Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/b3cnvuI9i8927n961jkwfvle2Io.roa
File: b3cnvuI9i8927n961jkwfvle2Io.roa (raw, json)
Hash identifier: yRXq1LScRHaPgYjFuSx3oqpdv12laoZuGdqYFE5xH1g=
Subject key identifier: 6F:77:27:BE:E2:3D:8B:CF:76:EE:7F:7A:D6:39:30:7E:F9:5E:D8:8A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B3A388E323A26822649DB22DB89CACBC9
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/b3cnvuI9i8927n961jkwfvle2Io.roa
Signing time: Mon 16 Oct 2023 20:41:06 +0000
ROA not before: Mon 16 Oct 2023 20:41:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 194.180.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3a:38:8e:32:3a:26:82:26:49:db:22:db:89:ca:cb:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 16 20:41:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f7727bee23d8bcf76ee7f7ad639307ef95ed88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:37:84:5c:67:25:01:ff:8b:32:a0:13:e8:5c:
9d:59:43:aa:40:fc:0a:a1:3a:1a:5a:31:d2:94:60:
49:d6:1d:b1:6b:70:04:48:91:60:53:aa:2b:bf:dc:
91:bb:d7:dd:e2:cb:e3:0c:b1:f4:97:14:d2:c0:a9:
4d:bb:47:66:78:8d:d8:bf:1f:b7:13:68:e3:88:b9:
1e:51:08:d9:8c:41:dd:4a:f2:5c:f0:b9:c5:ef:86:
f9:ef:e0:20:54:8c:8f:ea:40:61:30:64:eb:ba:4e:
df:4f:79:ed:ab:82:7b:30:13:21:3d:e6:e3:44:58:
98:dc:e5:02:9b:89:9b:f2:9f:91:61:48:b0:07:0f:
94:df:ea:62:9b:c9:8c:20:89:38:df:fd:1b:3f:3b:
63:2d:e7:06:eb:76:58:42:dd:b6:b3:1b:64:a5:1c:
71:f2:f2:db:f8:51:0f:de:cc:26:cf:cd:26:cd:04:
7c:36:f3:91:79:5f:7f:37:7a:8e:89:30:4a:bd:aa:
34:4f:e7:04:4f:72:37:80:d9:b9:0c:be:3d:86:b5:
f3:50:bb:6a:9b:03:21:35:c7:ec:65:0d:11:c2:64:
d8:e5:9e:d7:a4:c8:14:a8:57:4f:58:0d:d5:73:92:
be:52:dc:b6:bc:e4:c6:92:55:d0:e3:9e:9b:64:ac:
19:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:77:27:BE:E2:3D:8B:CF:76:EE:7F:7A:D6:39:30:7E:F9:5E:D8:8A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/b3cnvuI9i8927n961jkwfvle2Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:91:50:14:99:b8:a6:d7:07:c2:60:77:46:ff:e6:c9:51:d4:
bb:73:34:c3:1e:a8:1c:77:40:c7:31:7b:57:de:e0:99:d0:49:
8e:63:45:17:00:42:a2:ee:a0:26:bf:8e:cf:8e:a4:3a:95:ae:
b9:8f:d5:6c:dd:98:d3:11:b5:19:60:60:0c:7a:0e:86:f0:4d:
0a:d4:14:f2:07:4d:7b:52:5d:2a:26:68:02:47:3b:77:9c:e8:
11:7f:c8:38:2e:57:02:cf:29:ce:34:98:e1:92:0e:86:a0:fd:
f4:23:a0:7d:73:22:cf:c6:8b:41:b2:46:45:bb:d7:19:e1:cf:
7d:43:e6:10:4d:44:7f:70:c6:44:b9:1e:61:5e:8a:bc:05:65:
b3:06:f9:ad:1c:d6:2a:c0:3b:9d:9e:23:20:bb:45:20:57:80:
35:c2:7d:56:e5:18:7f:ec:a7:3e:85:76:6b:75:60:d1:39:07:
81:f7:4d:68:b5:e6:de:43:ab:fe:c7:12:3b:35:8e:8a:f6:4f:
cc:5f:0e:21:ef:d7:b2:84:00:63:dc:c5:e1:46:4b:ea:68:fe:
8b:9e:b6:d8:f9:f6:45:9a:86:e0:a5:7c:7a:ff:9a:07:5a:37:
32:33:2a:d3:5d:54:a7:36:ff:5f:ac:5d:f0:ba:c8:ed:3a:ad:
07:8e:a3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:12 2024 by rpki-client on console-ams.rpki-client.org