Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/5VjsfU5MTGsOY5wMKpkw6hrEvwU.roa
File: 5VjsfU5MTGsOY5wMKpkw6hrEvwU.roa (raw, json)
Hash identifier: NQsmmqLLQdS0qpuCWIuhZoUVAK2CTptbUfaTCoYIGU4=
Subject key identifier: E5:58:EC:7D:4E:4C:4C:6B:0E:63:9C:0C:2A:99:30:EA:1A:C4:BF:05
Certificate issuer: /CN=2864bb34fb5d16ca9d1fa3f9794cb48d4bed8473
Certificate serial: 018A9314368E9FB2EF22FA874458C471448C
Authority key identifier: 28:64:BB:34:FB:5D:16:CA:9D:1F:A3:F9:79:4C:B4:8D:4B:ED:84:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGS7NPtdFsqdH6P5eUy0jUvthHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/5VjsfU5MTGsOY5wMKpkw6hrEvwU.roa
Signing time: Thu 14 Sep 2023 09:44:50 +0000
ROA not before: Thu 14 Sep 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46071
IP address blocks: 194.99.58.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:14:36:8e:9f:b2:ef:22:fa:87:44:58:c4:71:44:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2864bb34fb5d16ca9d1fa3f9794cb48d4bed8473
Validity
Not Before: Sep 14 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e558ec7d4e4c4c6b0e639c0c2a9930ea1ac4bf05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:94:f2:ea:12:96:2f:c3:ab:fc:d2:3a:24:46:
67:2f:ad:f5:81:f4:d7:f4:0f:b0:bb:f4:17:91:15:
a1:1f:c4:7e:a6:2d:ee:ac:67:ec:c9:41:1a:02:de:
36:2f:3f:38:d6:f3:47:0a:f4:af:bd:3a:94:1e:cd:
dd:e9:5d:43:55:ac:bd:7d:cb:e3:fc:d0:aa:14:98:
fb:97:ef:69:55:e4:17:23:5c:25:30:08:13:8d:fa:
5e:2f:2c:d6:11:e8:ba:0d:a2:0b:23:65:9d:2b:79:
7e:b7:e5:e8:16:45:70:85:d5:b8:0e:ff:fc:24:a7:
cf:d0:c5:80:32:7c:9b:80:e7:dd:65:e1:4f:05:16:
0f:b9:4c:65:20:8a:2e:0e:c0:5b:fa:9c:38:38:f3:
ad:47:e3:2e:da:0b:a0:21:ee:d2:8a:4e:f1:8d:e7:
2a:70:b9:ef:ca:6a:60:87:13:eb:6e:a0:cd:8d:c1:
95:81:e2:39:01:7c:ed:96:c7:d0:43:44:0a:cf:50:
08:d1:1d:39:78:88:9e:4d:00:e2:e9:e1:3b:05:e0:
a8:4b:0c:a1:6c:f0:f5:c2:05:d4:e4:c6:6a:55:33:
96:33:37:26:30:f0:c3:e8:77:3c:ec:68:05:1d:3b:
ac:b9:fd:81:b0:dd:30:c2:33:44:e4:76:a1:88:77:
6a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:58:EC:7D:4E:4C:4C:6B:0E:63:9C:0C:2A:99:30:EA:1A:C4:BF:05
X509v3 Authority Key Identifier:
keyid:28:64:BB:34:FB:5D:16:CA:9D:1F:A3:F9:79:4C:B4:8D:4B:ED:84:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGS7NPtdFsqdH6P5eUy0jUvthHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/5VjsfU5MTGsOY5wMKpkw6hrEvwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/KGS7NPtdFsqdH6P5eUy0jUvthHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.58.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:4c:87:8b:1e:86:98:fd:61:a4:e3:d3:f0:53:c2:a7:e9:2d:
c5:69:1d:8e:0f:d7:16:b7:26:39:f7:5c:fd:8a:99:4c:cb:d9:
51:92:16:bf:36:21:4f:35:9f:29:3a:d4:51:14:ec:ab:fe:01:
94:52:18:b7:04:ff:49:30:1d:48:59:04:10:f0:48:87:ed:bb:
7c:2c:f3:d3:f3:54:ec:ad:d2:14:3b:a2:2e:2e:c5:07:45:f6:
23:71:7d:db:fc:d8:c3:20:4e:8f:ff:64:20:59:8f:a2:2e:99:
b4:ec:f2:23:ae:d1:63:6b:d1:99:14:be:1e:f1:c0:52:b9:c1:
5a:00:cb:65:4b:76:2d:be:47:69:6b:0a:18:b8:28:d5:14:99:
25:31:8b:b3:4f:a9:57:ac:fd:5e:d9:07:88:22:52:3a:38:fe:
84:6c:f2:bd:bf:cb:e5:61:f1:26:fb:47:20:1b:ee:03:74:22:
2a:21:57:33:0a:7e:fc:2d:eb:7b:8a:43:bb:89:6c:53:0f:93:
f1:1c:f2:18:ae:92:0f:10:2d:24:34:7a:a7:37:c1:0a:83:55:
cd:90:fb:68:b4:7a:73:d8:98:7c:5f:e5:df:aa:19:c6:00:e5:
0d:3f:15:39:0c:59:8d:6b:9a:f8:b5:95:c3:00:09:9c:e9:5d:
52:5f:eb:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:10:56 2024 by rpki-client on console-ams.rpki-client.org