Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/An04u0QiDmR5KKkiLezUvz8jexg.roa
File: An04u0QiDmR5KKkiLezUvz8jexg.roa (raw, json)
Hash identifier: wg2/8uUl32eFmf1zyLgytEa0256M1OPq1dOMhkHqPTA=
Subject key identifier: 02:7D:38:BB:44:22:0E:64:79:28:A9:22:2D:EC:D4:BF:3F:23:7B:18
Certificate issuer: /CN=8c77013e488a09c709b632246d9405da458c5538
Certificate serial: 01856E6F8C19E7D61CDA8B553DB6226E8DA9
Authority key identifier: 8C:77:01:3E:48:8A:09:C7:09:B6:32:24:6D:94:05:DA:45:8C:55:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHcBPkiKCccJtjIkbZQF2kWMVTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/An04u0QiDmR5KKkiLezUvz8jexg.roa
Signing time: Sun 01 Jan 2023 17:44:42 +0000
ROA not before: Sun 01 Jan 2023 17:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39564
IP address blocks: 194.11.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:8c:19:e7:d6:1c:da:8b:55:3d:b6:22:6e:8d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c77013e488a09c709b632246d9405da458c5538
Validity
Not Before: Jan 1 17:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=027d38bb44220e647928a9222decd4bf3f237b18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:51:f8:ab:b0:a6:d9:a0:79:99:61:2e:22:55:
75:48:bf:b4:d7:65:99:f7:b5:8b:6d:af:21:42:76:
fe:e6:87:27:0c:a9:23:8e:63:c9:f9:67:f8:57:95:
6d:21:9f:43:e5:92:54:1e:64:92:31:12:ab:13:ae:
57:f4:e6:29:43:dc:09:3e:bb:3a:41:99:7a:35:2d:
40:da:4c:24:0d:cf:9f:39:d6:98:48:56:43:7b:00:
31:ba:e4:c4:8c:d6:c1:58:bc:c8:97:00:be:da:76:
55:90:63:39:b6:70:37:b2:b9:d3:0c:ae:59:08:e3:
59:d1:3b:18:f8:74:95:00:54:a0:c4:ad:36:54:e0:
66:4e:cd:5b:71:45:8a:6a:06:62:b8:07:e1:0a:76:
e1:25:a6:6c:e0:2f:17:c8:1c:18:2b:e4:cd:c0:3b:
72:db:11:84:db:f1:a6:d3:cd:77:d5:c0:a2:13:de:
ff:68:92:bb:12:86:a3:d6:b2:41:3f:bd:0a:17:a6:
be:a2:ee:4a:00:8b:a3:e5:2e:04:d8:57:69:ba:06:
30:6d:b3:61:17:e7:bf:e4:44:64:07:b8:80:83:a9:
db:99:ca:4e:cb:85:a4:df:ba:b7:58:0b:cb:8d:c6:
9b:a4:f7:0a:49:94:bb:0a:a1:d0:55:fd:bd:35:9c:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7D:38:BB:44:22:0E:64:79:28:A9:22:2D:EC:D4:BF:3F:23:7B:18
X509v3 Authority Key Identifier:
keyid:8C:77:01:3E:48:8A:09:C7:09:B6:32:24:6D:94:05:DA:45:8C:55:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHcBPkiKCccJtjIkbZQF2kWMVTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/An04u0QiDmR5KKkiLezUvz8jexg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/168509-2cf3-483d-bcd8-02129533a33d/1/jHcBPkiKCccJtjIkbZQF2kWMVTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.27.0/24
Signature Algorithm: sha256WithRSAEncryption
23:58:45:fb:d8:af:13:1c:c6:4e:a3:11:ff:5f:4c:83:f4:d9:
ce:eb:45:3a:d0:da:53:58:14:3b:80:94:01:61:00:b4:99:93:
b3:f6:3b:ea:1e:d4:3d:8c:e4:ea:23:b5:6b:29:ec:e0:cb:9f:
ff:33:d4:62:fe:10:5e:dc:48:06:d6:5f:54:c2:83:87:fa:4a:
a9:74:e7:25:04:da:81:83:eb:4e:48:34:44:d1:3a:b9:e7:b3:
02:7b:9e:75:6c:91:9c:09:e8:d9:4a:86:72:e1:b6:0b:da:4b:
0d:a6:df:04:b0:0f:cb:10:45:8a:be:1f:3f:dd:1c:83:26:6c:
55:bd:a8:8b:bc:d0:8a:c1:20:cc:d4:df:f8:81:3a:c2:18:21:
88:40:a5:e7:f8:79:28:07:f0:55:36:d2:9c:e3:9b:0a:52:04:
ec:e4:ab:e4:3c:92:3b:58:94:20:37:93:29:1c:6c:0b:67:49:
43:5c:ee:28:d2:3f:4f:a6:e1:ba:73:09:80:98:9d:50:bd:96:
23:b4:a7:b2:36:8b:7f:73:77:c4:ce:2f:b2:fc:8e:cb:e2:ec:
4e:38:10:df:7f:4f:77:da:4e:79:e7:1d:5f:99:a2:42:a6:26:
a0:3f:be:c0:98:aa:eb:41:7b:d4:b8:8f:5d:24:b4:23:4f:d8:
24:b3:23:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:08 2024 by rpki-client on console-fra.rpki-client.org