Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/BQcLIQ2lqZzgEay4YmvUwk-Whfs.roa
File: BQcLIQ2lqZzgEay4YmvUwk-Whfs.roa (raw, json)
Hash identifier: UIL2EfEbKTQAd9Yf2UjtuqAwy+0nP/PeUVaUYp+FHzY=
Subject key identifier: 05:07:0B:21:0D:A5:A9:9C:E0:11:AC:B8:62:6B:D4:C2:4F:96:85:FB
Certificate issuer: /CN=dcdcb02b61e3a15eac373b992e0e1a6545f61e52
Certificate serial: 01856F6700B461E15BC1356F22CA59FF592D
Authority key identifier: DC:DC:B0:2B:61:E3:A1:5E:AC:37:3B:99:2E:0E:1A:65:45:F6:1E:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3NywK2HjoV6sNzuZLg4aZUX2HlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/BQcLIQ2lqZzgEay4YmvUwk-Whfs.roa
Signing time: Sun 01 Jan 2023 22:14:59 +0000
ROA not before: Sun 01 Jan 2023 22:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209799
IP address blocks: 194.15.100.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:00:b4:61:e1:5b:c1:35:6f:22:ca:59:ff:59:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcdcb02b61e3a15eac373b992e0e1a6545f61e52
Validity
Not Before: Jan 1 22:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05070b210da5a99ce011acb8626bd4c24f9685fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:25:03:fb:20:ca:f8:94:7c:be:63:c0:54:71:
83:1c:3b:e5:67:50:7e:00:b5:55:e1:27:4a:92:83:
90:f7:76:87:e8:cd:32:9d:c8:a3:eb:92:61:c0:eb:
6f:a9:64:2a:aa:a6:f4:0a:30:8e:87:f4:bd:ec:98:
91:a4:29:d4:91:7c:fe:eb:11:cc:ff:1a:36:ff:e3:
e0:a3:f5:31:a0:a8:4f:23:f9:54:11:c7:2d:a4:93:
1c:d6:55:98:00:bb:70:41:06:74:f4:a5:83:89:0b:
ad:7b:53:fa:b0:d5:70:03:3c:a8:60:d6:51:93:3f:
6d:c4:e4:56:8b:9a:a3:13:36:9e:b7:4b:13:dc:8e:
62:5b:5a:06:eb:e6:0c:fd:d5:86:9a:3d:cd:ab:2d:
f4:83:6a:b1:c9:af:96:d9:ae:c4:76:76:41:d0:81:
2a:85:b5:01:d9:7d:ab:94:ba:64:45:57:e9:98:80:
67:80:3c:79:83:8f:e3:a2:58:27:21:c9:36:59:84:
a1:d3:2d:52:47:c2:b7:54:91:8e:56:df:a9:db:9a:
29:57:a7:c7:88:2d:22:92:29:c6:33:5c:d7:6f:3c:
80:c4:7a:13:12:0a:51:1f:09:71:9c:03:3f:1f:c2:
0f:af:0a:83:c8:da:4c:89:96:e8:e6:b4:d0:61:18:
48:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:07:0B:21:0D:A5:A9:9C:E0:11:AC:B8:62:6B:D4:C2:4F:96:85:FB
X509v3 Authority Key Identifier:
keyid:DC:DC:B0:2B:61:E3:A1:5E:AC:37:3B:99:2E:0E:1A:65:45:F6:1E:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3NywK2HjoV6sNzuZLg4aZUX2HlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/BQcLIQ2lqZzgEay4YmvUwk-Whfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2b4823-4262-47d3-9b80-66758479863e/1/3NywK2HjoV6sNzuZLg4aZUX2HlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.100.0/22
Signature Algorithm: sha256WithRSAEncryption
16:2b:ca:df:2e:d3:56:23:d3:88:a6:fe:3e:19:91:8e:b2:12:
12:3b:13:08:45:40:7e:77:2e:16:af:e2:9c:8e:5f:fe:07:06:
3d:30:85:29:7c:87:b2:f7:57:aa:ac:f9:b5:d1:f1:b4:47:7a:
b1:d2:61:3a:da:b2:4d:f4:37:86:e9:42:27:94:d9:07:73:b1:
3f:c1:cb:e6:7e:76:ef:d7:82:b6:9e:53:f2:82:ea:47:85:73:
0c:19:b3:18:db:55:54:a1:d6:d2:b3:f8:d3:88:f9:54:7d:9c:
db:32:cf:a2:71:56:ab:9b:14:f4:bb:51:48:d4:fb:59:53:eb:
a6:f4:df:40:64:7f:79:b5:14:dd:78:b6:ba:ba:46:9b:1a:c2:
52:79:80:c5:e3:ce:19:1a:72:34:a2:51:c4:0f:c2:e8:e2:2b:
c8:61:0f:b9:23:95:7f:0a:27:cd:d8:59:23:75:16:d3:23:c2:
51:ae:01:3e:e8:7b:bc:39:fb:76:fa:da:ee:34:59:9d:61:f5:
5a:44:1d:89:79:c4:84:ff:74:c3:f8:d9:39:58:ff:8a:b4:b2:
d2:a4:f3:11:57:81:28:a6:c3:38:6a:13:8d:e1:01:b5:85:0a:
39:b0:d6:e2:1a:8a:52:49:06:74:9d:7b:ac:e8:d0:9a:c2:ed:
5d:69:1a:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:55 2023 by rpki-client on console-ams.rpki-client.org