Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/CHxSyodm44M_h5zeBEe9A8FM57M.roa
File: CHxSyodm44M_h5zeBEe9A8FM57M.roa (raw, json)
Hash identifier: iId29cOApdK4blq/40x2sH5rhdxEoTzpm69EiPz0Nyw=
Subject key identifier: 08:7C:52:CA:87:66:E3:83:3F:87:9C:DE:04:47:BD:03:C1:4C:E7:B3
Certificate issuer: /CN=2467603623143bd1bc7a8fc9d8e79d9559611860
Certificate serial: 01856E1D3E72A197258B1D701A86035679C9
Authority key identifier: 24:67:60:36:23:14:3B:D1:BC:7A:8F:C9:D8:E7:9D:95:59:61:18:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JGdgNiMUO9G8eo_J2OedlVlhGGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/CHxSyodm44M_h5zeBEe9A8FM57M.roa
Signing time: Sun 01 Jan 2023 16:14:48 +0000
ROA not before: Sun 01 Jan 2023 16:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28686
IP address blocks: 194.147.192.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:3e:72:a1:97:25:8b:1d:70:1a:86:03:56:79:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2467603623143bd1bc7a8fc9d8e79d9559611860
Validity
Not Before: Jan 1 16:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=087c52ca8766e3833f879cde0447bd03c14ce7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c0:8e:20:4c:84:3f:1a:97:33:d4:9b:b0:41:
ac:ac:6b:dc:6d:d8:04:cf:f1:ec:0d:ce:12:38:45:
76:ae:5f:3e:71:a8:e8:52:6b:aa:c4:5e:ce:da:4c:
be:99:96:94:37:92:b9:97:79:18:75:47:95:db:31:
67:93:54:1e:41:f8:82:fb:e4:89:14:9f:2e:18:bb:
e1:55:be:fa:1c:67:cd:c6:a6:f3:3c:1c:60:0b:55:
07:11:b7:36:6d:44:aa:af:87:b1:ad:d1:6b:66:ca:
ec:e1:6a:8f:90:e3:cb:c9:e4:91:ef:e5:1b:49:26:
2b:44:c9:41:cb:b7:1f:1a:e9:7a:ca:ec:90:00:9b:
7b:1a:f5:5f:f2:ec:7a:d0:62:d4:b9:fd:55:e8:9d:
2a:93:bd:69:15:29:cd:34:1a:b8:fc:7e:e9:3f:4e:
c5:18:72:0b:90:6a:41:52:9a:3b:d0:8e:11:c6:8a:
96:64:45:3a:76:96:0d:2f:32:2a:21:82:4c:3f:c4:
7a:da:95:a2:d4:f2:a8:3d:6a:ed:c1:6c:7f:9b:5e:
27:2c:0d:e8:15:16:24:4e:68:0e:48:1a:fe:ef:6b:
ae:18:85:97:8e:e4:20:dc:46:45:ab:f8:e0:b6:1f:
7d:39:38:5d:23:9f:4c:37:8f:57:0a:a6:24:65:0f:
e0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:7C:52:CA:87:66:E3:83:3F:87:9C:DE:04:47:BD:03:C1:4C:E7:B3
X509v3 Authority Key Identifier:
keyid:24:67:60:36:23:14:3B:D1:BC:7A:8F:C9:D8:E7:9D:95:59:61:18:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGdgNiMUO9G8eo_J2OedlVlhGGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/CHxSyodm44M_h5zeBEe9A8FM57M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/fde44b-f2c0-41e4-b141-fb4642d2d9a6/1/JGdgNiMUO9G8eo_J2OedlVlhGGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.192.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:2f:e4:2b:9a:b9:c5:db:cc:53:2b:31:7a:6f:fa:b7:05:4a:
0d:cc:4d:df:b8:ac:6d:4a:51:45:7e:e1:04:97:47:cf:0e:6f:
96:a5:7b:33:5d:12:c3:1f:f2:cd:66:d5:b7:e0:67:b8:32:c4:
3d:16:28:6f:b6:3a:df:3e:11:c7:f5:f2:a7:38:37:25:3f:fc:
b0:6c:53:2a:f2:7f:2f:a2:15:9e:66:4b:ec:27:71:4f:f7:d3:
b4:9c:8f:94:fb:e1:bc:a4:45:52:7a:f1:d3:26:4d:61:84:b7:
bc:95:7c:25:ab:22:85:87:ac:c2:c7:f1:74:fb:17:1a:52:ce:
dc:0f:b9:60:d1:b7:37:fe:5d:c2:a3:ee:c5:d2:12:dd:33:0e:
b4:fc:87:8e:b4:1f:ce:58:54:05:de:a1:40:64:7f:99:30:68:
f5:68:63:d2:1d:df:e8:7e:0c:42:3b:05:8d:0a:36:ab:b4:03:
7c:3c:6d:80:5b:11:0c:50:30:07:e4:cf:28:58:93:7e:98:6d:
7d:fe:21:8d:7d:8f:8d:4a:9e:c6:76:ec:a3:e6:db:5d:4f:df:
63:24:bc:5e:4e:0f:dd:e3:e4:d3:d1:77:24:75:bd:69:a8:c4:
ec:50:e7:c2:f4:94:b7:f5:2c:56:47:c9:9c:5e:11:c8:98:58:
02:27:be:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:17 2024 by rpki-client on console-fra.rpki-client.org