Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sDMYHoJYLBoFUxsWu9JU5RYPwQ4.roa
File: sDMYHoJYLBoFUxsWu9JU5RYPwQ4.roa (raw, json)
Hash identifier: AaWVtT4ZKOch3oYzK/QoYur7Kq+UsRG5ER6a/Mm/cnI=
Subject key identifier: B0:33:18:1E:82:58:2C:1A:05:53:1B:16:BB:D2:54:E5:16:0F:C1:0E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A923EE64AF04A1434BC1453E89AA2566B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sDMYHoJYLBoFUxsWu9JU5RYPwQ4.roa
Signing time: Thu 14 Sep 2023 05:51:50 +0000
ROA not before: Thu 14 Sep 2023 05:51:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17941
IP address blocks: 194.87.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:92:3e:e6:4a:f0:4a:14:34:bc:14:53:e8:9a:a2:56:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 14 05:51:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b033181e82582c1a05531b16bbd254e5160fc10e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:66:9b:5f:71:79:e8:87:72:b1:28:83:64:7d:
04:40:5e:12:46:0f:9d:be:8b:42:42:64:e4:93:d9:
8a:66:09:58:6f:80:f5:d2:06:c4:1f:3b:4f:bd:6f:
38:5a:62:f8:e3:da:15:69:26:15:54:b6:93:c7:80:
b9:ac:cc:4f:d2:c9:f7:5c:62:f4:26:0e:44:da:ec:
c6:f2:b2:7c:57:2d:89:56:f3:a3:f9:35:0e:2c:a9:
e4:4e:0f:13:ca:23:c0:1a:3b:3d:a3:f6:81:85:74:
cb:bc:5b:38:08:63:6e:3e:92:6f:13:2d:90:d1:da:
78:b6:b5:fe:50:5d:7f:14:a9:e0:0d:c2:67:df:77:
99:9f:58:f9:d0:26:68:9a:e1:7e:cc:f8:a2:b6:8a:
1f:24:b2:03:a4:42:09:b0:56:f8:c6:08:1e:f5:59:
d0:79:1a:14:86:46:a6:30:dc:8a:72:b2:7b:43:1e:
11:b2:f2:02:71:60:fc:b7:d2:f6:c9:ee:63:fd:f5:
4f:7d:83:91:d0:f2:18:a0:0d:33:ff:d3:1c:35:ab:
65:e9:bf:7f:cb:dc:74:b7:bb:7a:e7:3c:39:57:29:
a9:da:b7:e6:88:52:7d:d7:15:52:51:f7:71:b5:f5:
12:0f:39:25:99:58:5d:0b:31:f1:8c:7d:8e:12:94:
d8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:33:18:1E:82:58:2C:1A:05:53:1B:16:BB:D2:54:E5:16:0F:C1:0E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/sDMYHoJYLBoFUxsWu9JU5RYPwQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.114.0/24
Signature Algorithm: sha256WithRSAEncryption
02:37:5f:28:94:e9:a5:c3:1f:3e:e9:b0:c1:7a:86:85:87:de:
df:4a:b1:5d:7e:aa:e0:38:e6:1b:e7:3e:2b:00:c3:78:61:6d:
1f:14:4d:10:2b:1b:9b:76:21:ca:40:7b:bb:2b:5a:32:40:c0:
5b:14:32:f1:72:6f:24:9f:59:bb:df:98:a6:97:ed:cf:63:30:
10:55:85:d3:10:d4:3b:c0:df:cf:ae:0c:1f:33:f1:97:b1:78:
7c:64:dc:d6:f5:d7:25:89:1f:a8:0f:0b:30:b3:78:db:09:4e:
bf:89:32:5b:45:23:4e:25:5a:c8:fc:66:09:af:e9:86:09:44:
bb:71:dd:32:e4:9d:33:3c:ac:d3:d6:e1:0f:6f:84:4e:b7:31:
64:21:b3:62:d4:72:f9:9a:7c:4a:91:27:63:bb:c3:ee:25:22:
9b:27:d7:a3:c5:1e:f9:46:21:1b:48:47:0e:b4:8d:ae:a6:1d:
4a:ac:d4:6e:5f:82:5a:cd:4e:28:b6:2c:fe:b3:63:c7:de:4f:
f8:b6:d9:67:f4:97:0b:f8:bb:0b:22:f1:37:f6:2c:27:48:e0:
71:70:0d:ec:6a:1e:ce:fb:20:cc:3c:87:73:ca:69:35:50:f2:
b0:72:3c:0c:20:69:d3:3c:0c:c0:41:b4:14:48:45:6c:71:96:
88:72:da:3a
-----BEGIN CERTIFICATE-----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Generated at Tue Nov 14 06:23:36 2023 by rpki-client on console-ams.rpki-client.org