Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/kXtJ9Ed5xiOaBoLUutQkv49skuw.roa
File: kXtJ9Ed5xiOaBoLUutQkv49skuw.roa (raw, json)
Hash identifier: aZ1MX/JXKwuGkTb7zoc/TyjsOQITWTdrh7aIEtLzUrg=
Subject key identifier: 91:7B:49:F4:47:79:C6:23:9A:06:82:D4:BA:D4:24:BF:8F:6C:92:EC
Certificate issuer: /CN=f21d5f37506de4905e173c0f581150817250efe1
Certificate serial: 01869BFC8EF42C92B75F9A92925E382302D1
Authority key identifier: F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/kXtJ9Ed5xiOaBoLUutQkv49skuw.roa
Signing time: Wed 01 Mar 2023 07:04:25 +0000
ROA not before: Wed 01 Mar 2023 07:04:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 194.69.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9b:fc:8e:f4:2c:92:b7:5f:9a:92:92:5e:38:23:02:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f21d5f37506de4905e173c0f581150817250efe1
Validity
Not Before: Mar 1 07:04:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=917b49f44779c6239a0682d4bad424bf8f6c92ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:14:e4:9c:74:ad:b1:bd:9d:e2:5c:1c:09:24:
13:5a:6c:78:18:51:e9:5f:31:ff:5a:fa:be:f1:21:
44:8d:03:9c:ac:fc:9c:12:f4:d0:27:43:98:8e:91:
ef:80:09:c2:6d:9c:2d:8f:15:18:33:8f:57:c6:c4:
c7:47:59:cc:5c:1e:d8:98:89:bb:a5:f0:c2:2c:b5:
70:42:0b:03:24:59:dc:26:d0:d7:a3:c8:af:64:9f:
8d:30:d7:7c:50:47:ff:ad:32:25:27:1e:44:86:82:
aa:da:d2:6e:e5:1e:d9:bc:16:d4:e4:39:86:a6:80:
df:09:3b:69:28:d9:fb:69:b1:f1:1c:8b:92:a0:52:
cd:e0:10:3d:f1:1a:41:d2:63:97:7a:e6:0c:63:dd:
84:5e:d3:c9:d8:f8:29:5b:89:1d:17:b3:20:d0:bf:
f2:1e:15:82:09:ab:da:2f:80:fc:7c:88:08:54:79:
d5:9e:cc:64:1a:d7:52:75:33:30:d0:77:eb:e7:90:
88:7d:c9:17:10:09:72:4a:4a:d1:01:85:fb:5b:de:
11:15:a2:63:37:b9:4c:60:35:8e:fb:04:dd:8e:e8:
15:56:61:8b:11:98:ad:df:e0:ef:ea:a4:97:58:98:
53:74:1a:dc:86:9e:72:81:69:09:db:d8:44:8a:d7:
82:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7B:49:F4:47:79:C6:23:9A:06:82:D4:BA:D4:24:BF:8F:6C:92:EC
X509v3 Authority Key Identifier:
keyid:F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/kXtJ9Ed5xiOaBoLUutQkv49skuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.160.0/24
Signature Algorithm: sha256WithRSAEncryption
42:fe:d6:82:20:38:64:3c:a3:2c:e7:5f:67:3b:31:9f:e0:a2:
1a:c1:47:c8:a4:1c:d0:5c:f3:51:26:f2:60:7a:00:f7:60:1e:
20:58:80:a7:bb:bb:84:d0:94:e4:f1:e3:2e:5d:e7:d2:03:e5:
e0:1d:de:ea:a1:d4:7b:fb:d8:e2:d8:1f:c8:1d:9b:c1:da:cf:
d5:c1:a8:b9:f5:a0:0c:4b:0d:31:9c:59:c2:70:84:71:66:db:
51:47:fe:30:71:d5:7b:23:6d:0c:47:29:a5:07:94:17:3f:9d:
b0:96:b1:8a:80:52:45:71:f4:67:6d:a5:52:53:fa:dd:45:52:
07:20:44:44:a3:a5:ca:c2:7d:aa:7e:ca:cc:60:aa:c7:cc:46:
ed:5c:27:6d:1a:12:4b:de:ef:5c:3f:7d:cc:f9:b9:24:47:49:
83:b2:89:9d:a4:a3:24:a1:95:1f:77:04:64:d1:b3:eb:2f:7d:
8a:5d:db:37:44:2c:57:85:42:31:5e:e3:eb:fc:40:25:35:7e:
94:89:24:06:9e:71:11:92:41:fb:3c:d4:7a:fa:50:27:38:ac:
1b:0b:fa:6c:7f:d1:95:0b:e0:3c:20:12:12:35:d4:ce:a7:7c:
df:06:99:d6:02:bf:c2:bd:4c:d0:cb:74:13:32:29:65:0a:b9:
6c:ab:55:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-ams.rpki-client.org