Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/gI2DylV8WZjHKvIBqLpF4yJInos.roa
File: gI2DylV8WZjHKvIBqLpF4yJInos.roa (raw, json)
Hash identifier: h3eTKT0iUjGV0iOR5YyxmnMrBwWVtnlphHs6F/7jXwY=
Subject key identifier: 80:8D:83:CA:55:7C:59:98:C7:2A:F2:01:A8:BA:45:E3:22:48:9E:8B
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 018875F15C3D7F1EF33E69A9069BE1CE7F99
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/gI2DylV8WZjHKvIBqLpF4yJInos.roa
Signing time: Thu 01 Jun 2023 07:52:11 +0000
ROA not before: Thu 01 Jun 2023 07:52:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.233.151.0/24 maxlen: 24
194.233.148.0/24 maxlen: 24
194.233.149.0/24 maxlen: 24
194.163.92.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:f1:5c:3d:7f:1e:f3:3e:69:a9:06:9b:e1:ce:7f:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 1 07:52:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=808d83ca557c5998c72af201a8ba45e322489e8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:90:cb:f1:79:c7:95:fd:9c:a2:00:da:6d:2e:
c3:bd:6d:44:1f:70:1f:16:9d:73:14:ab:bc:ba:6c:
3f:72:28:78:b7:db:4c:ab:cb:88:44:9f:08:41:7a:
51:7e:33:81:35:8a:6b:3e:eb:a7:c6:62:34:51:94:
5d:90:99:21:5f:2a:04:a2:4d:36:ed:78:31:f5:f4:
24:c5:4b:df:14:00:8c:6d:df:c3:2c:0d:92:cc:74:
68:42:ad:f6:1a:1a:8e:b3:93:58:21:9c:cc:62:22:
1d:77:d0:1a:58:5b:3a:c2:c0:a0:7c:ca:11:4d:12:
43:ec:da:04:8b:58:b4:95:36:eb:74:d1:8f:f3:a8:
b7:c9:43:93:ba:35:61:1f:a9:b8:78:50:17:d9:02:
e7:57:d9:54:73:80:0f:f7:7f:53:17:82:b8:c7:17:
fa:ae:51:c9:cd:f4:15:45:8d:c6:a2:a5:a7:74:b7:
eb:52:fe:35:b1:3f:ea:82:7f:c5:fd:24:39:40:f1:
6f:8e:f6:96:0b:14:9b:f5:a1:4f:a3:af:5f:e4:37:
4b:36:60:10:d6:95:2c:08:2e:fc:9f:6f:d8:77:f4:
c1:99:8a:ee:6a:1d:46:73:1f:a1:85:64:9d:21:bc:
b4:19:a3:ae:6c:89:5a:58:0a:f0:c1:a3:7d:28:af:
9b:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8D:83:CA:55:7C:59:98:C7:2A:F2:01:A8:BA:45:E3:22:48:9E:8B
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/gI2DylV8WZjHKvIBqLpF4yJInos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.92.0/24
194.233.148.0/23
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:70:59:43:5a:8b:b4:9b:4a:2c:2e:18:2f:15:9b:d0:90:54:
9d:cd:a2:db:5c:ca:05:d9:61:88:8e:ab:d2:2f:8b:d4:ca:e2:
64:e1:7b:92:07:f5:4d:af:bd:ca:ee:f2:a8:5d:31:de:97:b7:
fb:3e:21:aa:7f:ec:b1:b8:c9:b7:91:de:93:31:f6:94:13:af:
cd:90:be:4e:60:e1:ef:9a:09:96:19:61:6c:b7:c7:a1:98:b7:
90:6c:4d:36:34:5d:81:46:ad:e1:4c:fa:77:7d:25:c2:1f:de:
b6:31:ed:78:9d:07:73:f5:a7:ba:8b:fd:bd:f9:d3:fe:b7:92:
3e:bb:2a:2d:fb:34:f0:3c:57:b3:35:be:bd:5b:1e:e1:71:8f:
f1:83:33:bb:22:af:16:26:7a:fb:84:8f:db:9f:c9:19:54:6a:
7c:1d:31:ad:2e:1c:41:ce:62:a0:a7:e9:6f:b1:6d:ab:af:c4:
8e:6b:42:45:c4:17:b3:3f:b2:d0:be:36:5d:71:75:52:5a:55:
94:1c:d3:5b:3d:2a:80:b7:9e:dc:3b:9d:cb:99:ab:e8:16:ad:
be:b3:63:5b:e9:90:db:ef:ee:3e:a3:83:63:f1:1c:77:c5:c7:
cf:90:a1:6a:f6:d7:ed:5f:f8:6c:51:36:ec:10:ad:8e:4e:3f:
d3:f9:45:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:42 2023 by rpki-client on console-fra.rpki-client.org