Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XW_cDtrY375RLh1WFY09X53gNkM.roa
File: XW_cDtrY375RLh1WFY09X53gNkM.roa (raw, json)
Hash identifier: vnUJaGUJAcmZQOf8b3NHaoJjMfqmHDPWM1alJpW7vYE=
Subject key identifier: 5D:6F:DC:0E:DA:D8:DF:BE:51:2E:1D:56:15:8D:3D:5F:9D:E0:36:43
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A4772D5FD6FAFE4FD774695E4490EE653
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XW_cDtrY375RLh1WFY09X53gNkM.roa
Signing time: Wed 30 Aug 2023 17:17:02 +0000
ROA not before: Wed 30 Aug 2023 17:17:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198883
IP address blocks: 194.87.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:47:72:d5:fd:6f:af:e4:fd:77:46:95:e4:49:0e:e6:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 30 17:17:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d6fdc0edad8dfbe512e1d56158d3d5f9de03643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a3:15:33:a1:38:37:0d:b4:59:45:86:92:58:
97:1b:c0:2f:27:a8:56:44:bb:2f:c3:b0:45:ad:9a:
0b:02:03:6c:79:da:d1:23:67:9c:e6:9f:f7:a8:1e:
94:1c:57:77:8a:dd:db:1c:ee:2f:e2:d1:90:89:cb:
28:62:eb:2a:e8:53:54:28:23:ce:8a:02:39:55:44:
77:fe:87:45:ca:c2:53:c3:1e:a7:5f:81:82:44:f1:
84:f6:6a:72:6c:89:c5:16:11:5e:31:3a:63:11:7e:
c9:e4:48:1c:e7:08:c7:3c:5b:20:48:6c:02:03:d0:
28:82:9a:3e:3f:a9:ee:ee:73:85:dc:45:bc:2c:72:
f0:7a:5b:7e:de:2e:14:66:d6:31:68:d9:da:31:83:
88:79:ac:87:11:49:a4:18:32:9b:e1:bb:f2:6f:ed:
95:67:a0:e5:77:59:95:2e:b8:76:91:e0:97:8d:4a:
9c:78:22:ab:29:4e:c7:e2:dd:df:59:40:47:81:ad:
ae:13:fd:a3:5c:de:9f:a2:a6:3f:a0:17:87:ae:66:
f0:c2:02:0b:96:6a:81:f8:e3:a7:b9:42:4f:63:d6:
4c:90:35:5a:71:f8:73:70:d5:f6:7b:70:83:54:43:
a5:7a:7c:cf:0d:63:eb:7d:69:38:7b:b1:a0:f8:20:
00:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6F:DC:0E:DA:D8:DF:BE:51:2E:1D:56:15:8D:3D:5F:9D:E0:36:43
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/XW_cDtrY375RLh1WFY09X53gNkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.229.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3b:17:03:a4:81:83:f4:30:db:a1:e9:be:f8:2f:ef:01:4d:
89:cb:39:75:24:64:49:63:ff:9a:b6:ae:3c:87:05:0f:f1:1d:
f7:ef:f4:9a:a6:39:cb:18:bf:2e:3e:78:f3:2b:c2:9f:f1:40:
6c:e9:1f:92:04:12:d9:39:18:b5:c9:df:8e:8a:66:eb:ab:fb:
cb:c4:68:47:74:bc:19:bb:ef:b5:bb:86:32:a2:d8:12:e3:74:
f6:95:5f:ab:02:64:da:af:a8:12:1c:c3:c2:03:be:55:1a:57:
14:00:6b:a3:4f:42:18:67:d6:76:5b:46:b9:8c:79:3c:82:e4:
b0:65:76:b0:c9:30:ce:aa:02:d6:0f:91:3e:03:b1:d7:4b:2a:
cb:30:d6:9b:5a:05:b8:e8:0b:26:8e:67:c0:a9:6d:03:c3:8e:
00:a9:60:b0:9d:92:66:88:b7:e3:83:1e:4e:b1:e9:18:22:aa:
c8:b3:69:bb:7e:a4:ca:56:2d:81:14:e6:59:5e:75:67:de:96:
c9:aa:0b:f8:4f:b1:b9:10:6d:c5:32:52:ee:85:0f:60:d0:ec:
67:52:d9:d7:ae:0c:07:7b:76:d1:53:be:4a:5c:3d:cd:23:bf:
0b:ff:b3:73:3c:17:84:53:d1:7e:48:9a:f5:b2:1e:2c:66:99:
a2:68:4c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 30 17:46:32 2023 by rpki-client on console-ams.rpki-client.org