Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/92cHI6QTd1Lu2r2OdHbPv0-xkOw.roa
File: 92cHI6QTd1Lu2r2OdHbPv0-xkOw.roa (raw, json)
Hash identifier: d9nWj9Lj+U/iqgZ5dY9e0CZHlC5b35ECag5t0pLeqEA=
Subject key identifier: F7:67:07:23:A4:13:77:52:EE:DA:BD:8E:74:76:CF:BF:4F:B1:90:EC
Certificate issuer: /CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Certificate serial: 018570E7652316BD5215AEA1D0AC3F74961A
Authority key identifier: 10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/92cHI6QTd1Lu2r2OdHbPv0-xkOw.roa
Signing time: Mon 02 Jan 2023 05:14:50 +0000
ROA not before: Mon 02 Jan 2023 05:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49652
IP address blocks: 195.254.128.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:65:23:16:bd:52:15:ae:a1:d0:ac:3f:74:96:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=107a5af196b8a0ea960c28f6b3e75291c7e861cd
Validity
Not Before: Jan 2 05:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7670723a4137752eedabd8e7476cfbf4fb190ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c9:8e:f0:c4:a1:61:c5:fd:47:f3:07:dd:7b:
26:0a:c8:68:c4:6f:1d:fe:cc:a6:4c:cf:42:58:f4:
32:7c:59:e1:33:00:8b:63:8e:38:fe:e3:35:2f:77:
eb:c1:e7:f8:df:74:20:7a:e1:08:26:a0:98:88:bc:
bb:89:5e:65:5e:0e:8a:ca:f2:01:14:fd:62:72:6f:
b2:4c:9d:de:87:da:9d:f3:c1:16:db:26:1e:0b:bf:
69:cb:ec:d9:23:c1:c6:a6:8a:be:4f:46:0a:ef:57:
4a:a4:83:24:f0:7d:a9:c7:a8:8b:f7:8d:23:ee:e0:
0b:e8:13:12:74:45:a6:23:0f:fd:c6:29:a4:02:34:
66:6c:4b:62:e1:07:24:8b:60:a2:48:e4:56:48:d1:
c6:cf:af:cb:35:95:8d:41:b7:49:f7:e4:94:5d:14:
d4:69:59:1c:b6:df:f1:77:c1:6d:08:dd:33:09:d7:
94:6f:bc:d0:24:e2:6c:d0:25:9e:b7:36:8b:6e:f2:
51:b7:3e:0b:f2:98:90:81:62:fc:48:43:d2:5d:7f:
e1:d8:b8:a8:9c:b1:ee:0d:07:97:fc:82:d4:0b:bd:
e6:25:b8:72:66:c5:a3:7a:52:dc:6f:76:96:0c:e7:
d1:6a:68:f8:b2:95:7d:25:6e:dd:41:87:a7:3a:61:
e5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:67:07:23:A4:13:77:52:EE:DA:BD:8E:74:76:CF:BF:4F:B1:90:EC
X509v3 Authority Key Identifier:
keyid:10:7A:5A:F1:96:B8:A0:EA:96:0C:28:F6:B3:E7:52:91:C7:E8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHpa8Za4oOqWDCj2s-dSkcfoYc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/92cHI6QTd1Lu2r2OdHbPv0-xkOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bb23e1-46ca-464a-b3f2-f929e2551627/1/EHpa8Za4oOqWDCj2s-dSkcfoYc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.128.0/23
Signature Algorithm: sha256WithRSAEncryption
08:1d:82:df:50:ea:07:46:5a:ec:eb:83:50:b6:5d:ea:7d:9f:
fc:ac:2c:82:11:f0:26:13:2e:74:54:46:49:6c:c6:06:10:2f:
b1:f6:51:cf:e2:0b:18:13:4d:c0:3a:c0:20:6d:90:bc:dc:a4:
81:3d:ab:96:96:04:ca:ca:55:d6:ee:9e:1b:9c:9a:6c:fa:a2:
07:63:54:2e:75:93:cc:44:c9:63:be:26:1a:fe:60:fb:49:41:
41:3e:18:2a:e2:36:04:56:18:0a:76:9f:67:88:42:92:63:43:
ff:4b:c0:3e:62:40:a8:0e:00:2a:50:af:59:b8:f9:67:de:9c:
b9:76:5c:16:89:e4:de:a3:c4:97:a4:1a:ba:be:8e:ad:4d:bb:
ca:6d:f2:f0:29:a0:e6:e0:92:43:d2:f0:25:20:aa:62:19:f3:
f9:94:56:71:a7:fa:da:7f:16:d8:46:6c:ba:e2:89:81:77:7b:
d6:64:32:91:55:75:a5:72:1c:08:ce:f1:e7:9a:2e:ba:3b:2a:
41:e9:aa:56:5f:44:ab:10:2b:db:9c:dc:8f:71:d7:00:e4:f9:
fb:1e:83:f7:9d:0c:cc:01:1e:26:e1:c2:86:b5:e3:2b:03:a1:
5e:3b:71:0b:0c:e3:32:77:7c:26:25:51:5c:9c:c8:af:68:84:
76:a0:f7:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:01 2024 by rpki-client on console-ams.rpki-client.org