Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/kU9gorsmlwPlo3SQyy0hqygyVIo.roa
File: kU9gorsmlwPlo3SQyy0hqygyVIo.roa (raw, json)
Hash identifier: adTws7AEjnCddswFfsxgZFkW4W+Euc1iXRwcEqLqyKc=
Subject key identifier: 91:4F:60:A2:BB:26:97:03:E5:A3:74:90:CB:2D:21:AB:28:32:54:8A
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01869D9A6F466BFE6C5141532A5E1AFD2816
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/kU9gorsmlwPlo3SQyy0hqygyVIo.roa
Signing time: Wed 01 Mar 2023 14:36:29 +0000
ROA not before: Wed 01 Mar 2023 14:36:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.233.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:9a:6f:46:6b:fe:6c:51:41:53:2a:5e:1a:fd:28:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Mar 1 14:36:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=914f60a2bb269703e5a37490cb2d21ab2832548a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:11:49:61:85:cd:40:af:88:dc:d5:0d:8c:b5:
ae:00:2b:ff:d7:b3:a2:19:ca:b2:22:29:fc:75:46:
82:4e:46:2f:94:4f:31:51:18:ad:9d:b3:21:c8:32:
97:09:88:2f:1e:9a:1d:f6:43:d1:3d:3b:dc:bd:e3:
0f:ab:7a:72:21:6e:86:93:3c:ef:61:11:ac:05:2d:
9b:35:1e:8c:49:38:43:35:3a:cd:dc:9c:5d:7b:f4:
1b:44:1d:2c:1a:34:07:82:71:2c:66:5b:78:ce:0d:
0f:fa:5d:ec:39:cf:ea:e2:af:9d:fa:26:b1:88:6a:
93:33:40:20:c7:fd:5c:2d:47:d9:ad:77:53:13:c4:
43:c8:38:7c:2c:bd:c1:1c:5e:54:57:3b:43:c1:83:
e1:5a:a1:bb:a0:f9:77:82:6b:ac:d7:ba:54:59:e8:
05:f3:14:2b:b2:3c:9d:71:e6:4d:d0:f5:7d:b6:2d:
dc:f8:36:42:49:6c:5b:b8:6f:22:74:58:7b:f1:1e:
57:f5:6d:b7:c6:2c:b4:c5:56:13:6a:15:47:6e:9b:
08:d6:a6:97:cd:1d:86:07:16:0c:33:56:3d:be:c9:
81:ef:15:df:6a:6e:00:36:00:86:59:b7:a5:a2:ca:
9c:bb:e4:2d:ad:6c:1d:e1:f7:23:78:a5:bd:ff:f1:
2e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4F:60:A2:BB:26:97:03:E5:A3:74:90:CB:2D:21:AB:28:32:54:8A
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/kU9gorsmlwPlo3SQyy0hqygyVIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
79:ca:a5:03:89:84:f9:e2:74:b5:6a:35:fa:4b:68:2b:b4:37:
39:92:08:4c:92:15:89:48:bf:e7:fa:7b:da:7d:d4:0c:63:b8:
32:7b:cb:4a:ce:06:6d:68:ca:e6:d4:a5:48:4f:01:a0:1f:ce:
50:74:cb:f4:ea:00:93:51:d6:c1:8a:d6:df:37:3a:1f:d3:25:
73:69:f5:96:92:72:a7:2b:c0:80:5a:7b:dd:01:09:c0:90:23:
7d:7e:01:13:a3:fa:ad:51:30:6f:70:43:80:e5:9e:dc:08:47:
9d:b1:f6:fa:63:cc:fa:b2:ac:01:1d:0c:d1:6e:1a:ba:3e:ef:
4e:90:b6:6c:2f:ac:05:7a:62:d8:44:2c:66:b5:3a:12:0d:d1:
8b:89:5f:b4:1a:79:ea:31:ed:69:c7:92:e5:25:65:3f:df:b5:
4f:5a:42:37:a7:e9:e5:60:5e:91:0b:39:65:f2:84:33:0e:0c:
ad:97:8d:b7:24:92:1a:1e:11:a0:83:3e:96:25:fe:4d:a1:79:
e0:51:ca:bb:4b:1e:81:c0:d1:ac:a2:22:6b:a1:9f:a0:a3:2e:
8b:d8:6e:b7:2a:f1:e6:0e:58:2d:67:b6:74:24:6a:aa:86:dc:
02:d5:19:b4:e9:b5:64:ae:a0:77:5f:9a:6a:47:0a:b9:11:2e:
07:49:d1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org