Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ewg46hsPLgAdBGocdXKVtMfSft0.roa
File: ewg46hsPLgAdBGocdXKVtMfSft0.roa (raw, json)
Hash identifier: O637OPC5Vvb03p6FK1xQVt+EpcCvYtbOhsJQMZYKaf8=
Subject key identifier: 7B:08:38:EA:1B:0F:2E:00:1D:04:6A:1C:75:72:95:B4:C7:D2:7E:DD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186BBC650F85570AD3A6DB8DFF2D98C3904
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ewg46hsPLgAdBGocdXKVtMfSft0.roa
Signing time: Tue 07 Mar 2023 11:13:01 +0000
ROA not before: Tue 07 Mar 2023 11:13:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199580
IP address blocks: 194.87.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bb:c6:50:f8:55:70:ad:3a:6d:b8:df:f2:d9:8c:39:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 7 11:13:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b0838ea1b0f2e001d046a1c757295b4c7d27edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:8b:86:c2:15:cf:3c:d8:a4:7f:bc:0c:a7:53:
fe:51:6c:5c:c7:8c:4b:51:6d:07:32:bd:62:dc:e2:
a6:34:7f:59:b6:6d:08:16:6a:b1:a2:bf:3d:88:eb:
57:e4:c7:9f:ac:79:f0:76:b9:8c:9f:fd:15:f8:32:
d0:88:86:bf:fd:8a:2e:c7:a0:c0:d1:3e:e6:30:28:
8f:d0:cc:dd:9d:9e:e4:65:53:ae:63:c1:06:7a:c8:
ee:a8:d3:a3:22:dd:fd:b6:c9:e0:6f:02:64:be:01:
03:15:6d:b2:9d:a5:b9:2e:16:b0:c6:ff:4d:e0:81:
1c:ce:7a:a5:d8:52:46:81:c6:ef:6b:d9:ab:e0:2c:
88:a2:5c:84:29:a9:ec:c1:e1:77:6d:35:2e:8b:48:
a0:12:64:4a:a8:0c:e6:57:c9:f0:04:98:f3:91:48:
82:cd:6a:a9:32:a0:68:e5:55:4c:44:a1:0f:cf:11:
e4:4a:ea:ea:91:3f:9f:5e:c1:48:87:8f:31:2b:46:
59:d7:af:b1:29:76:01:e0:13:28:c4:d4:dd:3a:35:
2c:8b:91:9b:c6:78:81:31:0a:90:b3:50:c9:2c:3a:
ff:ec:9c:c6:3f:e1:6f:63:f5:b2:c0:de:4a:f9:c8:
83:52:10:21:9f:23:cc:a9:b1:04:8a:c9:bf:78:62:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:08:38:EA:1B:0F:2E:00:1D:04:6A:1C:75:72:95:B4:C7:D2:7E:DD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/ewg46hsPLgAdBGocdXKVtMfSft0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.4.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:7b:bf:52:d9:6f:df:3d:74:38:67:0e:95:04:3e:1e:ef:6b:
0f:73:24:4a:eb:33:06:ff:01:dd:e8:74:79:18:6e:39:82:d2:
9b:03:51:3a:d4:d0:dc:4e:b6:c0:50:b9:7a:74:ce:3e:15:2d:
b5:f3:31:87:eb:e1:eb:f2:c1:36:63:a7:3b:67:3d:dc:bf:9e:
b1:74:e4:01:dd:e1:ec:69:02:93:6c:77:92:e6:a5:ef:ee:ed:
51:f5:7d:f5:7c:34:56:33:4b:3f:af:0a:c8:28:3f:d7:95:03:
92:d7:2e:15:1a:d8:77:eb:d1:2c:13:f8:ff:00:27:95:c0:68:
35:51:49:5e:35:20:0c:af:0b:fb:3d:17:eb:75:d9:82:e1:cf:
ff:1f:22:f6:09:83:22:b0:95:4d:c8:c7:31:0f:c6:bf:75:d9:
71:d7:c0:5b:2d:86:74:a2:04:0d:ec:6e:64:a9:a2:e3:28:79:
39:10:1e:6e:d8:6b:7e:87:a7:d8:8f:12:bd:2a:b6:a0:80:a9:
4e:3f:bc:b1:40:9c:db:17:67:dd:40:38:d8:c3:55:87:27:57:
fd:66:b8:73:02:9d:81:a3:f8:47:c7:a0:95:08:25:a6:8f:1c:
84:ed:e6:05:58:6a:bf:54:a7:8e:79:40:50:3f:e6:0c:04:1b:
36:e0:f3:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org