Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/EIoag6atkf_m6bknQ3gYFD73Cak.roa
File: EIoag6atkf_m6bknQ3gYFD73Cak.roa (raw, json)
Hash identifier: iAjllzM5ZGzGadSSd1cHHTud5QdD5hiAQ8rVAE/q1Tc=
Subject key identifier: 10:8A:1A:83:A6:AD:91:FF:E6:E9:B9:27:43:78:18:14:3E:F7:09:A9
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01866DE8C732DCF56D8B20507AC91C62F858
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/EIoag6atkf_m6bknQ3gYFD73Cak.roa
Signing time: Mon 20 Feb 2023 08:20:17 +0000
ROA not before: Mon 20 Feb 2023 08:20:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 194.50.200.0/24 maxlen: 24
91.242.100.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6d:e8:c7:32:dc:f5:6d:8b:20:50:7a:c9:1c:62:f8:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Feb 20 08:20:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=108a1a83a6ad91ffe6e9b927437818143ef709a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:b2:e3:d6:24:fe:56:d9:da:14:42:37:ff:
a6:b0:75:7c:8a:51:50:5d:2c:dd:ef:4b:a4:32:47:
97:81:7d:3a:a5:be:ab:47:8b:3d:ed:53:6a:ae:24:
4c:a8:45:a0:bc:16:f7:f5:85:4f:5e:bc:ae:09:df:
c5:34:33:80:84:0e:7a:70:ce:2c:0a:2a:e1:00:fe:
a1:c1:dd:9e:35:81:5f:a1:bb:81:d3:90:03:28:74:
13:81:56:fb:3a:94:99:3f:3e:7b:b0:85:ee:c8:ce:
d7:fd:95:53:6a:0d:ea:c5:ec:37:57:54:90:14:e9:
72:28:b7:e6:e3:5a:ba:3f:12:d5:01:59:ff:31:19:
03:b0:d8:9d:16:a4:67:0a:59:63:41:73:68:e2:13:
77:d1:17:e0:9e:41:81:1a:87:d8:e4:9b:8d:0c:b8:
0b:9e:3e:53:a8:74:44:3e:1c:94:16:71:85:87:a4:
87:a1:4e:16:20:33:65:62:16:dc:ba:f3:ce:90:60:
07:8f:92:fb:46:f0:a2:78:ab:f9:39:d1:fe:e9:b5:
ac:85:d3:cb:89:92:b9:cd:3a:17:be:67:da:5b:c6:
b9:41:31:0f:69:14:a5:27:36:df:dc:b0:01:0c:08:
73:4e:f3:82:a4:76:e3:ab:7a:4a:a1:9e:4d:1e:c9:
d0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:8A:1A:83:A6:AD:91:FF:E6:E9:B9:27:43:78:18:14:3E:F7:09:A9
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/EIoag6atkf_m6bknQ3gYFD73Cak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.100.0/24
194.50.200.0/24
Signature Algorithm: sha256WithRSAEncryption
55:66:2f:4a:e2:f9:a4:7f:1e:f9:15:1d:7f:d3:86:ce:6d:d9:
65:8b:ba:63:c5:ab:0e:65:3d:a8:ac:35:2e:62:5a:2e:37:e5:
6e:0a:4a:fb:8c:50:6f:9e:1d:f2:79:09:39:0d:eb:be:1e:82:
df:a7:22:02:4d:92:ec:2c:1a:7c:0e:28:85:bc:3a:52:89:43:
94:70:dc:59:ee:08:e6:1d:71:17:d8:72:55:09:59:c2:4b:71:
fe:7a:e7:d7:1b:d5:91:26:f9:27:83:56:d4:80:4f:75:06:f7:
61:b1:23:bc:fa:3f:d7:6b:10:56:bf:a9:d3:8d:4a:92:f7:4f:
df:78:85:0c:56:6f:11:bb:38:30:a2:f7:98:50:0a:17:ee:34:
af:bb:93:3e:6d:ff:56:09:33:46:0a:4f:75:b6:6f:a7:69:7f:
ba:b1:ef:88:47:c8:03:4c:4b:68:5e:1c:92:92:59:69:ae:09:
5e:fb:ee:d4:2c:3d:a7:52:fe:b7:ea:a9:81:94:81:28:23:ba:
76:5d:3b:92:51:ce:95:2e:2f:fe:16:82:47:7a:0f:87:8b:76:
e0:e8:43:5d:0e:db:d9:d7:62:6e:2d:85:48:8c:bd:5e:be:9c:
7b:68:35:27:5b:8f:67:c0:40:a0:e3:e1:78:8b:ad:b4:c5:d7:
5e:13:5d:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org