Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/AiFccGOtF2KUjEgbeVej1TapPvw.roa
File: AiFccGOtF2KUjEgbeVej1TapPvw.roa (raw, json)
Hash identifier: 2WFMs9CpAoB9EnyqbPaY6v9WtIDGCDHA6+NApywENB4=
Subject key identifier: 02:21:5C:70:63:AD:17:62:94:8C:48:1B:79:57:A3:D5:36:A9:3E:FC
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018674115147E60FF8F902D1EA12F5A00D34
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/AiFccGOtF2KUjEgbeVej1TapPvw.roa
Signing time: Tue 21 Feb 2023 13:02:17 +0000
ROA not before: Tue 21 Feb 2023 13:02:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 286
IP address blocks: 194.121.52.0/22 maxlen: 22
2a00:1750::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:11:51:47:e6:0f:f8:f9:02:d1:ea:12:f5:a0:0d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Feb 21 13:02:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02215c7063ad1762948c481b7957a3d536a93efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:64:b1:e4:5a:50:89:c2:ac:30:98:dc:b0:7a:
b2:14:82:68:c2:14:e7:be:16:9f:13:5b:0b:2e:0f:
94:9b:37:e1:37:d1:61:f3:70:d7:a4:df:ac:5c:85:
be:e4:71:11:d9:d5:11:aa:53:2e:6c:dd:69:ee:c3:
8a:97:b3:13:a7:1c:1c:21:27:45:74:8b:51:9f:41:
c2:58:ff:30:0f:85:5f:81:2d:37:9b:88:bc:69:8b:
7d:3f:b9:dd:48:ba:3e:86:8e:2b:b9:51:ad:12:20:
c0:db:cd:2c:4c:69:35:64:d8:25:9a:47:50:8e:d1:
8e:eb:bc:78:ce:3b:22:2a:33:4f:80:f2:82:d3:56:
7d:b1:0d:ca:a8:65:1d:38:05:dd:49:e5:a9:24:19:
26:3c:3b:2e:a3:be:74:c8:f4:55:7a:d6:f2:cf:00:
13:01:5b:cd:3d:00:e6:1b:02:00:c8:67:f5:68:ce:
b9:72:37:07:06:a0:bd:00:00:14:32:34:38:ea:91:
65:7c:dd:d5:76:bb:8b:46:da:ce:f6:7e:3d:03:85:
22:b2:7e:a3:28:d8:5d:d0:ba:e6:2c:f4:73:88:81:
c0:1c:7b:3e:bf:78:dc:a1:06:6c:ab:8a:68:38:36:
2c:89:32:56:75:d2:ec:7f:3b:ee:30:60:ec:62:b0:
a0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:21:5C:70:63:AD:17:62:94:8C:48:1B:79:57:A3:D5:36:A9:3E:FC
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/AiFccGOtF2KUjEgbeVej1TapPvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.121.52.0/22
IPv6:
2a00:1750::/32
Signature Algorithm: sha256WithRSAEncryption
38:82:3d:d3:aa:63:30:97:8e:61:e1:b1:38:57:f3:22:6d:7e:
b3:27:bd:9b:66:fa:91:34:fa:28:55:e0:1d:4b:25:1a:8b:a6:
26:c0:cd:58:32:58:5b:44:69:5c:46:fb:32:07:74:64:39:a2:
31:a6:e6:c8:fa:53:bb:ca:e1:f2:d9:26:50:58:39:f0:8d:ae:
42:60:8e:c5:17:af:0d:e5:bb:a9:9a:bc:d9:d2:90:54:a8:f0:
73:45:43:36:63:c8:bd:6a:6e:20:c6:13:a6:74:20:77:3d:ac:
f4:7e:c5:5f:28:59:a7:9b:8f:bf:bf:af:98:c8:37:f5:b7:a9:
05:f9:f2:ca:5b:58:90:de:b4:2e:6a:b2:69:3a:98:4e:71:3f:
a1:60:9f:ab:ea:19:c8:72:af:8b:e8:bd:5a:ae:f4:09:bd:70:
37:aa:18:91:45:fa:3e:cd:74:a2:79:70:a3:df:c3:41:e9:b8:
35:d2:ea:62:27:b7:42:a5:43:8b:7d:84:64:a0:10:79:c3:96:
6c:4e:25:ce:2a:47:fd:32:cd:96:4d:db:9a:2d:91:bd:ea:75:
11:92:0f:14:e7:63:3a:5b:a6:ea:08:5b:f7:e6:31:a1:3a:6c:
ca:89:e5:0d:2f:cd:a5:c3:26:1e:69:5f:28:6c:46:12:1a:3a:
be:e8:d8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:26 2023 by rpki-client on console-fra.rpki-client.org