Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/sdjbe3UCbJc4hHrjMhnQgWeABos.roa
File: sdjbe3UCbJc4hHrjMhnQgWeABos.roa (raw, json)
Hash identifier: uY/PDlyYcs0aqwLxl1onsNHHROZHx7TzY80QyNsCpyU=
Subject key identifier: B1:D8:DB:7B:75:02:6C:97:38:84:7A:E3:32:19:D0:81:67:80:06:8B
Certificate issuer: /CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Certificate serial: 018573684845D5E2FB0A0D04B468172C334E
Authority key identifier: E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/sdjbe3UCbJc4hHrjMhnQgWeABos.roa
Signing time: Mon 02 Jan 2023 16:54:52 +0000
ROA not before: Mon 02 Jan 2023 16:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 764
IP address blocks: 194.211.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:48:45:d5:e2:fb:0a:0d:04:b4:68:17:2c:33:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0dee1b06ba24a676213f976a4b50c129dcb2b73
Validity
Not Before: Jan 2 16:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1d8db7b75026c9738847ae33219d0816780068b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7d:af:58:11:34:61:ea:95:fd:36:12:a9:85:
92:6a:97:30:6e:08:1c:6c:ae:f0:37:8e:cd:49:2f:
bd:a8:42:5f:52:25:73:da:4c:47:8a:96:ec:14:fa:
0b:c5:4f:7a:a1:3f:65:d3:7f:19:b5:cc:9a:d0:d3:
60:81:37:83:03:d4:93:32:fa:c2:c8:47:38:89:10:
66:a8:fa:0f:73:69:d2:ba:a3:33:7e:07:f4:ee:64:
e5:6b:e2:56:f3:a6:c5:70:b2:d0:84:92:f8:73:ae:
da:78:d6:0b:83:6c:95:ce:d9:d8:57:4e:f5:8a:e8:
39:c4:07:98:4f:21:9b:9a:66:ee:27:24:d0:92:94:
ad:b9:54:b8:72:e5:62:54:45:61:5a:aa:e3:40:4f:
af:66:68:95:f2:75:36:b6:fb:fe:f3:46:33:8c:6f:
e2:2e:2d:68:97:33:82:5c:60:13:b9:4d:05:75:25:
a6:ce:11:7a:4b:fd:1a:b0:dc:d3:2a:87:95:dd:d1:
90:a4:c5:6b:03:45:2e:95:d1:10:1a:b5:44:2e:a3:
6d:1f:44:5c:14:c7:d2:76:04:8c:3c:dd:ef:b7:d0:
f9:97:6c:4d:90:5a:c2:cb:62:4d:a0:e9:81:47:cd:
98:ab:36:38:49:a7:2f:3a:6d:c1:fe:84:c9:41:4f:
cd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D8:DB:7B:75:02:6C:97:38:84:7A:E3:32:19:D0:81:67:80:06:8B
X509v3 Authority Key Identifier:
keyid:E0:DE:E1:B0:6B:A2:4A:67:62:13:F9:76:A4:B5:0C:12:9D:CB:2B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4N7hsGuiSmdiE_l2pLUMEp3LK3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/sdjbe3UCbJc4hHrjMhnQgWeABos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c22dc9-c7ba-4156-a79c-15e90bf87fab/1/4N7hsGuiSmdiE_l2pLUMEp3LK3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.211.231.0/24
Signature Algorithm: sha256WithRSAEncryption
28:28:da:e5:02:7e:e4:97:bc:d8:8f:fe:ba:4d:ff:0b:4c:0e:
78:1f:ca:4f:73:f4:dc:cb:b9:40:f4:9a:6e:0d:bd:3a:78:33:
65:b2:c9:ad:fc:af:f6:68:0b:27:29:c7:df:fe:4d:ab:42:aa:
af:39:71:81:e6:49:09:99:1c:1a:c3:bf:b4:c1:fe:ed:79:42:
55:15:55:53:71:2e:ca:25:ae:18:f6:45:5c:cf:59:ea:96:ad:
c2:51:03:53:b1:70:a2:68:88:62:e0:43:01:8f:9e:e3:12:90:
34:d1:1e:6a:6f:f5:1d:ff:02:b4:e1:58:9d:00:33:5e:fc:5e:
52:a6:4c:06:56:8b:93:d3:07:ac:45:ee:c3:6a:b8:75:3a:2d:
0f:de:97:2d:03:04:c5:2e:a4:ae:ee:2e:2a:c9:90:5b:71:2f:
c5:30:13:8d:6e:36:8f:e7:f4:a9:f1:da:87:02:d2:1d:70:01:
1a:46:d4:5a:d7:fa:cd:f1:00:de:b2:dc:8e:ce:bc:9e:6a:71:
4d:33:65:5c:d1:15:42:b3:da:d7:88:22:73:01:56:a1:a1:10:
4d:e4:5b:dd:90:43:09:6f:b1:0d:2a:97:6c:9e:35:ef:5c:6b:
b5:8b:bf:58:ca:65:5f:21:ad:bd:c1:f7:a3:b1:3a:25:05:58:
bb:b5:40:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:29 2024 by rpki-client on console-fra.rpki-client.org