Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/sKAHcrTuZf9k0BbpaQw17zQev3I.roa
File: sKAHcrTuZf9k0BbpaQw17zQev3I.roa (raw, json)
Hash identifier: 0aCeNbcftMdWxlf/c4AXFcTPjWLR2wB33MvdJbJ+99o=
Subject key identifier: B0:A0:07:72:B4:EE:65:FF:64:D0:16:E9:69:0C:35:EF:34:1E:BF:72
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01857039A881AAF76A4F9CD4A7A4890CC590
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/sKAHcrTuZf9k0BbpaQw17zQev3I.roa
Signing time: Mon 02 Jan 2023 02:05:04 +0000
ROA not before: Mon 02 Jan 2023 02:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140947
IP address blocks: 194.163.94.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a8:81:aa:f7:6a:4f:9c:d4:a7:a4:89:0c:c5:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 02:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0a00772b4ee65ff64d016e9690c35ef341ebf72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a9:54:b8:6c:0e:e3:52:d5:06:cf:60:6b:d7:
a6:9b:b3:8a:f2:e0:03:fc:36:a4:38:31:c7:8f:92:
a7:0f:08:48:91:4e:ff:b4:70:dc:2e:e0:55:c7:dd:
7a:54:29:36:e2:ec:67:7b:c1:ba:19:0d:88:bc:d1:
9d:64:eb:76:fe:04:6c:fd:24:6a:23:ee:8f:d6:24:
23:ac:c2:a6:01:e1:af:a4:eb:2a:a5:cc:0b:97:ee:
b6:4f:26:b0:0c:93:db:18:2a:d9:8a:4f:41:bf:89:
d4:69:75:91:ff:b9:0e:1a:08:43:20:59:64:86:17:
72:50:d1:b9:f3:a1:80:fb:2e:cd:31:ea:f3:a3:b5:
60:8a:df:6f:00:3d:61:db:a9:74:59:85:8b:5a:76:
d7:8b:46:4a:f3:22:8a:42:2e:d4:0e:a5:ce:d0:f2:
44:e1:f1:0b:c1:9b:89:2c:d4:03:fa:77:7d:28:67:
67:7f:f5:9d:20:3d:dd:3a:c3:92:49:f5:4e:00:ec:
0a:b5:16:50:ae:34:d0:a9:d2:3c:24:92:fb:0b:b3:
5f:93:09:e9:f2:1b:ac:72:0d:e9:b0:44:c4:a2:f5:
6b:69:37:7e:51:99:c1:5e:18:ed:cb:0f:a4:b2:e4:
a1:0c:42:1a:a8:d0:f1:e8:d0:12:71:6e:ce:e7:96:
e7:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A0:07:72:B4:EE:65:FF:64:D0:16:E9:69:0C:35:EF:34:1E:BF:72
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/sKAHcrTuZf9k0BbpaQw17zQev3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.94.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:3e:d2:6b:c5:1b:48:d3:09:18:3a:80:35:f3:5d:1b:e0:d7:
f2:17:0f:38:5a:7b:ce:0a:79:74:13:62:75:4c:40:ac:9c:64:
45:60:5a:da:55:cd:c6:19:18:a5:e4:7d:74:14:6a:97:73:f9:
b0:7b:fc:f7:d4:8a:fe:7b:b1:5b:b9:26:e8:e7:18:d2:54:b3:
9d:31:97:72:51:5f:6d:53:a6:ef:00:eb:7e:c4:de:da:7a:9e:
1e:07:47:76:f7:c4:b2:a8:6e:c3:c3:59:17:13:48:56:ad:d7:
b4:6e:16:e8:5a:3a:7a:f3:13:04:41:6c:58:ff:2f:eb:ae:f4:
72:ae:1b:f6:16:55:f0:ce:de:5f:04:89:f3:b1:a4:8d:9a:0b:
04:c6:b6:23:8e:bb:6c:10:70:14:66:2d:50:dd:b6:f8:bf:c1:
1b:c0:25:83:33:9f:bb:f7:f6:ab:5b:f5:8d:6d:9d:64:1a:56:
53:b2:e9:3d:73:e4:37:65:6a:34:c5:39:86:62:0b:16:37:54:
ac:22:2c:5f:e9:4f:5f:c3:46:4d:3c:78:61:7e:c7:e3:3a:4e:
f1:60:96:d6:f7:6a:f6:53:1a:17:1b:9d:aa:69:c3:5b:f8:d5:
a7:42:21:f2:e1:b2:a5:56:3b:6c:17:0a:65:5f:3e:e7:b1:e9:
d7:b3:5f:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:12 2024 by rpki-client on console-fra.rpki-client.org