1:6a:76:27:09:2f:cc:40:23:9d:8e:8d:a2:b9:6c:1e:2f:
c8:77:85:5e:e9:fc:f9:77:5f:da:8b:09:70:1a:13:d2:bd:3c:
c7:e8:f0:3a:e2:97:ee:ed:5d:9a:55:9c:ac:c9:5c:78:cf:6c:
c0:53:5e:c3:9b:0a:3e:f7:ad:c1:6f:5c:e0:ea:3b:6a:36:0b:
bf:7f:06:3b:a3:cf:24:3d:c7:51:2a:c4:6e:9c:a1:3a:0e:0c:
2c:34:38:41:de:25:cc:00:b9:61:8b:58:cc:0e:58:10:92:3f:
43:6a:63:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:07 2024 by rpki-client on console-fra.rpki-client.org