Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/DUOEDCOPax1aG_Oc4i8TV0GiSLM.roa
File: DUOEDCOPax1aG_Oc4i8TV0GiSLM.roa (raw, json)
Hash identifier: KwaIBAbQReygFPcdsLz17rRmjOsSLyrpUaGu4LITNVs=
Subject key identifier: 0D:43:84:0C:23:8F:6B:1D:5A:1B:F3:9C:E2:2F:13:57:41:A2:48:B3
Certificate issuer: /CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Certificate serial: 01859336D373B3C5968D31D6ED06C8C87701
Authority key identifier: 28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/DUOEDCOPax1aG_Oc4i8TV0GiSLM.roa
Signing time: Sun 08 Jan 2023 21:08:41 +0000
ROA not before: Sun 08 Jan 2023 21:08:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 194.147.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Feb 2023 07:57:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:93:36:d3:73:b3:c5:96:8d:31:d6:ed:06:c8:c8:77:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Validity
Not Before: Jan 8 21:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d43840c238f6b1d5a1bf39ce22f135741a248b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f4:5c:59:3c:87:80:25:64:a9:ba:bc:7d:0e:
eb:e6:25:c4:a0:aa:fc:b4:65:03:c7:17:8d:ce:64:
48:ea:cf:bc:fb:ec:7c:cd:9a:1c:41:6e:14:8f:a6:
8c:8d:f1:6d:17:d7:76:6c:37:b7:59:3f:98:0b:f7:
dd:37:b8:53:77:37:ff:ec:4a:14:5f:03:7d:1a:b2:
cc:c1:83:a7:3e:53:22:ef:ce:a1:98:c7:81:f2:1b:
b2:99:e9:86:ff:8b:72:52:4d:9a:af:aa:cf:58:aa:
a1:18:85:ed:8d:0d:da:ec:d7:1b:04:63:0a:f3:84:
67:18:1e:4e:20:d3:25:f9:20:e1:8f:7b:3c:c9:b0:
ce:66:86:64:73:32:0f:41:c8:08:1a:82:e4:94:9a:
c2:6c:73:89:02:46:74:76:8f:32:98:85:f0:a8:40:
1b:38:c2:20:b4:6e:a8:8e:64:a4:ad:38:45:b4:45:
8a:6b:7b:a9:ac:b9:17:4e:ec:58:f1:02:82:51:d5:
2c:a4:cc:19:12:3e:d9:6e:a9:33:79:39:0e:4f:fa:
ff:64:f8:aa:d5:b2:22:c3:7d:cb:20:fb:86:ec:61:
15:3a:3e:dc:7d:e9:0f:4b:9f:1b:90:31:12:fe:94:
7f:40:b5:f9:c6:56:ce:ee:ea:8c:88:22:84:c4:7d:
86:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:43:84:0C:23:8F:6B:1D:5A:1B:F3:9C:E2:2F:13:57:41:A2:48:B3
X509v3 Authority Key Identifier:
keyid:28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/DUOEDCOPax1aG_Oc4i8TV0GiSLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/KP1m5DoQRjOye6xTm5i9-Ov6ya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.216.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:6e:76:52:47:bd:ea:92:40:52:11:bd:7a:29:b8:57:a9:e3:
b3:d8:da:ed:11:c4:ef:a5:1e:02:96:91:94:e6:26:6b:d8:96:
de:7c:49:ca:53:59:28:76:cf:3b:a6:95:4c:17:37:48:07:c4:
4d:f9:0e:a1:37:05:32:b8:e1:8f:97:21:05:20:18:6a:e5:37:
30:30:7a:fa:4c:c9:b7:33:a5:65:bb:3a:9f:1b:28:dc:ea:9a:
52:fe:5d:9d:55:9e:91:65:3c:4c:64:35:3c:17:c2:56:43:bd:
e1:44:a7:b4:2f:57:b9:83:cc:aa:2a:25:e8:66:df:5f:0d:d1:
aa:cc:19:53:14:e0:69:74:14:8f:3c:e2:75:c0:af:86:7c:ed:
bb:4e:ae:ac:ed:e3:1d:fb:dd:31:b3:08:6f:b1:bd:1f:1c:16:
bd:d4:e0:2d:8b:9c:05:32:5d:73:29:58:3d:91:16:a6:ca:c2:
e1:fd:3b:fd:b1:16:01:d0:a8:4c:ca:46:00:3a:4b:5b:ae:36:
a6:99:23:5d:31:19:b4:81:fb:6c:1a:eb:b2:e0:bb:41:c1:a0:
d8:be:68:dd:38:90:f7:07:69:15:6d:c7:9a:ab:5d:ed:44:37:
91:c8:14:4b:30:87:67:aa:db:9a:70:8a:de:73:82:a5:4c:65:
a9:f3:e9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:02 2024 by rpki-client on console-ams.rpki-client.org