Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hAjvbT8IhSccO4BC3s2AaXpVqOQ.roa
File: hAjvbT8IhSccO4BC3s2AaXpVqOQ.roa (raw, json)
Hash identifier: E8YI1AmETsWeHSimtmFvN+/Zg/ZVCA6ZWSX4LGsY8Hc=
Subject key identifier: 84:08:EF:6D:3F:08:85:27:1C:3B:80:42:DE:CD:80:69:7A:55:A8:E4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188FDA77A09B2BD58C1B1515CEFC1234ABF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hAjvbT8IhSccO4BC3s2AaXpVqOQ.roa
Signing time: Tue 27 Jun 2023 16:19:51 +0000
ROA not before: Tue 27 Jun 2023 16:19:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 62.76.235.0/24 maxlen: 24
194.135.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fd:a7:7a:09:b2:bd:58:c1:b1:51:5c:ef:c1:23:4a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 27 16:19:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8408ef6d3f0885271c3b8042decd80697a55a8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dc:6f:54:7e:fb:3b:61:93:c0:ca:af:88:82:
ce:28:f3:df:24:c8:fb:31:21:e0:2a:12:ca:ed:a7:
60:98:8b:f1:29:bd:1b:bb:ea:a6:e9:df:b1:4d:d7:
f5:1e:f3:4a:c5:a3:a1:01:2c:44:34:3d:d3:cb:28:
e6:58:a0:f5:40:cd:f3:a8:2a:22:ef:f7:f6:7e:c6:
95:6d:bf:ef:df:d4:74:43:a1:d9:94:c0:fb:68:4c:
06:29:f9:3b:6d:51:e8:cd:ee:68:a9:7a:d3:0d:79:
3c:86:34:63:d9:af:68:d4:37:42:a7:4f:51:37:0d:
0f:00:7f:87:38:9c:97:ec:c7:af:63:11:46:49:bb:
88:ee:d4:b3:d1:5d:45:f2:c4:6b:5f:4a:73:fb:64:
aa:94:0f:12:c3:20:6e:18:42:63:a8:36:06:ef:75:
44:64:b6:79:03:56:ab:1c:dd:ae:49:2a:96:5a:5a:
0d:0e:70:3f:58:f2:93:d5:ef:55:52:53:ea:28:39:
ac:88:2b:cd:78:c4:1f:2f:cc:fc:b5:63:d0:29:d5:
e1:53:98:75:33:5e:40:c0:a0:f1:2a:5c:4e:f3:b2:
57:43:a4:28:75:2b:d8:f0:93:6f:fb:52:d4:0d:24:
36:cc:61:84:6d:5b:67:40:47:57:ed:13:ae:91:72:
50:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:08:EF:6D:3F:08:85:27:1C:3B:80:42:DE:CD:80:69:7A:55:A8:E4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/hAjvbT8IhSccO4BC3s2AaXpVqOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.76.235.0/24
194.135.23.0/24
Signature Algorithm: sha256WithRSAEncryption
48:45:77:07:d7:42:7f:0f:22:58:fa:35:85:f1:3b:0c:e2:cd:
ed:de:9f:59:23:8e:77:38:4d:47:d5:ea:47:75:39:39:5d:13:
a9:47:73:fa:a9:52:7c:76:1d:08:cd:54:f1:84:28:b9:00:ec:
37:d2:bd:2b:3e:2b:07:34:f0:8b:52:3d:69:ce:18:67:03:37:
72:d7:aa:89:c0:54:c8:e2:e3:d1:0a:ca:36:f6:c5:22:b7:b9:
b4:a1:ee:90:37:9f:3a:dc:09:a4:57:c2:b7:c7:92:39:91:d0:
98:09:19:99:36:65:12:b6:1e:fe:c0:22:ff:e2:c5:1d:f3:e0:
74:fc:88:23:c8:93:26:9a:62:39:a5:76:fc:94:fb:a1:cc:20:
8e:90:e3:3b:c8:fb:03:2f:86:d1:d6:07:1b:59:a9:d3:6b:4a:
c2:2a:6c:70:7f:78:83:1a:f0:47:15:f8:c0:cb:c8:95:cf:f8:
e8:93:75:e2:5f:40:06:7e:c7:33:9e:13:7d:5c:69:ba:a4:e8:
65:ff:53:ef:49:81:7e:ee:b4:ca:16:4b:8a:a1:23:92:e2:7b:
32:ec:df:fa:1b:fc:c0:4f:cf:6f:37:ec:a7:a0:2d:c7:e7:c6:
b2:25:77:20:1b:b6:cf:f6:d0:aa:b3:11:f1:93:1e:b7:38:fc:
fc:c9:d6:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:03 2023 by rpki-client on console-ams.rpki-client.org