Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jUGBUC5lrg8qohSfbjj1S7fZ4gY.roa
File: jUGBUC5lrg8qohSfbjj1S7fZ4gY.roa (raw, json)
Hash identifier: tdLzQ2mwzapmHNBizC0PwUZbL0D7Y9ZMDPjsesU2dKA=
Subject key identifier: 8D:41:81:50:2E:65:AE:0F:2A:A2:14:9F:6E:38:F5:4B:B7:D9:E2:06
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018AA2305260FC585EE7251B8CDF8D54EFDF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jUGBUC5lrg8qohSfbjj1S7fZ4gY.roa
Signing time: Sun 17 Sep 2023 08:09:50 +0000
ROA not before: Sun 17 Sep 2023 08:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31863
IP address blocks: 194.87.228.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a2:30:52:60:fc:58:5e:e7:25:1b:8c:df:8d:54:ef:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 17 08:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d4181502e65ae0f2aa2149f6e38f54bb7d9e206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:5c:d5:44:c0:c5:4a:d9:c1:18:39:6e:06:da:
ea:ab:82:5f:b1:85:d2:28:29:35:2c:4a:98:e4:3a:
ff:24:8c:36:de:ec:bf:98:a3:76:4b:8f:7f:07:72:
3a:44:1d:cd:25:a9:b8:3b:7f:92:41:3a:4c:c0:c3:
0c:8f:32:bb:58:94:16:86:eb:5a:ca:77:e7:4b:e0:
64:44:ae:7e:e6:98:35:2a:2f:53:fb:33:95:c0:69:
c4:69:14:ac:04:0c:c5:5d:bb:b7:a6:16:f7:a8:bf:
6a:85:e1:a7:09:3b:2f:f4:66:b5:4a:c8:ad:7f:78:
19:12:22:94:4f:d2:0a:29:b8:15:f7:15:3d:cb:98:
a6:bb:a7:67:77:a9:91:4a:37:aa:90:7f:e5:5c:e8:
e5:00:32:39:3f:1b:97:af:70:e7:93:0d:04:1d:c9:
7a:bf:5a:2b:99:b4:11:48:16:11:57:52:0c:01:b8:
7b:90:85:aa:cb:1b:69:df:87:a5:71:2c:a3:41:d2:
86:25:4e:27:29:9f:17:f8:fa:a0:f9:90:c5:af:00:
9f:d3:8c:8d:4d:21:85:cc:ed:3e:d8:3f:b6:a5:58:
8e:7d:cb:ad:8c:bc:4f:14:16:a8:c7:13:a8:72:3d:
45:7d:e9:5e:25:49:44:00:de:85:cd:ab:99:55:d0:
3d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:41:81:50:2E:65:AE:0F:2A:A2:14:9F:6E:38:F5:4B:B7:D9:E2:06
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jUGBUC5lrg8qohSfbjj1S7fZ4gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:73:66:a4:ee:5b:4e:37:68:c9:ab:c7:a2:b0:ce:fc:79:d2:
4b:2a:45:f2:a2:d4:86:da:73:82:d4:80:be:04:c4:bb:28:58:
05:19:bb:0b:a0:23:35:f7:aa:43:ae:c9:af:6a:d0:09:8a:c0:
43:91:81:16:20:0e:7e:a9:66:31:e9:44:f4:3b:66:4f:91:a0:
5b:d8:10:d1:92:3c:d3:12:88:79:fe:c7:f1:05:40:7b:a3:e1:
4f:10:e4:fe:1c:93:56:a5:8a:dd:8a:50:04:ce:0e:5f:fb:0d:
8a:12:1a:71:87:12:ce:13:d9:8e:3a:a2:5f:af:cc:ea:06:58:
7c:a0:0b:75:1f:e8:e7:54:45:1f:00:84:19:ee:51:06:ce:ee:
63:ce:ae:02:3f:c1:91:35:ef:99:07:99:03:2b:bb:5b:ca:9e:
4a:67:be:4c:d0:77:68:01:12:45:43:d9:c5:56:0f:d7:b6:76:
22:3a:98:11:16:e9:01:46:d3:44:50:f4:3d:53:0e:47:1f:50:
5f:fb:49:5d:19:60:10:6a:5d:cd:63:bb:68:6d:20:ad:5f:13:
fc:27:6f:bc:a0:57:eb:e7:5a:d0:04:c0:68:7c:91:ab:4e:1f:
59:df:22:24:bf:5b:6e:72:7f:af:cc:8f:a6:fd:f1:01:f5:39:
cf:8f:6d:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 18 05:59:42 2023 by rpki-client on console-fra.rpki-client.org