Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DGVgA1YrDEvTx-cegxJXVALUlqY.roa
File: DGVgA1YrDEvTx-cegxJXVALUlqY.roa (raw, json)
Hash identifier: aGE5TNVzxdaSS82tadt9CxR6fi7VDmidW+PksXz7dn0=
Subject key identifier: 0C:65:60:03:56:2B:0C:4B:D3:C7:E7:1E:83:12:57:54:02:D4:96:A6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C1E73E7B3977E0316563417B40AA0A3A4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DGVgA1YrDEvTx-cegxJXVALUlqY.roa
Signing time: Thu 30 Nov 2023 04:19:21 +0000
ROA not before: Thu 30 Nov 2023 04:19:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205663
IP address blocks: 194.87.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1e:73:e7:b3:97:7e:03:16:56:34:17:b4:0a:a0:a3:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 30 04:19:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c656003562b0c4bd3c7e71e8312575402d496a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bb:a1:bf:06:a4:e9:40:79:1b:43:4a:f9:1d:
d0:6f:a5:4e:05:8d:63:a3:40:41:0d:5c:06:61:8a:
79:88:94:e2:04:62:56:2d:9b:67:26:51:75:e1:7f:
ab:f8:0e:74:ea:6e:cb:ed:29:3b:d6:63:88:ed:13:
0b:6d:51:4a:eb:e9:78:3b:33:d7:d9:c5:a8:97:a9:
8f:c3:a6:2a:eb:3d:a9:c4:be:66:06:9d:f1:1b:aa:
4c:2a:c7:7f:81:0f:16:28:3f:bd:19:cb:a9:0e:36:
02:7c:c9:88:4b:4d:c7:13:48:e5:2b:7d:a2:ca:b8:
af:c9:fd:0e:9b:6c:f2:85:08:5c:70:9b:b6:25:bb:
c9:bc:07:b0:75:dd:19:9f:08:75:d5:f5:33:2c:6c:
aa:8e:4e:fb:a7:cd:f2:d1:7c:f2:8e:69:9e:08:b0:
9b:bb:e5:01:17:66:ee:c8:f9:ac:59:ff:9c:9d:cf:
58:fc:e4:0f:ad:77:9d:24:7b:ae:64:3e:49:ab:b6:
fb:a1:16:48:45:e9:e9:47:fd:bc:c2:fe:4c:32:23:
4b:6a:24:3b:bd:1f:00:de:45:0e:27:80:84:de:e4:
be:d2:b6:46:99:b3:b4:e1:6f:08:53:a6:ff:40:be:
ed:37:2c:2e:23:11:72:38:9a:48:6e:62:f8:de:7f:
35:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:65:60:03:56:2B:0C:4B:D3:C7:E7:1E:83:12:57:54:02:D4:96:A6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/DGVgA1YrDEvTx-cegxJXVALUlqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.187.0/24
Signature Algorithm: sha256WithRSAEncryption
39:aa:ed:a8:2f:09:78:48:87:de:ed:2d:3e:06:66:ac:8b:d4:
e3:7d:4a:55:e9:c4:3e:00:c3:c9:8d:6c:ec:c8:ed:9b:cf:ef:
b2:3b:ce:0e:31:01:59:8d:a3:93:a8:8a:65:93:e8:88:a7:85:
14:07:01:87:99:51:6e:29:c1:5e:d8:11:b9:37:93:63:0c:8d:
fb:3f:61:ed:bd:74:f8:ab:2a:82:f8:0d:15:fb:88:13:5d:e5:
29:0f:4a:a6:82:8e:60:8e:27:a6:9c:f4:03:eb:1c:ee:ce:9b:
f6:b1:f9:a4:6d:fd:12:bc:60:d5:4b:6a:07:ce:66:d3:51:2e:
62:ba:98:ff:f0:00:73:d9:ba:6e:e1:77:28:50:d5:07:10:e3:
52:75:5d:fa:53:60:3b:a3:62:77:3e:44:9a:0a:36:34:3a:91:
b2:37:da:60:95:d8:f7:25:e0:d0:48:79:11:14:fb:3f:8e:77:
83:51:03:db:0f:a8:c9:10:ee:f2:e3:fc:8b:be:51:9a:f2:bb:
b9:0a:f8:59:8d:f2:1b:ed:d3:67:91:59:24:58:ce:a7:a6:f8:
cf:a2:75:92:31:2b:35:81:d7:b7:ec:8f:b2:a4:32:27:9c:1b:
47:aa:ee:74:71:6c:e6:f3:5f:20:85:9e:74:4f:09:7c:67:44:
03:1f:a8:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:20 2024 by rpki-client on console-fra.rpki-client.org