Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/etloJInXZhfvXxgOeTWBQ2iKMwg.roa
File: etloJInXZhfvXxgOeTWBQ2iKMwg.roa (raw, json)
Hash identifier: Suxqae2SZNaT2Ft8fq2k1F5GjasgtDY0asCUtw9CuCM=
Subject key identifier: 7A:D9:68:24:89:D7:66:17:EF:5F:18:0E:79:35:81:43:68:8A:33:08
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0185E49A46AE4044BF1DE028C75649522671
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/etloJInXZhfvXxgOeTWBQ2iKMwg.roa
Signing time: Tue 24 Jan 2023 16:26:33 +0000
ROA not before: Tue 24 Jan 2023 16:26:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 194.50.201.0/24 maxlen: 24
194.50.200.0/24 maxlen: 24
91.242.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Feb 2023 08:20:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:9a:46:ae:40:44:bf:1d:e0:28:c7:56:49:52:26:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 24 16:26:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ad9682489d76617ef5f180e79358143688a3308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:7f:76:a0:93:f8:62:c3:a6:c4:b6:0d:50:f8:
b9:e5:e8:27:f1:4a:da:b5:c8:fb:5a:39:40:f3:d1:
91:fb:d4:9c:8a:5b:70:21:95:74:29:d2:d7:bc:2b:
03:49:44:84:4c:88:ec:3c:e2:0b:9a:93:78:0b:73:
b0:a3:03:bb:6a:34:f3:18:49:20:d4:bc:89:a7:d1:
ca:8f:ea:4f:07:c1:55:d1:95:d0:6b:74:cb:da:e9:
fa:a7:ec:52:f6:ff:60:e8:5e:e1:ee:7c:07:c6:6b:
f9:a1:43:3d:90:ee:2b:c9:53:5c:4d:da:dc:73:40:
a0:77:19:72:40:0b:da:17:d3:fc:b5:5e:4d:6d:2c:
7b:f6:3f:16:ea:14:5f:7e:3f:c1:3a:c8:6f:de:e8:
ca:a9:95:0e:d5:84:df:d4:df:04:f3:78:5c:c5:16:
2c:7c:5a:12:27:91:4d:be:81:24:d0:2b:be:89:83:
0c:01:db:17:21:00:65:62:11:eb:d3:9e:1d:00:a2:
62:5f:ad:b5:9e:3f:5e:87:cc:40:92:da:96:f0:ad:
6b:7a:d8:c8:8a:f8:e1:06:44:45:f8:34:f5:dc:31:
55:71:38:e7:ab:cb:e9:ee:7a:d7:9f:27:1d:32:fc:
7a:4c:54:a4:b4:0b:4f:30:c4:66:4f:21:f3:2a:a8:
74:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D9:68:24:89:D7:66:17:EF:5F:18:0E:79:35:81:43:68:8A:33:08
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/etloJInXZhfvXxgOeTWBQ2iKMwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.100.0/24
194.50.200.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:57:19:48:db:0a:82:86:d7:11:e6:89:9c:21:48:37:61:34:
fa:91:e8:1d:8f:35:02:f1:c6:5f:67:99:51:90:5e:07:00:8f:
c9:c4:04:c2:61:11:67:ce:49:09:df:a2:8e:c9:05:8b:1f:24:
14:39:f2:21:13:67:62:dc:75:72:84:48:7c:51:7c:9f:22:33:
d0:88:f4:d2:0a:7d:37:23:4c:5a:6a:17:f1:c4:1b:8f:0b:c3:
99:9a:88:13:0c:97:e0:6e:22:c0:b9:a8:88:03:1d:51:8b:ef:
68:11:cd:30:9b:3c:62:1a:85:9a:1e:b9:be:97:26:ef:3d:82:
76:40:44:fc:c0:f9:f3:d1:ce:6c:e7:6f:6f:55:43:49:1e:fa:
89:c7:8c:13:5a:dd:f5:3c:b0:6a:46:60:65:ca:4b:0f:51:f8:
cf:e9:47:f7:a2:bc:16:b0:bb:d2:f6:d2:86:54:56:56:68:69:
07:10:b0:cd:fe:de:6e:5f:f4:0d:bf:d7:93:1f:86:82:a9:20:
96:14:02:86:1e:4f:5e:db:0d:28:0c:c1:c2:00:07:3e:4f:75:
04:5a:2f:66:0a:1c:4a:e5:59:4e:85:80:9c:10:4c:b0:14:96:
47:0e:50:0d:a3:a5:f7:ed:97:32:b8:d3:5a:d8:5c:b6:36:2b:
43:f6:38:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:26 2024 by rpki-client on console-ams.rpki-client.org