Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/K8ngNbnphXGOyPFQtRQ1WhGND0M.roa
File: K8ngNbnphXGOyPFQtRQ1WhGND0M.roa (raw, json)
Hash identifier: igD9UAp/+0NNnkuOtAvQuSTZYkJVCXH99p/OmUEdFy0=
Subject key identifier: 2B:C9:E0:35:B9:E9:85:71:8E:C8:F1:50:B5:14:35:5A:11:8D:0F:43
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F6708B281224E166906A1E650432F28
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/K8ngNbnphXGOyPFQtRQ1WhGND0M.roa
Signing time: Sun 01 Jan 2023 22:15:01 +0000
ROA not before: Sun 01 Jan 2023 22:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 194.87.63.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:08:b2:81:22:4e:16:69:06:a1:e6:50:43:2f:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bc9e035b9e985718ec8f150b514355a118d0f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b1:72:a5:66:00:51:95:a1:0f:89:03:a5:00:
f5:ea:e2:7b:66:1b:70:64:3c:c9:ad:c6:b2:47:44:
0c:06:dd:3e:3f:d8:c4:f9:20:be:e3:76:d7:36:92:
f0:a4:6a:4f:21:c6:fb:2c:ed:fe:c2:64:d9:e5:6a:
3f:d3:86:40:21:d5:e2:d1:05:6e:48:f4:0f:05:9a:
a5:cd:ca:25:e8:38:e2:78:9f:49:ee:09:9f:68:61:
1c:a7:38:95:c5:bf:52:6d:ba:15:f4:8a:9a:bd:51:
a0:de:08:c9:a7:60:08:dd:4a:0b:d8:c0:17:de:61:
d2:47:2a:15:c7:3f:33:9a:9c:e1:98:e6:10:c9:5c:
91:9f:ea:6b:0d:fc:72:fa:a9:1a:1c:e4:a2:dc:41:
44:ea:5b:bd:bb:d3:ba:4f:40:d6:23:b1:4a:e6:b6:
df:b3:91:06:78:8c:1e:b9:68:8b:62:c3:68:32:b8:
22:b5:99:d3:30:6d:bf:4d:cf:dd:cf:db:c3:13:79:
e2:d1:82:af:6e:16:1e:7c:82:38:b0:27:e2:78:0c:
9d:ff:65:1a:af:ab:b1:72:1c:61:76:a6:72:0f:06:
30:8c:07:cc:0a:45:19:bc:36:37:f5:ba:fd:e3:fb:
4b:47:75:26:63:61:69:d7:37:5f:5c:7d:b5:03:2e:
bf:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C9:E0:35:B9:E9:85:71:8E:C8:F1:50:B5:14:35:5A:11:8D:0F:43
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/K8ngNbnphXGOyPFQtRQ1WhGND0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.63.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:46:ef:0a:04:ba:66:d4:4a:38:99:c3:13:96:67:d8:ae:c0:
cd:45:66:35:00:5d:e5:7f:c2:ad:d6:3d:85:76:e4:a5:d7:75:
39:2e:f2:f8:3f:e1:3a:2b:26:38:0d:52:0d:de:74:e2:76:36:
73:4f:56:f5:08:3f:29:98:6b:98:80:8f:c7:50:81:da:1f:9b:
1f:90:85:a7:9e:2c:99:2b:15:5d:2a:34:88:b1:b9:98:4e:0e:
be:5a:66:a4:51:cf:72:05:a4:47:ad:ec:55:2d:9e:f8:91:6c:
d7:7d:16:e0:a5:b4:f8:84:ea:49:ee:bf:1e:64:1f:1d:9b:57:
a3:e0:83:03:5e:db:54:93:67:c6:8b:4f:fc:d5:f8:4f:f5:2d:
7e:98:19:e1:aa:bb:5d:9d:40:08:09:df:2d:b6:3d:1b:84:69:
90:dd:58:d6:ef:30:ab:4e:95:d5:59:d6:c4:32:c4:eb:6c:87:
69:80:f2:3d:1a:63:2b:9e:db:78:a0:dd:df:99:a9:c8:48:21:
42:60:60:fd:18:1e:ef:9a:de:fa:17:fc:8f:9e:0d:97:80:10:
b6:03:56:01:df:83:80:f1:93:04:6e:83:41:6b:86:ed:bc:40:
6d:e1:30:d6:2d:75:27:f9:4a:30:c9:bd:25:45:26:2c:b9:06:
30:5d:99:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:55 2023 by rpki-client on console-ams.rpki-client.org