Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/sDAfj5kOtlFMmB-JmAWuq4WtJTk.roa
File: sDAfj5kOtlFMmB-JmAWuq4WtJTk.roa (raw, json)
Hash identifier: lLMFars+hzDERM1x7b0SKdvCnyGTeqZjBtCt0CTmGxc=
Subject key identifier: B0:30:1F:8F:99:0E:B6:51:4C:98:1F:89:98:05:AE:AB:85:AD:25:39
Certificate issuer: /CN=17802133d98b655a9f5411b700ec79347e1eb490
Certificate serial: 01856BAED8CC14626CCC71D80C2103666200
Authority key identifier: 17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/sDAfj5kOtlFMmB-JmAWuq4WtJTk.roa
Signing time: Sun 01 Jan 2023 04:54:58 +0000
ROA not before: Sun 01 Jan 2023 04:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207967
IP address blocks: 176.97.194.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:d8:cc:14:62:6c:cc:71:d8:0c:21:03:66:62:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17802133d98b655a9f5411b700ec79347e1eb490
Validity
Not Before: Jan 1 04:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0301f8f990eb6514c981f899805aeab85ad2539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d7:99:d8:e4:30:6b:1f:3d:e8:28:d8:8a:59:
03:d3:89:a4:6f:ab:ed:1b:9f:92:96:25:46:ab:69:
c6:6f:eb:97:74:ff:18:9b:cd:0c:c8:78:00:f7:a8:
eb:cb:71:bf:3e:0e:03:63:fb:5b:43:ff:6f:db:51:
da:90:83:b3:a6:52:6f:91:9d:e7:1a:45:fd:9b:50:
5a:3b:ac:74:84:93:ac:27:e7:59:7b:2d:a6:1e:a5:
9c:37:ad:43:64:c7:4d:67:4d:d9:b8:2f:6a:d0:33:
67:d4:f4:d5:e8:86:29:3b:cb:16:53:70:2e:ee:ca:
59:ea:8e:2b:dc:0c:82:9b:0f:e8:d3:56:42:5d:13:
8e:a4:16:66:b4:6b:5b:12:1f:a1:40:79:cf:5f:a8:
05:56:a7:27:30:fb:c3:90:ef:87:ef:2b:cc:5f:ff:
f5:c0:7e:de:bb:b8:19:57:29:6c:33:b4:de:d6:6b:
d0:74:ce:96:20:05:49:69:c4:9a:69:6c:6a:f5:5d:
67:89:e7:96:bc:f8:bf:4d:b2:ba:93:33:3d:83:1a:
72:44:d7:ba:49:40:0a:f7:2e:e6:9b:9b:0e:09:cf:
31:df:58:c8:0c:ec:3c:a6:bf:ca:f2:50:1e:b3:00:
73:32:9e:d7:ba:b1:34:94:68:16:e7:26:3e:75:53:
47:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:30:1F:8F:99:0E:B6:51:4C:98:1F:89:98:05:AE:AB:85:AD:25:39
X509v3 Authority Key Identifier:
keyid:17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/sDAfj5kOtlFMmB-JmAWuq4WtJTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/F4AhM9mLZVqfVBG3AOx5NH4etJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.194.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d7:34:80:8f:7a:02:54:7f:bf:c2:36:61:9f:b0:63:76:a2:
43:60:90:4e:d6:a0:c8:03:45:86:2c:21:5c:e2:67:15:a1:5c:
75:12:2c:62:68:99:d1:eb:a2:bd:2f:ba:ec:37:7f:9f:ed:a3:
97:25:f5:4d:2f:8f:83:7e:2f:ae:3b:ba:10:5a:48:b1:d8:3c:
78:dd:38:4b:87:ad:75:fc:5b:b4:4d:a2:23:06:70:94:eb:3c:
98:0c:a6:0a:84:40:5a:f1:fe:91:95:1d:7b:16:d1:3c:ec:7b:
af:99:84:f5:25:19:0e:f7:46:34:50:a4:c6:01:ce:ac:82:74:
ae:94:ee:84:69:0d:b4:5e:9f:e5:1d:ad:72:a6:96:3f:c0:4b:
6f:1b:f8:03:00:ba:bc:05:91:27:ee:8c:3c:cd:99:c1:1c:48:
6e:a6:23:83:ed:9e:b1:39:2e:1d:c1:d2:97:78:79:b7:c6:f6:
2a:98:6d:5a:eb:9c:0c:f5:53:c8:c8:b5:24:f2:38:19:69:fc:
3a:6c:11:d2:2c:29:98:4c:a5:87:e6:32:f2:c1:a3:de:8b:3f:
f6:6a:31:e9:b6:39:b8:d8:9f:8b:b1:ab:64:a8:c7:d5:15:6d:
3b:07:55:31:f5:d7:d2:35:79:bf:f1:92:0c:22:a3:53:81:db:
6f:a8:1f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 11:32:32 2023 by rpki-client on console-ams.rpki-client.org