Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tBMQvLM1Hus4Mv_ZOHCJcbB2Vz0.roa
File: tBMQvLM1Hus4Mv_ZOHCJcbB2Vz0.roa (raw, json)
Hash identifier: L4dWdXaqHR34qJ9V3wJDuNo3SUvsJEYgSy8hDOxr7ak=
Subject key identifier: B4:13:10:BC:B3:35:1E:EB:38:32:FF:D9:38:70:89:71:B0:76:57:3D
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A8A4F58CCACC4765777288F7C2623F7C1
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tBMQvLM1Hus4Mv_ZOHCJcbB2Vz0.roa
Signing time: Tue 12 Sep 2023 16:52:50 +0000
ROA not before: Tue 12 Sep 2023 16:52:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 192.124.209.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:4f:58:cc:ac:c4:76:57:77:28:8f:7c:26:23:f7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 12 16:52:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b41310bcb3351eeb3832ffd938708971b076573d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:84:9a:4f:97:a8:e8:67:03:cb:4d:80:87:5a:
f1:d4:14:34:67:2c:08:48:d7:4c:9e:fe:85:a5:59:
f8:3d:92:92:50:00:22:6d:03:9f:11:2b:15:2e:dd:
68:5a:fd:b0:c6:a2:c3:74:86:f5:de:1f:b9:b5:0f:
e7:08:9a:b4:6e:cb:fe:ef:96:e6:ab:a1:6e:4d:bb:
a9:c8:ca:29:5d:ad:5f:5b:df:e3:6b:49:5b:ef:b5:
af:46:96:4d:66:b4:45:f5:35:c2:fe:07:09:cb:8d:
26:92:62:65:cd:6e:2c:50:eb:1f:70:67:5e:e0:45:
8b:30:1b:31:07:b0:d2:60:6e:59:98:31:ba:be:a3:
a7:04:f7:3e:bb:ed:39:5c:19:75:6d:dc:03:1a:a4:
8c:e5:bd:df:84:15:1a:f7:84:f9:4e:3f:a7:7d:a9:
35:b2:d5:38:7f:a9:cf:82:6a:9d:54:0e:7b:b7:6b:
e9:e8:b0:e0:e3:9f:68:bb:00:13:f7:79:b6:c7:08:
73:00:a2:81:5d:70:1f:63:66:6f:05:c5:b0:b5:97:
a0:0a:be:32:ce:d0:8b:c2:c6:04:60:73:3d:63:10:
9a:66:ac:df:78:ba:85:75:d8:66:8f:2c:38:89:8d:
ef:62:e1:9c:f2:bd:c0:6a:9c:4c:7d:31:82:18:46:
6d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:13:10:BC:B3:35:1E:EB:38:32:FF:D9:38:70:89:71:B0:76:57:3D
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tBMQvLM1Hus4Mv_ZOHCJcbB2Vz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.124.209.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:36:45:fb:48:f0:fb:ae:a8:e3:70:5b:8c:dc:2b:42:29:a5:
f6:63:a5:ba:c5:f1:e0:f4:cd:4d:64:37:c9:75:8f:05:51:7c:
7a:3d:ff:3c:66:e0:41:c7:2f:b2:c7:ee:08:3b:43:57:9f:c0:
c9:ff:bb:03:e1:9e:33:24:4b:59:17:08:6c:a2:2e:ba:8b:6f:
99:22:44:69:ea:7d:69:9e:94:3b:f6:63:9a:87:08:b5:e2:4a:
31:8b:55:26:95:05:2c:b3:4e:d7:91:ad:da:66:68:9e:b7:44:
73:04:1f:a4:1a:ad:13:86:47:03:28:f4:85:58:c9:8d:bd:18:
50:bf:4d:25:1b:15:57:22:7f:7e:eb:50:bf:53:99:06:03:ec:
5c:56:f9:63:a1:f0:02:14:53:2b:81:6c:6c:75:5a:23:2b:51:
8e:9f:06:7e:98:ca:36:9c:3e:55:6c:3a:15:54:ad:bf:f4:bd:
69:9a:a9:76:4b:a9:24:a4:e3:2d:7f:60:d9:c1:f3:73:f0:00:
fe:0a:c7:fa:d8:9c:91:95:2a:7a:ad:8d:58:5c:7b:20:8e:30:
ec:d5:b6:a8:3f:9f:13:56:53:e1:e3:2a:fb:11:64:18:a2:81:
36:fe:f7:19:2a:ef:ad:88:6a:0c:9c:22:4d:70:fc:c5:b7:ce:
2e:24:82:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 18 14:58:39 2023 by rpki-client on console-fra.rpki-client.org