Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/D0gSjuhYQJ5XEqyT7Vyb163DItg.roa
File: D0gSjuhYQJ5XEqyT7Vyb163DItg.roa (raw, json)
Hash identifier: UQXiH0XONPN8PeG707YDHgqwSgOSq0fC9qotJSsiA9k=
Subject key identifier: 0F:48:12:8E:E8:58:40:9E:57:12:AC:93:ED:5C:9B:D7:AD:C3:22:D8
Certificate issuer: /CN=19fb56adc9071d5e9fda2b669438b92bf863e58f
Certificate serial: 018571B0F8F0BB581B2E747ACE6B3704033E
Authority key identifier: 19:FB:56:AD:C9:07:1D:5E:9F:DA:2B:66:94:38:B9:2B:F8:63:E5:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GftWrckHHV6f2itmlDi5K_hj5Y8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/D0gSjuhYQJ5XEqyT7Vyb163DItg.roa
Signing time: Mon 02 Jan 2023 08:55:01 +0000
ROA not before: Mon 02 Jan 2023 08:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21083
IP address blocks: 194.8.57.0/24 maxlen: 24
2001:67c:14d::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:f8:f0:bb:58:1b:2e:74:7a:ce:6b:37:04:03:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19fb56adc9071d5e9fda2b669438b92bf863e58f
Validity
Not Before: Jan 2 08:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f48128ee858409e5712ac93ed5c9bd7adc322d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:61:1e:9e:40:9f:67:eb:d8:66:85:3a:c6:1b:
a0:3c:65:d0:04:e1:b0:14:19:98:6b:c1:10:e6:9b:
a5:b0:00:78:36:46:5a:c9:93:c8:2f:c1:cd:f5:3b:
f2:70:3d:ec:9e:2a:b5:f6:dd:1e:9f:b8:a2:f3:88:
7b:98:ad:20:95:1f:0c:92:c7:78:58:dd:46:9e:76:
68:26:23:21:01:bc:67:ef:78:dc:72:78:e1:7c:da:
c3:4f:70:21:19:b3:70:c5:8a:86:c2:67:eb:09:91:
b5:99:35:5f:f3:b6:c8:be:ac:40:ff:fa:ad:02:74:
e4:c2:d8:0c:16:3d:f5:d5:24:9a:99:60:ae:c3:df:
0d:7f:ad:0c:03:a0:3c:21:1d:28:8a:f7:43:22:c6:
86:81:d6:d6:e3:cd:7a:65:c8:8b:28:07:2f:9b:71:
b3:2f:95:6b:f2:ac:51:d2:2e:40:d5:7e:ae:44:43:
5a:3a:7e:ca:4f:75:68:60:48:9d:86:0b:61:71:7a:
e7:de:e1:31:dd:03:57:83:f3:22:ac:20:a8:ec:32:
37:f0:15:71:93:c5:b3:57:75:50:eb:fe:85:a1:fb:
a9:c4:bf:25:cc:ff:61:1c:d6:f3:b9:18:b5:92:70:
f0:c2:00:e1:e1:a0:38:6b:ea:c1:1c:90:f4:e8:f9:
9d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:48:12:8E:E8:58:40:9E:57:12:AC:93:ED:5C:9B:D7:AD:C3:22:D8
X509v3 Authority Key Identifier:
keyid:19:FB:56:AD:C9:07:1D:5E:9F:DA:2B:66:94:38:B9:2B:F8:63:E5:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GftWrckHHV6f2itmlDi5K_hj5Y8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/D0gSjuhYQJ5XEqyT7Vyb163DItg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/GftWrckHHV6f2itmlDi5K_hj5Y8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.57.0/24
IPv6:
2001:67c:14d::/48
Signature Algorithm: sha256WithRSAEncryption
96:5c:fc:36:86:35:4f:9b:87:bf:97:f2:20:33:60:ae:f7:1a:
25:6a:ff:56:59:3e:b5:86:73:e2:c7:2f:5a:61:78:12:59:60:
57:77:4f:32:4d:ca:d2:0e:28:1f:8b:8c:b9:eb:57:92:fc:1c:
7b:71:28:80:11:a5:24:0f:2e:19:cd:7f:d4:37:11:90:99:2d:
17:93:00:c3:d0:72:60:aa:7a:2a:d7:64:31:b1:76:c3:20:ac:
52:28:c2:5d:1e:da:40:e6:a3:16:f0:c1:cf:a1:67:b4:c9:07:
72:c7:92:70:ef:65:6f:0e:11:51:ef:fa:2d:83:20:e4:3e:65:
7d:39:02:0c:2d:87:f0:8b:44:88:5c:8d:bf:17:84:77:33:34:
88:bb:9f:67:fe:66:17:18:c5:0b:6f:53:ae:0b:68:0c:c7:c3:
82:98:e0:76:f9:c0:40:08:5a:92:28:a1:a8:55:96:02:a0:b8:
95:17:63:0f:ef:14:f8:cd:8c:49:52:11:54:e1:98:7b:ff:72:
ae:ab:ab:cd:81:26:b5:40:09:b6:81:d8:f5:19:96:be:ad:f6:
dd:25:1d:b1:01:ab:ed:4c:aa:c9:09:42:76:3a:31:46:a7:f1:
69:19:8f:6a:e6:7b:68:f7:a1:3c:99:5b:09:37:a4:c8:4d:24:
ed:09:f9:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:24 2024 by rpki-client on console-fra.rpki-client.org