Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/DRjLM2ARVUruCWPrLm7jp7hvsIk.roa
File: DRjLM2ARVUruCWPrLm7jp7hvsIk.roa (raw, json)
Hash identifier: 9coDdTbBapQgW1vVpRbEcV2lTYG9qUBJ2FsYZ81TG/I=
Subject key identifier: 0D:18:CB:33:60:11:55:4A:EE:09:63:EB:2E:6E:E3:A7:B8:6F:B0:89
Certificate issuer: /CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Certificate serial: 018572A80FC1043CA04FA182DA76C2ECE011
Authority key identifier: A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/DRjLM2ARVUruCWPrLm7jp7hvsIk.roa
Signing time: Mon 02 Jan 2023 13:24:54 +0000
ROA not before: Mon 02 Jan 2023 13:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8874
IP address blocks: 194.120.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a8:0f:c1:04:3c:a0:4f:a1:82:da:76:c2:ec:e0:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1c1be0981a4e7576c562f6f09e65c17c180e3ca
Validity
Not Before: Jan 2 13:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d18cb336011554aee0963eb2e6ee3a7b86fb089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f4:00:3d:7e:01:ab:1e:c8:2b:5a:9a:d9:91:
a3:09:92:88:12:fb:7f:cd:5a:6f:8a:8b:61:d0:9f:
a4:bf:36:c3:ad:41:a8:3d:d0:a7:f6:76:e0:3c:47:
ba:a0:39:a0:54:a9:4f:85:7b:13:b3:4a:0c:c0:f2:
30:43:5b:ac:6d:9d:80:7a:22:e5:a2:40:07:52:17:
eb:a0:06:44:23:97:1b:c9:aa:7a:eb:34:05:4a:15:
84:9d:ab:41:12:5d:bd:2b:be:c9:58:63:4a:9d:72:
a1:f4:8c:55:fc:0f:11:67:62:39:1f:89:49:ef:0a:
34:fc:a5:86:c7:1b:d2:eb:98:0b:5d:00:25:d5:d6:
a1:79:64:4a:68:95:31:85:a3:c8:60:97:92:0d:77:
4b:db:75:e9:dd:00:d4:08:e9:ac:d3:db:32:69:c1:
67:2c:8a:d1:0c:43:30:a3:b2:f1:c5:a6:61:9c:e0:
1c:1f:b5:87:66:8e:db:42:cf:b4:9a:d7:a5:85:4a:
a0:29:cb:0b:ba:5a:f7:4c:09:57:2d:27:57:96:b1:
11:c9:a6:e9:51:ca:1d:f4:9a:9c:36:c6:c6:4d:64:
22:75:bb:e3:14:1c:ad:12:02:8c:10:29:39:86:a1:
e8:4a:0f:37:ea:8e:ae:93:b8:67:c0:8c:11:54:74:
27:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:18:CB:33:60:11:55:4A:EE:09:63:EB:2E:6E:E3:A7:B8:6F:B0:89
X509v3 Authority Key Identifier:
keyid:A1:C1:BE:09:81:A4:E7:57:6C:56:2F:6F:09:E6:5C:17:C1:80:E3:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ocG-CYGk51dsVi9vCeZcF8GA48o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/DRjLM2ARVUruCWPrLm7jp7hvsIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/81e5a5-ac39-43c1-872f-98dfc2ee6e0c/1/ocG-CYGk51dsVi9vCeZcF8GA48o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.55.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:b9:30:b1:54:e2:ef:63:f9:46:4d:d8:1c:c2:4f:e0:52:17:
72:6e:57:09:28:d6:8f:cf:5b:e5:26:01:e5:5d:c0:18:ee:c9:
cd:94:f5:7a:29:27:81:f5:7c:f4:37:cc:55:09:a1:a8:09:36:
9d:ae:1e:6c:58:1d:76:e4:68:d7:83:e5:7f:c4:e1:3d:d4:19:
a2:43:da:df:6c:04:6c:4f:f8:f1:32:25:34:df:bb:74:ae:ab:
57:d9:7e:9e:fe:24:1e:67:53:6d:18:9f:42:ec:fb:b3:7a:f9:
75:55:12:43:3e:0d:10:09:4a:b0:83:57:37:51:e0:16:a6:da:
8d:5a:54:de:a2:b9:7f:63:bd:fb:81:04:ed:e1:91:89:bb:3c:
ab:b1:14:41:d0:e5:5e:90:64:71:f9:06:a9:fe:e2:d6:00:98:
74:48:72:9e:a6:35:75:3d:2d:80:9b:c0:80:10:47:e3:5e:8a:
0a:b9:97:be:df:e0:31:05:7f:c3:ca:cf:c2:18:b4:23:4f:78:
b6:2e:97:86:32:aa:c8:81:02:ac:b6:1b:61:f7:3a:17:bb:32:
44:ac:f7:3e:b5:dd:42:83:cc:ab:a6:c5:7b:f6:f8:a4:50:56:
84:0d:b6:c9:99:fe:78:39:91:a8:5f:68:c8:53:3d:39:cf:59:
e4:5a:83:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:29 2024 by rpki-client on console-ams.rpki-client.org