Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/0658f4-ae21-40ca-a3dc-c230519482e3/1/0xFnZb83CYCTEB2WhW-b89gshCs.roa
File: 0xFnZb83CYCTEB2WhW-b89gshCs.roa (raw, json)
Hash identifier: 6FQ0XBUal1VN5ZUrx38TkUf7JN8ETq0bcI7e45AmvRw=
Subject key identifier: D3:11:67:65:BF:37:09:80:93:10:1D:96:85:6F:9B:F3:D8:2C:84:2B
Certificate issuer: /CN=b2c1d428cdee1eb3ffbf6df2318f9954dd885ff0
Certificate serial: 018572F123563C5091C46AB902529A77966D
Authority key identifier: B2:C1:D4:28:CD:EE:1E:B3:FF:BF:6D:F2:31:8F:99:54:DD:88:5F:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssHUKM3uHrP_v23yMY-ZVN2IX_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/0658f4-ae21-40ca-a3dc-c230519482e3/1/0xFnZb83CYCTEB2WhW-b89gshCs.roa
Signing time: Mon 02 Jan 2023 14:44:43 +0000
ROA not before: Mon 02 Jan 2023 14:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 194.150.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:23:56:3c:50:91:c4:6a:b9:02:52:9a:77:96:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c1d428cdee1eb3ffbf6df2318f9954dd885ff0
Validity
Not Before: Jan 2 14:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3116765bf37098093101d96856f9bf3d82c842b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:65:da:c9:be:d2:76:50:c5:1e:a6:25:38:6b:
3e:f8:d3:cb:cc:cd:1a:bb:01:6f:63:20:c9:30:41:
ca:ac:6b:83:bb:66:c2:bd:db:01:5c:74:59:65:0d:
48:64:7c:81:27:f5:eb:41:56:ca:38:27:c8:52:42:
1c:c3:69:07:0e:73:1e:ef:d6:a4:9b:af:c8:fe:2c:
e6:23:1a:68:ce:ad:04:cb:98:33:9c:aa:6b:4d:e3:
89:02:f9:cf:ce:71:1f:a2:6b:7c:6a:c2:55:eb:3b:
71:4f:23:c1:31:c5:78:18:ab:86:67:43:f2:bd:d5:
fa:13:5a:3f:74:39:03:36:44:97:38:15:de:d2:22:
41:b3:bc:dd:a8:bd:f1:29:c5:37:9b:d2:31:61:e6:
2c:98:0d:54:c3:26:4b:24:8e:26:1d:e7:8b:b6:ea:
f8:4e:68:31:89:14:7f:cf:2c:98:93:62:82:e2:c2:
52:a6:d0:b0:33:b6:87:32:4b:be:20:32:cf:7a:ec:
f1:07:a8:7a:ca:5b:a1:e2:91:ba:41:25:50:98:19:
94:dc:ec:8d:7d:26:da:49:eb:78:0d:31:4d:9f:28:
56:54:a0:0c:57:f3:5c:77:a7:09:06:4b:18:bd:0a:
8a:6a:64:53:49:70:11:49:ba:35:7b:d0:a6:6e:38:
e6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:11:67:65:BF:37:09:80:93:10:1D:96:85:6F:9B:F3:D8:2C:84:2B
X509v3 Authority Key Identifier:
keyid:B2:C1:D4:28:CD:EE:1E:B3:FF:BF:6D:F2:31:8F:99:54:DD:88:5F:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssHUKM3uHrP_v23yMY-ZVN2IX_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0658f4-ae21-40ca-a3dc-c230519482e3/1/0xFnZb83CYCTEB2WhW-b89gshCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/0658f4-ae21-40ca-a3dc-c230519482e3/1/ssHUKM3uHrP_v23yMY-ZVN2IX_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.79.0/24
Signature Algorithm: sha256WithRSAEncryption
53:94:6d:5f:11:ec:d6:05:4d:d1:50:e2:45:b6:08:7c:d7:18:
59:5a:17:18:d1:85:e9:f9:d6:02:16:14:15:bb:44:0b:9c:bb:
e0:4d:a1:eb:6f:6e:de:b5:43:f7:cc:b7:18:0b:2c:0a:b5:ea:
cf:c1:29:d7:78:7a:9d:e7:0e:cf:b5:c3:dc:9f:34:10:65:1a:
35:7a:ec:ae:8c:16:4a:5d:97:ed:1e:81:2d:3d:4a:1d:0b:fa:
b9:89:38:a8:86:16:ba:7f:3a:47:f4:0d:45:d6:c8:84:14:e7:
44:1c:7b:fc:cc:21:3d:e8:12:62:91:17:34:0a:5a:66:04:c8:
bb:69:17:a4:2b:34:4c:88:47:ee:c7:81:04:c5:87:1f:0b:82:
32:d5:07:0c:5e:d1:18:b7:82:ed:ae:8c:3b:f3:ee:5d:51:46:
d9:38:84:32:65:94:0b:46:e3:09:c8:50:73:26:2b:6c:a8:2a:
8b:77:fd:d9:7e:46:6f:c8:d6:32:bc:33:e1:52:f3:31:2b:09:
70:1d:fa:d8:ac:35:41:32:49:a0:c6:14:5b:e5:ed:70:4e:c1:
f9:5d:dc:29:d6:5a:03:cf:45:72:7a:91:87:c0:32:f1:03:0e:
19:0b:7f:b0:22:37:39:c3:a5:e9:fc:06:36:2e:02:dc:f0:8b:
12:79:4b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:16 2023 by rpki-client on console-ams.rpki-client.org