Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/_TG_NN2iNlpICrm7DOEN2eOP57c.roa
File: _TG_NN2iNlpICrm7DOEN2eOP57c.roa (raw, json)
Hash identifier: O8ZVA+sdglntDltGe5oxrNQoNS1mFCHpEHXnhoiR32I=
Subject key identifier: FD:31:BF:34:DD:A2:36:5A:48:0A:B9:BB:0C:E1:0D:D9:E3:8F:E7:B7
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 018572B41FB7582AE6D853198608539267F3
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/_TG_NN2iNlpICrm7DOEN2eOP57c.roa
Signing time: Mon 02 Jan 2023 13:38:05 +0000
ROA not before: Mon 02 Jan 2023 13:38:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6805
IP address blocks: 194.15.237.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:1f:b7:58:2a:e6:d8:53:19:86:08:53:92:67:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Jan 2 13:38:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd31bf34dda2365a480ab9bb0ce10dd9e38fe7b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:21:cd:a5:02:72:fe:78:68:ec:78:34:cc:e9:
64:f7:26:41:66:9e:58:6a:b9:74:b7:8e:6b:64:c2:
51:78:99:5c:01:9d:99:36:e8:50:6d:a5:0c:a0:1c:
a8:6e:30:5f:c8:d6:de:9e:ef:d4:d3:84:1d:00:0e:
3d:e5:a6:7f:4f:0d:cd:d0:36:e7:5b:57:8a:f0:ce:
9f:cc:2e:fb:f2:81:04:07:44:cf:f3:f6:e1:df:1b:
8e:35:29:fc:7a:da:61:84:69:d9:e6:13:ae:e8:50:
4d:b5:f7:db:a6:2a:88:bd:40:57:57:69:be:e2:c4:
b5:58:b0:bb:d6:30:c0:cd:5a:3e:36:18:fd:54:34:
8c:26:7f:2d:bd:76:e3:82:ff:17:07:15:1b:15:6b:
d3:cb:ce:51:b5:ff:1b:d7:db:93:5f:ae:6f:95:a3:
24:e0:49:4e:0e:72:de:31:7b:c9:e9:a6:19:e4:33:
f4:a0:b7:57:58:e3:20:18:b3:c3:ab:8f:ec:9f:9b:
99:cb:a0:2c:68:ab:78:4d:41:6c:33:d7:87:f6:8e:
9c:d4:8b:d5:f3:bb:20:09:d4:bd:31:30:55:fc:51:
33:eb:58:6a:1c:d2:08:ae:f5:bc:06:6f:21:8a:d8:
01:91:5d:fe:65:ea:41:d2:ad:d6:71:4c:ec:fb:55:
44:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:31:BF:34:DD:A2:36:5A:48:0A:B9:BB:0C:E1:0D:D9:E3:8F:E7:B7
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/_TG_NN2iNlpICrm7DOEN2eOP57c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.237.0/24
Signature Algorithm: sha256WithRSAEncryption
97:55:3c:8b:37:db:03:8e:a1:bc:88:9c:25:c2:6a:df:db:6c:
9a:18:3c:79:b0:8b:8c:85:41:40:d9:cf:95:7d:08:11:20:e9:
d0:a9:90:d9:a9:0b:69:2b:bc:5c:51:96:ab:b5:6d:02:02:bc:
76:75:2a:e4:88:60:bb:e4:ea:b6:dc:ed:a0:56:80:6e:2f:11:
0d:be:1d:fd:98:7d:c9:16:31:3c:93:78:65:27:b9:9d:ef:bb:
75:56:a8:44:bf:56:c0:62:38:26:18:91:f0:af:0e:10:9c:ef:
00:2b:7c:42:50:07:64:f1:a1:f0:d1:47:75:75:22:e8:ff:e1:
48:f5:fd:d9:95:60:20:ba:fb:03:80:65:d4:51:a9:48:b9:ab:
b4:f4:a2:50:8d:10:73:f7:68:b4:fd:72:0e:a4:7f:ff:40:5b:
f8:d1:16:8e:53:f1:91:64:51:c3:36:33:e1:02:2c:23:fa:c4:
2d:44:81:5f:bc:4d:62:f3:fe:1d:4b:43:3c:85:8f:af:86:8c:
35:83:40:16:4d:36:86:bd:bb:85:2e:25:c3:bb:aa:23:7c:b4:
21:c9:33:7e:68:90:fe:2b:44:63:7f:76:7f:22:c0:c4:32:3f:
53:9f:ff:a9:2f:19:88:12:0e:5a:2b:19:a8:3e:c3:90:57:a6:
31:37:5b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:21 2024 by rpki-client on console-fra.rpki-client.org