Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/0bdDpHFjcc2hSPpBHfVi29Z9pUw.roa
File: 0bdDpHFjcc2hSPpBHfVi29Z9pUw.roa (raw, json)
Hash identifier: B6eZDqlJRnUiv2b9br1FMLz0FtxOALHMIJdXSOP8HTM=
Subject key identifier: D1:B7:43:A4:71:63:71:CD:A1:48:FA:41:1D:F5:62:DB:D6:7D:A5:4C
Certificate issuer: /CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Certificate serial: 01872BC56483E26F1BB6D122634E836D9C9A
Authority key identifier: 7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/0bdDpHFjcc2hSPpBHfVi29Z9pUw.roa
Signing time: Wed 29 Mar 2023 05:09:29 +0000
ROA not before: Wed 29 Mar 2023 05:09:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208197
IP address blocks: 194.9.63.0/24 maxlen: 24
2a12:4640::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2b:c5:64:83:e2:6f:1b:b6:d1:22:63:4e:83:6d:9c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e2e2918432849eb71e95dc40d1079ea865f6109
Validity
Not Before: Mar 29 05:09:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1b743a4716371cda148fa411df562dbd67da54c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9a:72:7f:09:5c:ad:42:17:00:f9:56:4b:f2:
1c:38:ab:23:cc:f8:0f:40:c5:67:08:4c:34:02:b7:
70:a2:f7:3f:1f:dd:d9:37:7a:ee:7b:8f:fc:04:d1:
f7:d3:f0:4d:5e:70:22:16:8d:2c:67:2b:3a:7c:b2:
b0:50:88:d1:99:0a:84:e1:2a:ed:3b:ac:fe:88:82:
95:9a:0d:3d:c7:82:f7:53:f8:9a:58:cf:7b:c2:db:
a3:74:b2:a9:cb:85:3c:17:34:65:ea:13:ff:91:db:
16:e2:28:2f:23:43:6c:67:a0:a4:c4:64:34:34:aa:
6c:00:22:a4:18:29:7a:a4:a3:5c:e4:e7:2c:aa:a7:
cd:91:d0:16:ac:44:63:19:5a:78:fc:eb:f1:86:0f:
94:a5:73:0c:2a:36:ae:29:e9:84:e4:87:80:e1:d6:
20:0a:e1:38:29:1a:f7:c7:39:58:1a:83:a8:20:bc:
fb:07:57:73:b5:4f:fd:97:8f:e1:2d:e4:2c:df:41:
f1:d3:ed:e2:10:07:42:5d:69:fe:0a:a5:18:2a:f7:
5f:3e:99:71:25:fc:3a:c4:76:67:88:94:4b:8e:52:
58:4a:95:7e:73:2e:b7:82:12:d0:eb:6b:11:6d:e1:
52:6e:c1:07:23:99:a8:8a:e4:9e:36:98:6f:92:49:
50:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B7:43:A4:71:63:71:CD:A1:48:FA:41:1D:F5:62:DB:D6:7D:A5:4C
X509v3 Authority Key Identifier:
keyid:7E:2E:29:18:43:28:49:EB:71:E9:5D:C4:0D:10:79:EA:86:5F:61:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fi4pGEMoSetx6V3EDRB56oZfYQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/0bdDpHFjcc2hSPpBHfVi29Z9pUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d85f41-7701-44c2-bf2e-c5619859450c/1/fi4pGEMoSetx6V3EDRB56oZfYQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.63.0/24
IPv6:
2a12:4640::/32
Signature Algorithm: sha256WithRSAEncryption
75:25:08:e4:c7:ef:7b:c0:a3:61:87:ac:08:e6:4f:c0:c2:5d:
8b:77:64:9a:76:db:88:2f:1c:55:5c:15:ce:8e:c0:04:d7:3c:
3f:eb:4a:21:d7:9f:93:25:58:69:7c:ad:21:3f:f7:c2:6e:5d:
94:a4:16:1f:3d:b1:ea:13:15:b8:6d:6b:47:ef:18:c5:ce:83:
fe:10:87:32:e2:ae:dc:31:dd:ea:04:ea:fd:8f:b6:3b:3c:dc:
ac:0b:5e:73:5f:40:89:f5:a7:ff:d6:ab:44:7e:4f:95:f1:ea:
49:3a:3e:f1:a5:19:7e:4e:37:d7:5e:76:b1:43:96:af:65:cd:
86:b4:3f:89:55:f5:4f:ba:28:6a:05:ea:da:cd:a9:e8:ff:fa:
04:6a:0a:2e:75:33:26:fa:32:98:73:fa:78:23:1c:95:c3:a6:
14:ad:7b:4f:11:e0:56:36:ce:5b:3f:23:7b:8f:c8:02:46:8d:
36:e0:31:0e:98:c6:da:2a:2e:e6:e5:32:4f:dc:dc:64:9a:3e:
bb:3a:9b:92:be:ae:f3:54:de:27:cc:e5:67:cd:8d:50:db:10:
27:4b:7c:26:8b:a8:5a:e8:7b:97:a6:eb:b0:21:33:29:ba:d0:
15:18:b5:c1:eb:37:50:ec:28:e8:7b:67:8d:c2:ee:b2:ff:9b:
76:ce:a9:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:45 2024 by rpki-client on console-fra.rpki-client.org