Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/HnD3qPlBSuiVHWMp_-zesSz7C_U.roa
File: HnD3qPlBSuiVHWMp_-zesSz7C_U.roa (raw, json)
Hash identifier: K/TJJ2oFFCGutASsAZkBKGRLuSqJiUk+4tuNygqlFk4=
Subject key identifier: 1E:70:F7:A8:F9:41:4A:E8:95:1D:63:29:FF:EC:DE:B1:2C:FB:0B:F5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0187C7AEEA4C6B7A68334FD4BE8E502D3CF9
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/HnD3qPlBSuiVHWMp_-zesSz7C_U.roa
Signing time: Fri 28 Apr 2023 11:45:41 +0000
ROA not before: Fri 28 Apr 2023 11:45:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198802
IP address blocks: 194.87.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:ae:ea:4c:6b:7a:68:33:4f:d4:be:8e:50:2d:3c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 28 11:45:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e70f7a8f9414ae8951d6329ffecdeb12cfb0bf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:38:02:0b:92:2c:f0:ce:07:be:9e:36:4a:0b:
9f:ec:d7:9f:ab:c3:ee:a0:ec:0a:63:48:84:c7:df:
42:a2:44:de:c1:22:09:3d:47:82:9d:1f:e0:4b:87:
a4:71:14:8c:1c:36:f3:30:7a:ed:a9:00:37:b2:22:
56:f5:d1:1d:7f:dd:c9:22:77:19:d0:37:b9:3d:e5:
55:7d:0a:0d:71:fd:1b:cd:b0:c0:2c:6c:3e:2b:a1:
07:33:c4:7c:d7:2f:5f:6e:f2:41:c4:6b:e5:2c:85:
35:83:87:86:38:ec:7d:8b:c7:3f:9a:f5:16:51:a5:
61:90:69:72:df:48:c2:ef:7b:46:ff:92:c7:b2:83:
ec:1f:6a:7b:57:c2:e6:b2:ee:27:a5:2c:14:8d:4c:
ec:d0:d4:f6:5c:f7:97:32:0c:44:4c:ba:86:82:4f:
df:60:7f:7f:be:2c:b8:6a:f4:79:80:cb:24:49:89:
3a:b0:67:5a:92:a7:1f:70:c4:f3:e3:79:af:4c:0e:
af:85:fc:99:ba:63:f8:fd:c6:d9:bf:1a:38:83:c7:
e0:6f:fb:81:15:c6:44:84:91:31:15:3c:92:06:53:
26:d8:be:8d:b0:84:80:a0:a0:33:4f:d6:9d:51:cc:
ce:4e:81:43:66:73:45:01:b2:dd:a9:7a:73:dd:f2:
95:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:70:F7:A8:F9:41:4A:E8:95:1D:63:29:FF:EC:DE:B1:2C:FB:0B:F5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/HnD3qPlBSuiVHWMp_-zesSz7C_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.63.0/24
Signature Algorithm: sha256WithRSAEncryption
07:c8:0e:17:d2:78:94:94:73:38:db:e2:6f:06:e4:d9:e3:a7:
3e:1c:b3:e3:30:61:14:ee:f0:2a:8a:de:69:a6:a2:3f:b8:c0:
b8:f0:d5:a5:a6:bc:11:0d:bf:e6:42:b6:3f:b3:f1:ef:48:55:
81:ee:4c:aa:a1:86:b9:14:eb:3b:71:93:ca:75:40:7b:eb:c0:
e8:87:6c:e7:a3:35:5d:bb:b6:ad:52:d3:74:08:19:9f:5f:f6:
2a:fa:5a:75:e1:bc:61:a9:e2:f3:f1:89:c9:f5:9a:9d:49:31:
4c:ca:4c:30:a8:67:56:9f:5d:15:ce:02:d2:f3:99:56:f1:67:
c9:f1:50:42:f3:8e:6a:85:a2:78:3a:04:07:d0:da:87:92:77:
6a:13:9a:be:71:c9:be:67:4c:99:68:0e:16:ac:28:9a:0e:30:
63:5e:0b:2d:e0:74:1c:2e:20:fb:a5:49:47:c5:4a:ff:5b:f3:
34:44:d0:e3:0a:48:f2:bd:05:b4:af:4b:2f:66:e9:25:8b:cd:
26:9f:d5:7b:0b:0e:74:32:bb:56:81:42:c2:70:61:ac:44:50:
f2:10:c7:ba:09:76:bc:89:bb:24:96:b5:12:fa:53:05:fc:a1:
71:22:82:bd:85:5c:4c:72:44:53:d3:0f:6c:d3:72:67:46:92:
0d:c0:4a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org