Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/UDOtyOnPThT38QH_66LR10gMkPw.roa
File: UDOtyOnPThT38QH_66LR10gMkPw.roa (raw, json)
Hash identifier: UBRwNjx7v2DPSpeNwbvTwg4RMJXTRojUpuvGH/Tuu48=
Subject key identifier: 50:33:AD:C8:E9:CF:4E:14:F7:F1:01:FF:EB:A2:D1:D7:48:0C:90:FC
Certificate issuer: /CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Certificate serial: 01856C25EA8A50A57A50C62821AC0A29BA4A
Authority key identifier: E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/UDOtyOnPThT38QH_66LR10gMkPw.roa
Signing time: Sun 01 Jan 2023 07:05:02 +0000
ROA not before: Sun 01 Jan 2023 07:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 194.76.114.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:ea:8a:50:a5:7a:50:c6:28:21:ac:0a:29:ba:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ef9694aa48d81279e8ede430795f2768d2dd52
Validity
Not Before: Jan 1 07:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5033adc8e9cf4e14f7f101ffeba2d1d7480c90fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:2d:6c:0a:1f:ce:3b:34:e2:95:6d:06:a5:f2:
33:41:89:eb:f0:9b:92:ea:7f:4d:a4:aa:92:62:49:
9a:7d:17:bb:cf:2c:21:9a:d7:dc:d3:8a:56:7c:5c:
eb:ea:99:14:4c:05:97:0a:3d:bc:f0:cc:94:1b:49:
98:df:d7:8d:e6:cf:de:ad:f3:f7:38:41:fb:7f:8c:
22:41:63:76:c6:e4:6e:bf:9e:85:56:ea:a3:97:2d:
03:fe:aa:c6:0a:e8:f8:a6:7d:37:a2:d5:f7:2c:ea:
19:87:67:f5:27:5e:bb:dd:d2:d1:45:7c:80:27:c8:
45:ef:87:5d:aa:75:81:3e:cd:eb:51:50:d7:ab:e6:
b2:72:22:09:b8:6a:24:35:ae:b0:8e:ce:c0:27:48:
16:e0:22:3d:72:1c:c5:71:09:18:cd:1d:c3:9c:19:
9d:fe:5b:66:7e:fe:41:f8:bb:ef:0a:9b:2e:a3:55:
0d:bb:88:b6:82:49:3f:f7:4f:61:24:b0:0e:b8:8c:
c6:bf:b5:cb:e5:ac:7b:ce:e9:57:14:01:87:c9:77:
b7:79:d8:bb:62:9e:c1:6d:02:7b:dc:c2:46:fd:55:
c9:60:9c:5a:65:50:b2:22:d6:4e:1c:f9:a8:eb:b8:
72:ca:e2:b8:9b:97:11:30:c0:3b:51:d3:65:6e:73:
5e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:33:AD:C8:E9:CF:4E:14:F7:F1:01:FF:EB:A2:D1:D7:48:0C:90:FC
X509v3 Authority Key Identifier:
keyid:E1:EF:96:94:AA:48:D8:12:79:E8:ED:E4:30:79:5F:27:68:D2:DD:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/UDOtyOnPThT38QH_66LR10gMkPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b05667-e850-4c45-aee3-aded1c469eaf/1/4e-WlKpI2BJ56O3kMHlfJ2jS3VI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.114.0/23
Signature Algorithm: sha256WithRSAEncryption
79:6f:f2:54:d9:63:53:2a:79:a0:f7:fa:48:d0:0d:5f:ac:0d:
db:59:c2:e1:0e:84:38:fc:65:aa:29:29:29:36:32:38:47:4b:
f3:bc:6c:e0:de:ec:e2:66:65:6e:e2:9f:5e:62:35:70:f8:c5:
39:4f:40:15:da:90:cf:3a:1f:2b:ff:61:aa:fb:fe:c8:c9:c8:
40:61:ac:c3:e2:65:ef:cb:57:87:8d:55:f7:cc:70:73:25:ad:
ee:e3:31:67:78:46:e3:19:b9:46:22:69:5f:b2:45:07:be:c0:
da:f1:8e:9b:48:b4:9d:2d:22:1f:57:14:7e:23:b4:44:86:11:
0d:23:1f:b7:9b:84:8d:aa:fa:a5:9e:25:2b:fe:3f:4f:28:f8:
9a:73:b7:19:73:de:55:e5:1c:df:21:ad:15:f9:38:33:52:ed:
43:b5:9c:ab:a8:bc:96:bf:bc:b0:81:50:57:80:0e:4e:9d:21:
5e:1f:2d:c9:53:b0:54:dd:60:a6:58:9f:1e:24:ea:50:5e:03:
84:ac:d4:45:14:5d:6b:ad:27:22:b0:ae:76:43:e9:f7:ab:5f:
2a:30:a9:99:55:4b:a9:e6:16:b5:43:63:b7:c2:45:ba:5c:d1:
fc:b0:8d:b7:fc:e1:c2:11:0a:c6:ac:d8:40:c6:2d:d0:c4:de:
ac:05:3e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 17 15:27:18 2023 by rpki-client on console-fra.rpki-client.org