Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/udUK0C0OpJNA7XqtcjAN1pBlLYM.roa
File: udUK0C0OpJNA7XqtcjAN1pBlLYM.roa (raw, json)
Hash identifier: IkpNt3zI6KEvmu91XLz9P9TLP+gZFeWrT04G794lZrA=
Subject key identifier: B9:D5:0A:D0:2D:0E:A4:93:40:ED:7A:AD:72:30:0D:D6:90:65:2D:83
Certificate issuer: /CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Certificate serial: 01856D2F24F4671245FAC09F9CC7235D3B8B
Authority key identifier: 11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/udUK0C0OpJNA7XqtcjAN1pBlLYM.roa
Signing time: Sun 01 Jan 2023 11:54:44 +0000
ROA not before: Sun 01 Jan 2023 11:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42168
IP address blocks: 194.230.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:24:f4:67:12:45:fa:c0:9f:9c:c7:23:5d:3b:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=115dbc00433e29f2adeb038fea2fbd7048fb632f
Validity
Not Before: Jan 1 11:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9d50ad02d0ea49340ed7aad72300dd690652d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:72:b9:67:f8:eb:0c:01:21:50:fd:31:d7:41:
47:13:93:11:ca:0a:3e:e6:ac:09:c5:60:5b:5c:d1:
26:fa:d5:b0:e9:8a:99:a2:7b:ff:67:52:84:17:4d:
80:bb:5b:81:fe:4f:16:7c:65:42:35:65:6d:b1:f5:
fe:a6:78:71:f5:3e:94:d6:db:c1:8e:82:37:d1:18:
c8:cc:86:25:43:96:bb:0c:70:d8:7f:1d:4a:4f:5b:
27:6c:c8:5b:31:20:40:ee:a5:30:4a:56:8a:c8:d6:
13:45:9c:cd:ec:17:30:4a:38:95:a7:56:96:b9:83:
26:f7:88:24:08:68:6d:c9:e9:42:80:ae:80:49:88:
82:47:ca:1d:dd:a7:08:91:3c:52:4b:2e:c4:44:8f:
dc:aa:6d:b2:63:1b:a6:c5:cd:87:54:d6:32:c4:2d:
42:69:54:24:a8:da:b1:1b:81:d4:4f:eb:88:69:d4:
6b:a7:e4:57:3e:9b:bd:9e:7e:65:41:d6:95:35:e5:
3f:94:ff:76:f2:cf:35:91:bc:17:20:7d:b0:57:68:
b8:09:e0:8d:8a:5f:4e:ed:3e:fe:2e:fe:90:39:16:
47:52:35:99:5e:a6:6c:00:b4:0c:41:5e:1a:11:2f:
76:95:68:25:65:be:c6:b5:64:6e:d7:d8:de:e6:d3:
d5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D5:0A:D0:2D:0E:A4:93:40:ED:7A:AD:72:30:0D:D6:90:65:2D:83
X509v3 Authority Key Identifier:
keyid:11:5D:BC:00:43:3E:29:F2:AD:EB:03:8F:EA:2F:BD:70:48:FB:63:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EV28AEM-KfKt6wOP6i-9cEj7Yy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/udUK0C0OpJNA7XqtcjAN1pBlLYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/65a71d-0236-44d5-8ce9-229b4ae742de/1/EV28AEM-KfKt6wOP6i-9cEj7Yy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.230.110.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:b1:4b:53:10:57:a9:5b:88:d0:dc:c8:6a:90:00:6d:c5:bd:
ca:95:30:67:ff:72:03:80:37:42:35:54:99:cc:c8:5b:c4:34:
cf:45:61:65:ba:0a:10:58:ea:0a:60:df:9c:bf:bf:74:e3:c1:
3b:50:7b:66:3e:09:31:e0:62:f2:64:fc:9d:f4:80:bb:86:19:
7e:05:78:7d:85:6b:97:53:51:97:13:60:68:b9:93:b8:32:e0:
bc:ce:ae:60:e3:f5:d9:39:37:29:5b:12:af:6e:31:27:08:a9:
67:8e:ad:f6:05:4a:35:74:78:a9:f8:21:f0:03:0d:5b:ea:7a:
df:70:d8:09:82:1d:f5:f1:82:80:de:6a:9a:32:4d:96:ca:fb:
a7:e9:3e:f5:07:7a:3e:f6:73:6a:0d:01:93:5a:b1:a1:fa:0e:
4b:b2:65:d9:aa:25:bb:4e:a7:a4:8f:0c:8c:b6:73:2d:c0:2c:
d2:aa:25:db:1d:c8:d8:02:d6:6a:6a:ed:86:3b:75:bf:47:0c:
d2:ed:3d:3b:f6:92:75:8d:d9:4f:d3:5b:6d:1f:78:a1:da:e5:
63:c6:36:bb:67:64:aa:00:e8:ae:f8:0f:f8:a7:85:ce:54:62:
4a:a1:12:27:6f:05:9e:3c:1f:25:0b:f8:9d:13:c6:cb:81:93:
8d:0a:01:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:29 2024 by rpki-client on console-fra.rpki-client.org