Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/AJW6odsw87D5h7r9Pk_ZYBl3VaQ.roa
File: AJW6odsw87D5h7r9Pk_ZYBl3VaQ.roa (raw, json)
Hash identifier: NFkXMFcE0fkNXgPx8YwC2YonvzJM27ZvkQtSteFwC+0=
Subject key identifier: 00:95:BA:A1:DB:30:F3:B0:F9:87:BA:FD:3E:4F:D9:60:19:77:55:A4
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 01867ED6E2360F72FF4046CB02422286963D
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/AJW6odsw87D5h7r9Pk_ZYBl3VaQ.roa
Signing time: Thu 23 Feb 2023 15:14:17 +0000
ROA not before: Thu 23 Feb 2023 15:14:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1921
IP address blocks: 194.0.24.0/24 maxlen: 24
194.0.25.0/24 maxlen: 24
194.0.26.0/24 maxlen: 24
193.46.132.0/24 maxlen: 24
193.46.128.0/24 maxlen: 24
193.46.129.0/24 maxlen: 24
193.46.130.0/24 maxlen: 24
193.46.131.0/24 maxlen: 24
2001:678:20::/48 maxlen: 48
2a02:850:ffe5::/48 maxlen: 48
2a02:850:ffe0::/48 maxlen: 48
2001:67c:1bc::/48 maxlen: 48
2001:678:24::/48 maxlen: 48
2a02:850:ffe4::/48 maxlen: 48
2a02:850:ffe2::/48 maxlen: 48
2a02:850:ffe3::/48 maxlen: 48
2a02:850:ffe6::/48 maxlen: 48
2a02:850:ffe1::/48 maxlen: 48
2a02:850:ffe7::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:d6:e2:36:0f:72:ff:40:46:cb:02:42:22:86:96:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Feb 23 15:14:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0095baa1db30f3b0f987bafd3e4fd960197755a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e9:e1:41:19:37:5d:ba:e6:72:7d:0b:60:bd:
92:5e:68:43:ad:bd:11:04:da:5d:ba:4e:a1:f3:a1:
97:f9:58:79:91:7d:3a:ba:bc:ab:33:16:70:d4:f1:
83:c2:a0:44:89:47:01:fd:be:02:b2:e1:b8:09:5d:
94:7d:6e:bb:20:67:ea:e8:cb:e8:2c:f1:e5:a2:ae:
51:c7:dc:19:b6:0f:89:be:29:aa:a3:19:04:2d:73:
04:c0:04:de:40:3a:e3:4a:ac:22:a8:ac:26:a9:0c:
03:a9:70:14:4a:5a:2c:0f:81:26:df:3b:3b:dd:7e:
ad:1e:b6:f1:dc:e7:2a:de:13:aa:56:cc:6c:65:7a:
ac:d9:67:cb:61:ee:09:12:4a:c6:1c:cf:1d:c4:78:
a8:ca:67:95:96:05:f6:b9:e5:57:4e:55:f0:82:86:
b7:a2:5e:94:a3:71:43:48:49:ba:93:10:da:73:53:
81:17:96:a8:fa:13:7c:2d:e4:e2:27:80:87:82:0d:
64:af:8a:c5:ac:45:2f:38:71:7d:94:13:ec:d7:88:
04:d8:4c:c6:b0:0e:79:34:ea:9b:21:a7:90:28:72:
be:5e:91:05:0c:d4:79:a7:7e:4f:5a:77:4b:ab:15:
7c:8f:b3:3e:59:95:5b:ea:11:4f:f8:0e:ec:bd:28:
82:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:95:BA:A1:DB:30:F3:B0:F9:87:BA:FD:3E:4F:D9:60:19:77:55:A4
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/AJW6odsw87D5h7r9Pk_ZYBl3VaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.128.0-193.46.132.255
194.0.24.0-194.0.26.255
IPv6:
2001:678:20::/48
2001:678:24::/48
2001:67c:1bc::/48
2a02:850:ffe0::/45
Signature Algorithm: sha256WithRSAEncryption
5f:e3:0f:39:2f:dd:04:c9:6a:24:4c:77:6d:a6:50:a4:45:ce:
e2:df:37:31:3b:39:db:04:d3:5a:4e:3f:96:0d:3d:79:59:08:
4b:49:ea:c9:0a:3d:d2:a8:59:fc:d7:76:a7:04:38:e4:72:9f:
86:c4:07:1c:31:ad:7d:c1:72:de:37:4b:15:28:97:26:47:1b:
3f:00:f3:6e:1f:00:a2:bb:4c:97:0d:cf:b1:90:2a:6a:17:da:
0b:fa:2f:af:8b:da:16:37:b3:cf:c1:12:c3:45:80:48:cb:c1:
ab:c5:aa:74:5e:d3:40:0d:e1:6a:be:df:2f:a2:7c:7a:7c:a9:
80:3c:8a:ef:87:38:c5:71:4c:30:ba:e8:2a:35:3a:20:0d:41:
9c:db:48:2b:7a:ac:0b:20:0c:e3:90:bb:ff:90:68:30:07:04:
73:be:ce:e1:73:b9:e3:3c:8f:b7:34:ce:b4:3a:8a:cc:26:a4:
e3:58:ac:85:73:49:ec:7d:58:99:61:9e:58:f8:24:a1:bb:63:
d5:80:64:89:25:45:c8:b8:83:34:4b:fa:04:bb:e1:42:fc:d9:
6a:9a:d0:78:23:15:9d:6f:49:f9:b6:7e:3c:92:1c:83:b9:b3:
6f:e0:5b:29:01:75:b7:78:5c:7d:35:42:58:b0:23:ba:10:71:
38:0d:62:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org