Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/7NWotjl5CJjUrJ9-_DGWIyBtlHU.roa
File: 7NWotjl5CJjUrJ9-_DGWIyBtlHU.roa (raw, json)
Hash identifier: VEhRhd12eYNbzRnR8oCc9mxNMIamp7rYqWx+rQ3vIk8=
Subject key identifier: EC:D5:A8:B6:39:79:08:98:D4:AC:9F:7E:FC:31:96:23:20:6D:94:75
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 018AC31E4BFD0BAEB74CD77D28BD703D0926
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/7NWotjl5CJjUrJ9-_DGWIyBtlHU.roa
Signing time: Sat 23 Sep 2023 17:37:37 +0000
ROA not before: Sat 23 Sep 2023 17:37:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30456
IP address blocks: 194.213.13.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:c3:1e:4b:fd:0b:ae:b7:4c:d7:7d:28:bd:70:3d:09:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Sep 23 17:37:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecd5a8b639790898d4ac9f7efc319623206d9475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:89:1a:77:04:1f:3d:ca:76:a3:6c:f0:ff:3b:
24:d2:e6:3e:e3:5e:6d:09:56:45:1e:4b:68:e7:01:
3c:11:21:1e:24:3d:ab:0e:0e:b9:b6:43:8a:d4:6c:
8c:20:54:b0:1c:1d:d8:de:fb:47:c6:36:64:23:79:
d3:4f:88:9a:75:4f:51:fe:99:13:64:ac:0a:63:0a:
d7:ce:60:b0:e2:73:2c:bf:b4:55:00:15:9b:38:c3:
ab:99:1c:42:9a:88:a3:d5:8e:87:08:2b:15:fe:4c:
56:d5:47:69:7f:8a:58:19:f3:62:76:73:9a:ae:11:
93:e4:5e:8d:8f:41:77:c1:ec:bf:19:4b:86:61:00:
4d:a2:86:54:1d:5a:07:45:03:34:52:14:e8:58:dd:
aa:ad:2e:fc:70:00:24:e6:84:55:c0:ac:b9:33:d2:
33:1f:49:f1:6a:0d:b7:c1:e9:81:cb:b5:4c:fe:a1:
b6:a6:f5:42:fb:02:10:15:04:29:f6:7c:01:4d:50:
24:db:f5:d1:68:8b:ab:4b:60:c5:50:d2:72:b1:82:
fa:65:6e:a8:61:11:be:52:7a:48:ab:d1:2c:7d:79:
23:7a:9a:69:a5:81:6d:d2:98:20:c1:28:c1:65:ad:
bf:6e:bd:ec:80:39:c1:e8:f8:86:a2:65:b0:d6:de:
88:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D5:A8:B6:39:79:08:98:D4:AC:9F:7E:FC:31:96:23:20:6D:94:75
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/7NWotjl5CJjUrJ9-_DGWIyBtlHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.13.0/24
Signature Algorithm: sha256WithRSAEncryption
53:80:59:38:e2:60:95:86:7a:82:ed:bf:96:17:a7:73:be:1d:
49:83:62:c7:1d:44:3d:da:9c:86:f6:31:19:b6:17:18:67:7a:
e1:12:81:c2:d1:ac:a5:22:a2:43:84:e0:3f:73:34:b3:33:42:
20:ba:b0:80:cf:21:8f:aa:13:a4:07:5d:4b:cd:5d:bf:4b:3b:
23:ce:12:99:38:8a:2c:37:42:0a:3b:0f:62:f6:38:1e:c8:5d:
96:f8:24:f7:09:5e:91:98:c5:bd:09:2f:94:6c:0c:e0:32:a3:
69:56:ff:92:76:e4:07:6e:7b:e0:2f:8f:87:47:27:be:39:a7:
d2:41:c4:76:40:77:71:c2:bc:38:be:ab:66:d7:39:cd:02:08:
ff:c8:34:7b:73:d7:c7:d9:bd:af:ac:84:18:a4:00:79:b2:f5:
14:1c:f6:72:26:24:99:84:8e:09:24:d0:93:30:f8:01:fa:8c:
0c:d0:c8:32:d1:7d:1c:db:17:16:76:40:e3:a0:17:2b:ce:d0:
36:5d:08:f1:3b:2d:9a:4a:08:1f:e9:b4:51:76:69:2a:b5:9e:
c5:36:5a:59:6f:f2:d1:41:d8:24:f0:74:6d:af:d9:22:e7:42:
6d:c2:5f:b3:aa:1d:a1:15:dc:4b:40:97:2e:67:fc:eb:9a:56:
0b:91:94:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 20:17:14 2023 by rpki-client on console-ams.rpki-client.org