Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/8uVQ-t2k743lUAjw1Fl3lrJfdZs.roa
File: 8uVQ-t2k743lUAjw1Fl3lrJfdZs.roa (raw, json)
Hash identifier: 4boQyrAc7Nlgp3D3r3HP97DP+A0qYaLX/p3XEwJ3DL8=
Subject key identifier: F2:E5:50:FA:DD:A4:EF:8D:E5:50:08:F0:D4:59:77:96:B2:5F:75:9B
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 0189D4B0696199919140BA1AD6D5BF879996
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/8uVQ-t2k743lUAjw1Fl3lrJfdZs.roa
Signing time: Tue 08 Aug 2023 10:27:58 +0000
ROA not before: Tue 08 Aug 2023 10:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24875
IP address blocks: 194.62.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:b0:69:61:99:91:91:40:ba:1a:d6:d5:bf:87:99:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Aug 8 10:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2e550fadda4ef8de55008f0d4597796b25f759b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4c:d2:86:cb:e5:1f:c1:6b:4f:67:d7:46:9a:
96:49:f6:87:72:48:6f:ce:4f:1e:47:f6:e2:b4:9a:
9d:8a:17:b7:62:fc:aa:75:8f:3a:cf:eb:e3:84:6c:
da:a2:81:3b:77:e2:f2:16:87:18:75:26:f5:95:1c:
45:95:25:4d:a2:c9:07:e5:70:ea:cb:b1:76:69:fc:
bd:9b:f1:d5:a6:06:c3:16:a9:e4:28:4a:66:20:71:
f3:fa:f2:23:44:15:c7:f1:73:88:8a:e3:c2:38:97:
67:91:cd:8a:1f:f9:d4:6e:f5:4f:36:af:8e:88:ee:
80:af:e6:6b:d8:3c:8c:43:ee:20:96:bb:64:f6:73:
b7:05:aa:a4:1f:c8:92:37:20:e1:e7:65:70:13:21:
7e:6c:ce:9a:95:1c:c0:be:03:f2:4b:7e:52:2e:65:
94:65:4e:32:12:0a:e6:00:71:7d:95:52:ae:cf:4a:
12:a0:bc:ff:11:32:a8:fe:b8:30:e1:8d:24:d6:0a:
a0:40:a5:74:9c:dc:09:3f:a2:6c:cd:49:1e:35:3c:
53:f8:62:7f:f1:52:d2:a4:c0:37:2a:d2:3d:99:54:
a7:f3:24:ea:76:d7:62:03:ce:6f:4b:2c:1b:60:25:
b1:7a:22:99:fc:54:ae:da:cf:2b:1a:ac:8d:72:b2:
6a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E5:50:FA:DD:A4:EF:8D:E5:50:08:F0:D4:59:77:96:B2:5F:75:9B
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/8uVQ-t2k743lUAjw1Fl3lrJfdZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.16.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:a3:82:a4:43:58:a2:e2:d0:9c:2a:cd:c2:93:90:fd:9b:3b:
aa:3d:fd:4f:08:1e:b4:55:78:0c:06:21:be:d4:b2:08:bc:9a:
8e:ee:7d:99:34:ee:0a:64:3e:4d:7f:f5:71:e3:d7:a0:49:88:
f6:7e:30:6f:4c:69:7e:af:a3:bb:09:86:1d:8f:0c:f8:df:92:
62:72:2c:45:cb:0c:8e:4e:1b:ce:16:dd:00:33:44:8b:9d:d1:
c9:cf:24:d8:c1:a8:17:e0:2b:b1:e0:34:98:11:d8:4c:65:8f:
a1:93:31:38:64:b4:41:af:b4:d9:b0:1f:9d:3c:03:57:96:30:
25:38:2b:da:09:30:ee:75:31:8a:12:1d:4d:b1:3c:a7:da:d5:
f9:fa:72:9f:af:05:ef:8f:62:13:76:55:bc:eb:ca:64:e8:04:
52:57:6c:7e:eb:2e:f2:b5:22:95:ec:9d:73:ff:04:fd:09:ce:
1c:97:63:08:74:8c:03:dc:96:b8:d2:f6:bc:fe:7d:4e:33:77:
7e:24:c2:72:ce:58:1b:f0:32:ec:56:22:07:ba:0a:10:6e:43:
bd:f0:29:3e:6f:dd:5c:2d:a8:1c:c8:3f:15:a9:03:ee:4f:24:
19:3b:83:ae:45:09:bc:de:20:aa:6f:58:d4:78:e0:63:a5:d5:
eb:30:79:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:21 2024 by rpki-client on console-fra.rpki-client.org