Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/JsWezveXqJaM8yOgF5qgCJnxmVw.roa
File: JsWezveXqJaM8yOgF5qgCJnxmVw.roa (raw, json)
Hash identifier: Wq6loBnVddULCxa9z5FfnYq2dsR7/rKrjT13UVnpwhU=
Subject key identifier: 26:C5:9E:CE:F7:97:A8:96:8C:F3:23:A0:17:9A:A0:08:99:F1:99:5C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FD7FD9B12A95827449F6B1FCEAF8A
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/JsWezveXqJaM8yOgF5qgCJnxmVw.roa
Signing time: Mon 02 Jan 2023 17:38:04 +0000
ROA not before: Mon 02 Jan 2023 17:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9312
IP address blocks: 194.50.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:d7:fd:9b:12:a9:58:27:44:9f:6b:1f:ce:af:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=26c59ecef797a8968cf323a0179aa00899f1995c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6f:5d:31:89:4e:19:9e:14:c2:60:1c:ec:b2:
f5:e6:06:81:65:44:ce:bb:84:14:72:ba:17:34:bb:
ab:96:87:b1:5a:ad:8f:ca:6a:54:d1:19:9c:df:03:
3c:01:b9:f1:ea:6a:8d:04:47:b8:e9:ee:29:4a:b0:
b6:ca:a3:d2:4c:b8:f9:34:25:be:a1:04:ec:41:b4:
8a:c3:01:bf:2b:bc:f4:77:78:eb:7d:1f:f9:43:a7:
33:a7:a0:2a:c3:4f:18:87:80:f2:f6:2c:60:e4:39:
55:a6:bf:58:5e:0c:75:b3:29:8e:52:2d:38:4a:3d:
c7:e9:c6:b0:58:68:2f:db:28:18:8f:bd:35:2c:cf:
8f:93:d3:08:68:bb:08:5d:b7:96:33:54:fd:b2:52:
3f:a8:cc:58:a4:5c:31:6d:bd:e0:dd:f9:ac:47:44:
fb:4e:e9:6f:16:61:3b:1e:12:68:26:4c:88:f9:20:
44:63:e5:b8:19:3d:31:08:80:4f:1d:5c:fa:3e:b1:
7e:86:95:a7:d9:8d:cc:4f:e6:dd:c3:d8:18:e8:fa:
44:af:8e:59:87:fb:3f:60:06:10:39:89:de:e1:80:
6b:dd:44:37:3d:8f:cb:ec:cf:d4:9d:15:c3:18:1d:
bf:3c:2c:09:6c:f1:8b:84:82:56:46:bf:25:81:38:
ed:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:C5:9E:CE:F7:97:A8:96:8C:F3:23:A0:17:9A:A0:08:99:F1:99:5C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/JsWezveXqJaM8yOgF5qgCJnxmVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.18.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:86:dd:12:ff:d7:3d:56:2c:24:39:78:7e:21:7c:85:25:f3:
12:3e:b3:3e:3a:2a:5e:fe:1e:55:3a:d0:80:78:8c:6a:19:a9:
b9:0c:8e:f7:f1:1f:ff:05:53:14:d4:87:da:38:4a:6e:b8:1d:
c0:5a:23:10:54:be:fc:18:f9:22:8b:73:68:8e:67:29:41:e5:
1d:b1:d6:fc:ee:db:41:9f:93:dd:4e:de:c3:81:69:e1:48:5d:
57:77:5a:d6:6f:4d:3f:3e:d0:cb:36:3e:da:bf:50:a9:da:c5:
61:bf:a6:31:b9:5b:db:13:0d:2a:00:2a:01:a9:9c:80:08:17:
91:54:13:7e:76:43:f0:b4:2d:30:ab:0e:0e:50:e6:88:a4:17:
5e:00:d7:28:c5:e7:96:64:72:57:ce:a1:e6:8d:e7:06:3d:92:
46:f3:49:de:11:95:a4:a0:d9:04:5e:a1:c5:a2:fc:0c:df:f2:
3d:ca:14:01:44:4b:dc:ce:bb:d7:29:9b:72:4b:7e:50:b8:21:
cb:59:25:a5:ac:a5:6e:11:ab:87:0a:98:7c:94:4e:65:30:19:
52:d3:30:56:a9:46:d2:28:ed:5c:4a:0b:45:7e:40:a5:a4:ce:
d7:ce:c8:7a:37:c8:01:ef:8f:01:b5:dc:1b:0b:35:7e:21:4c:
20:dc:f0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:20 2024 by rpki-client on console-fra.rpki-client.org