Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/sRnN7H3TVdsSbWm9AKN3t_yhANc.roa
File: sRnN7H3TVdsSbWm9AKN3t_yhANc.roa (raw, json)
Hash identifier: jF+bfb21IzxeR4hNHvxUL97ZL2TC2Rvrm1Fc0irHGyI=
Subject key identifier: B1:19:CD:EC:7D:D3:55:DB:12:6D:69:BD:00:A3:77:B7:FC:A1:00:D7
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018C7C509ACF0DAFD6695F1152F0F603D12D
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/sRnN7H3TVdsSbWm9AKN3t_yhANc.roa
Signing time: Mon 18 Dec 2023 09:45:06 +0000
ROA not before: Mon 18 Dec 2023 09:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 194.180.238.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7c:50:9a:cf:0d:af:d6:69:5f:11:52:f0:f6:03:d1:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Dec 18 09:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b119cdec7dd355db126d69bd00a377b7fca100d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:44:1b:52:d3:d5:78:0d:6c:d0:79:9b:ce:42:
8b:5e:c7:49:23:d4:78:da:af:58:0d:9f:0a:29:1f:
98:2a:c2:8c:11:bb:62:68:d4:f8:42:62:b7:33:f7:
58:d7:ab:8a:60:b3:a0:3f:51:59:56:9e:7a:69:04:
73:f6:53:32:76:a3:23:74:77:a4:07:fe:98:00:3d:
6c:fc:2c:e5:3c:c3:74:26:7f:a5:c7:61:86:cc:10:
e7:39:c0:07:a5:93:34:6d:aa:98:19:96:22:14:29:
da:98:9f:52:64:07:56:fd:6a:0a:f3:3e:e3:17:81:
58:c8:ba:e9:23:e3:18:60:b6:b9:16:02:e7:17:24:
c3:09:08:fa:a4:4a:ad:ad:b8:dd:46:0d:68:0d:0f:
34:f2:f1:3d:ae:32:c0:45:fb:5f:af:ac:f7:d2:3c:
1c:b4:e0:f0:39:e3:b6:73:7b:19:af:03:d8:e7:e9:
ac:b4:e3:0c:e5:49:cf:cd:e9:48:f2:cf:65:e9:0e:
58:a4:c0:86:9b:ef:fd:72:09:a0:d0:d0:fd:79:d2:
7f:92:99:07:70:f9:5b:3e:da:ac:77:71:58:47:64:
e9:63:11:20:00:20:19:98:65:4f:a1:ad:d7:9c:49:
05:c9:c4:6e:04:8d:e0:10:a9:4b:1b:81:6e:23:b4:
f0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:19:CD:EC:7D:D3:55:DB:12:6D:69:BD:00:A3:77:B7:FC:A1:00:D7
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/sRnN7H3TVdsSbWm9AKN3t_yhANc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.238.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:02:cd:ce:fc:68:a7:56:e5:76:f3:71:9f:2c:19:9f:2e:5b:
d6:f8:00:39:a1:d8:cd:56:dd:29:27:55:e2:85:c7:2b:d1:5b:
c7:d3:c1:b9:05:d8:17:07:22:b3:7c:09:c1:04:ef:33:8c:50:
2c:9f:90:be:12:cf:13:9e:9c:63:ea:8a:a6:13:50:cf:80:84:
43:b8:a9:52:76:6a:20:52:21:1a:42:11:79:ff:e5:16:2d:09:
a2:b6:15:fe:a5:2a:aa:f3:ba:9f:63:cd:bc:85:fa:11:f0:14:
84:5c:4b:9b:e1:6f:10:56:2c:5e:cc:60:f0:ba:05:58:b6:3f:
2a:ef:bb:7b:68:c1:d8:fb:02:cf:14:ed:bd:ce:91:3e:18:ae:
27:e6:de:b7:0e:71:2c:10:93:cd:0b:93:ff:b9:df:3a:3c:dc:
8c:11:f1:f6:d3:2b:ed:db:bd:17:91:bb:55:0b:c3:49:02:99:
e1:61:6f:56:b8:2f:86:f3:b5:4d:67:e7:c4:b2:cb:8d:13:50:
0b:ba:03:e9:61:d7:82:98:4f:f6:1d:1b:05:47:78:1f:0f:a9:
e6:7f:21:60:7b:07:2b:17:00:b3:f4:2f:26:16:76:53:6a:74:
e8:d7:dd:77:d6:22:84:63:fd:17:c8:09:da:db:28:9e:3a:1d:
00:cf:50:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:21 2024 by rpki-client on console-fra.rpki-client.org