Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/cEETm0poieKhk0QzIPPqcKeUofA.roa
File: cEETm0poieKhk0QzIPPqcKeUofA.roa (raw, json)
Hash identifier: Dr5ov3wHysab0u98pV/OoX9gDPNu1rCCs1xZWUJb6Hk=
Subject key identifier: 70:41:13:9B:4A:68:89:E2:A1:93:44:33:20:F3:EA:70:A7:94:A1:F0
Certificate issuer: /CN=102282537eb00130b79651f408000edca56450ea
Certificate serial: 01856DC1BFF6C56AB12A820E98E18F79F57B
Authority key identifier: 10:22:82:53:7E:B0:01:30:B7:96:51:F4:08:00:0E:DC:A5:64:50:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECKCU36wATC3llH0CAAO3KVkUOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/cEETm0poieKhk0QzIPPqcKeUofA.roa
Signing time: Sun 01 Jan 2023 14:34:52 +0000
ROA not before: Sun 01 Jan 2023 14:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5617
IP address blocks: 194.127.136.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:bf:f6:c5:6a:b1:2a:82:0e:98:e1:8f:79:f5:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=102282537eb00130b79651f408000edca56450ea
Validity
Not Before: Jan 1 14:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7041139b4a6889e2a193443320f3ea70a794a1f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f7:61:85:a2:a0:25:4a:e1:2a:be:c0:ec:73:
3d:8d:1b:30:68:8b:65:bc:52:26:39:8e:d7:20:fe:
38:e6:57:0d:b0:47:b5:c6:ec:0d:83:34:0e:23:35:
52:38:57:c3:8a:c9:1f:74:d0:ad:b8:78:50:41:f2:
04:e6:85:b9:d6:4e:3f:e6:a8:cf:a7:ae:33:c6:89:
1f:ce:22:3f:3a:25:c7:f3:3b:3a:8e:8d:83:73:6f:
a7:76:c6:5f:de:a9:8a:58:cd:c7:c9:31:43:16:86:
af:f3:04:ff:01:66:99:35:4a:bd:41:15:2e:5c:da:
ad:c1:0a:07:37:2d:6c:b9:fa:2d:5a:4b:b8:af:9c:
61:a3:9a:46:9c:6f:d3:4f:56:be:65:78:9d:71:f7:
a4:e0:94:9c:8b:d4:ba:f0:99:e9:25:50:78:f8:74:
e6:83:13:17:b4:e9:f1:73:5e:f1:3d:60:a7:ea:8f:
ee:ad:1c:47:c0:3e:1d:39:c5:a2:cd:c6:6e:c4:98:
13:c1:60:45:cd:e5:02:92:b8:bc:31:c2:a3:03:91:
8a:e8:96:d5:47:14:db:3b:0a:91:c4:9f:42:ad:96:
76:dd:a2:4c:bb:1b:51:71:82:3e:9d:fd:19:9c:50:
d6:a5:14:8c:e4:2a:9e:94:37:13:03:38:75:1a:41:
9f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:41:13:9B:4A:68:89:E2:A1:93:44:33:20:F3:EA:70:A7:94:A1:F0
X509v3 Authority Key Identifier:
keyid:10:22:82:53:7E:B0:01:30:B7:96:51:F4:08:00:0E:DC:A5:64:50:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECKCU36wATC3llH0CAAO3KVkUOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/cEETm0poieKhk0QzIPPqcKeUofA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/ECKCU36wATC3llH0CAAO3KVkUOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.136.0/24
Signature Algorithm: sha256WithRSAEncryption
36:47:21:1d:ae:bc:3d:78:fe:93:23:0d:43:4e:aa:bb:62:bf:
9f:9d:83:c1:5b:59:2b:a8:b9:9a:5f:fa:55:e0:19:bc:fa:4e:
96:70:2d:e0:26:15:33:15:54:22:25:33:e7:01:07:5e:3a:29:
13:13:60:d2:e7:ae:2f:83:5a:8e:ee:d6:42:36:33:20:af:51:
ea:d0:c5:3f:ed:c4:67:d3:7c:ab:c8:87:f6:6c:e4:a0:46:41:
4f:06:bc:10:9f:17:58:38:ad:b1:52:d9:44:a5:d5:3f:25:83:
7f:4e:75:ee:00:8b:26:0f:71:9e:0b:96:04:b4:0a:02:b3:e2:
37:ed:4d:df:cf:1c:24:d5:21:c1:82:7e:d1:6f:b2:04:43:cd:
c5:f9:35:eb:e1:90:95:64:6a:65:6d:31:bf:2a:63:3a:f0:bc:
64:70:ce:3b:55:d4:e5:42:ef:50:83:50:ed:de:fe:f3:f5:a9:
42:b9:a5:e5:50:e2:3b:f1:1b:fd:c4:19:44:55:2c:74:92:b8:
b9:89:c5:81:10:8f:80:a0:99:96:c6:26:24:37:7e:6f:3d:7b:
89:cf:de:a1:f3:e9:3c:de:52:34:57:c9:f5:bc:aa:41:a3:12:
eb:22:cb:90:0a:95:3d:e1:c4:63:6d:34:af:66:f1:d8:8d:f3:
e1:05:bb:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:06 2024 by rpki-client on console-fra.rpki-client.org