Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9f8punAo98s_g0Kiydd1ViWN0Rc.roa
File: 9f8punAo98s_g0Kiydd1ViWN0Rc.roa (raw, json)
Hash identifier: f5V7Pwgq4qYrLwj/86Yuv1IMHPdB8iSj22401oORKwE=
Subject key identifier: F5:FF:29:BA:70:28:F7:CB:3F:83:42:A2:C9:D7:75:56:25:8D:D1:17
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186CB1360D2F860A9C5D7660F2C88659766
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9f8punAo98s_g0Kiydd1ViWN0Rc.roa
Signing time: Fri 10 Mar 2023 10:31:30 +0000
ROA not before: Fri 10 Mar 2023 10:31:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400536
IP address blocks: 194.58.223.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cb:13:60:d2:f8:60:a9:c5:d7:66:0f:2c:88:65:97:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 10 10:31:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5ff29ba7028f7cb3f8342a2c9d77556258dd117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:63:dc:54:0c:20:ab:b8:da:3c:1d:37:98:3a:
9c:c4:6c:64:d1:e9:c2:bb:77:b5:28:c8:d7:cb:bd:
52:eb:f3:b4:24:b9:6b:0a:be:a0:16:92:05:24:fc:
aa:07:c3:10:54:06:d3:16:d7:82:9f:ce:45:84:39:
d4:ee:e0:0a:38:52:58:0e:b1:c2:58:8e:c6:5e:b1:
26:cf:3c:10:4a:a1:b5:30:53:4f:ea:d5:50:eb:8f:
6d:da:f9:e1:2f:ed:16:7a:1c:d2:08:86:10:d2:ed:
11:3a:89:2b:a8:ac:91:e4:27:a3:89:52:0f:21:df:
db:ed:52:70:b7:fb:fe:2c:a9:85:be:50:a6:9f:f5:
e8:68:c9:e7:8d:8e:0e:b9:64:eb:be:9a:11:7b:64:
d8:fb:f4:85:03:a1:0c:e2:ed:23:f2:2d:95:ed:01:
a1:8c:58:09:d8:70:01:ad:13:31:57:e7:45:11:f2:
17:be:21:6b:37:6e:8a:fd:e5:d2:a0:15:99:7a:19:
91:fa:ca:31:fd:03:f1:7f:b5:0f:0d:4a:ed:1b:bc:
a6:98:2c:84:8f:de:82:ea:52:04:4a:71:95:5b:87:
a8:35:6f:79:67:52:f0:3e:d8:e5:3a:ab:31:25:48:
3f:db:d3:25:74:08:34:03:b8:5c:f5:35:af:ff:22:
40:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:FF:29:BA:70:28:F7:CB:3F:83:42:A2:C9:D7:75:56:25:8D:D1:17
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9f8punAo98s_g0Kiydd1ViWN0Rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.223.0/24
Signature Algorithm: sha256WithRSAEncryption
27:9f:2f:6e:93:1e:43:47:d0:79:68:89:72:66:6e:5b:de:65:
09:f7:39:f5:41:5f:b5:56:e4:79:c7:32:ad:55:e3:57:2b:0f:
8f:92:f5:bc:d1:db:46:0a:37:9e:8b:4d:8d:eb:12:e5:43:62:
53:45:83:8d:93:b9:d0:54:24:ce:c5:78:97:c2:13:03:9f:34:
53:47:20:74:8d:86:43:bf:d1:f6:00:0b:f1:a7:16:77:16:c5:
ad:68:a8:60:8b:69:2e:2a:7e:99:6d:02:8b:fd:c1:83:73:56:
8e:25:07:64:5d:ab:ae:d8:5b:c2:9b:f9:4f:ef:b8:29:3e:25:
13:6c:bd:ff:75:02:3e:a3:aa:ab:6b:04:d9:81:dc:a5:79:aa:
f5:cc:e2:7a:50:05:7b:1a:88:45:63:77:75:b7:1c:79:6b:11:
69:ec:b0:b5:98:82:3e:61:8c:a9:a3:73:b4:e1:a0:6b:83:ca:
60:eb:49:17:fd:9d:9b:b1:3f:0e:d3:27:6d:22:55:ab:fd:f7:
a1:68:ac:86:82:9d:70:b3:86:b5:31:21:ec:54:9c:87:55:fc:
d7:96:9c:6f:8b:64:91:9b:c2:bd:6e:eb:bd:a8:79:40:6e:f8:
e5:12:9a:bf:b0:0d:60:f3:bc:14:86:3c:97:f4:76:c7:bc:42:
1a:24:e2:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-ams.rpki-client.org