Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jFdb_bWlc2GnIhpMUKcPMLJ5baA.roa
File: jFdb_bWlc2GnIhpMUKcPMLJ5baA.roa (raw, json)
Hash identifier: 3YTOaXa7mSixPHtPQ5keRKXB5OBeWMnBoUFhs7fFBEs=
Subject key identifier: 8C:57:5B:FD:B5:A5:73:61:A7:22:1A:4C:50:A7:0F:30:B2:79:6D:A0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189498490123B17F7B49126681572E2B7D5
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jFdb_bWlc2GnIhpMUKcPMLJ5baA.roa
Signing time: Wed 12 Jul 2023 09:52:51 +0000
ROA not before: Wed 12 Jul 2023 09:52:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 193.124.203.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:84:90:12:3b:17:f7:b4:91:26:68:15:72:e2:b7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 12 09:52:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c575bfdb5a57361a7221a4c50a70f30b2796da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7e:54:65:e6:1b:31:c5:bc:b0:ba:aa:11:62:
47:75:c6:10:e1:6a:57:ff:12:c6:7f:39:e8:d1:75:
f2:1d:78:f6:21:45:fb:6a:33:18:a6:6a:b1:11:1c:
58:a8:02:34:bc:a3:e5:ca:ed:4c:cb:f5:e0:c3:4b:
12:82:da:54:8f:f6:9c:9c:06:7c:1d:55:88:24:60:
c9:0c:b9:f9:09:2a:7d:59:4e:1f:b6:51:2f:73:01:
ae:b0:4f:bf:dd:0a:d0:8f:4e:40:a3:a5:67:22:cd:
bd:a2:9f:68:5e:e6:af:63:a0:5d:4a:12:bc:85:53:
77:ab:cf:f7:c9:44:6d:3e:e3:1f:80:db:8f:af:6c:
de:15:e6:50:65:fd:2f:ef:f0:dd:89:4e:bc:23:12:
8a:28:cb:28:50:85:e1:c6:b9:d2:3f:78:21:51:e7:
45:83:39:82:70:c8:f6:e5:b0:0f:26:4e:f4:5e:d7:
0d:f5:a6:bd:0d:d3:bf:eb:f8:d2:37:eb:26:b4:24:
0b:a6:5d:98:c7:d3:a6:ea:4c:93:83:b6:b7:a7:1f:
29:03:b2:43:fd:6d:de:69:82:85:89:f5:19:90:84:
e9:11:dd:43:e8:31:92:dc:ca:55:1e:c8:3a:1b:42:
cf:69:42:60:a0:d4:79:72:06:08:de:41:88:ea:53:
f1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:57:5B:FD:B5:A5:73:61:A7:22:1A:4C:50:A7:0F:30:B2:79:6D:A0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jFdb_bWlc2GnIhpMUKcPMLJ5baA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.203.0/24
Signature Algorithm: sha256WithRSAEncryption
21:61:bd:ca:6c:25:91:42:f3:52:cf:29:30:06:ce:a8:2d:b7:
f3:f9:c0:b5:42:11:74:9a:fe:4f:65:c8:61:59:45:22:ea:bb:
44:f8:42:a3:0f:2b:2f:ce:ed:c5:07:84:26:53:36:a3:5e:7f:
81:26:b7:5a:5f:47:4e:2b:48:df:38:00:a6:0f:5d:5a:a9:d2:
18:2f:93:f0:b1:d5:c0:c6:87:87:f5:52:91:44:89:25:68:2b:
34:a0:0b:78:62:db:fe:14:65:eb:90:ca:32:e8:c1:1d:0a:4c:
69:9c:bc:e3:4e:b0:36:cb:d6:55:c8:e8:0d:eb:5f:cb:58:47:
ed:15:c6:db:dc:c7:c9:0e:9e:bb:b3:bd:c4:b9:cc:bd:3e:d0:
89:96:bc:1b:45:11:0f:55:3c:40:24:19:63:8f:d2:3d:ea:5b:
d1:62:3c:19:78:6f:20:9d:e3:c0:ac:ce:d9:a7:a8:ee:5a:f9:
c3:5b:29:3a:4e:36:59:54:bb:6d:4c:42:87:f5:c8:db:3d:38:
80:0f:c1:d5:d2:ce:88:f0:90:ab:79:97:4c:23:96:c0:be:48:
fa:ca:a3:fe:c1:71:92:04:dd:22:e6:d4:0e:16:1d:78:a8:ac:
e0:10:30:9d:39:63:05:58:ed:e5:93:d0:89:c3:07:78:69:01:
fe:d7:47:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 6 06:36:04 2023 by rpki-client on console-ams.rpki-client.org