Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/OY_pY94SS9uVDDC5U5FpyVFC7pU.roa
File: OY_pY94SS9uVDDC5U5FpyVFC7pU.roa (raw, json)
Hash identifier: E/ozKJ4ptNG5nwfg4uQySke1NnnT6D7AeMkE8/lDJaE=
Subject key identifier: 39:8F:E9:63:DE:12:4B:DB:95:0C:30:B9:53:91:69:C9:51:42:EE:95
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 018BC722EF4B9A9EB0D103E1E345E631CAF7
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/OY_pY94SS9uVDDC5U5FpyVFC7pU.roa
Signing time: Mon 13 Nov 2023 05:23:57 +0000
ROA not before: Mon 13 Nov 2023 05:23:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5511
IP address blocks: 194.213.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c7:22:ef:4b:9a:9e:b0:d1:03:e1:e3:45:e6:31:ca:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Nov 13 05:23:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=398fe963de124bdb950c30b9539169c95142ee95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4a:3b:03:bc:63:bf:be:0d:80:07:55:d5:fa:
df:04:91:3c:68:3f:c7:29:3d:37:92:02:92:a9:3f:
38:b2:d6:e2:0f:fc:28:f9:00:97:34:c6:32:ac:e2:
f8:f6:1b:bb:48:bc:85:48:67:4a:42:56:77:2b:c4:
68:9d:cf:66:cb:6f:9d:ab:bb:72:4e:06:24:2b:4b:
11:1d:34:eb:fe:5d:de:23:bd:1b:07:fa:c1:e0:b0:
7d:25:1b:4f:c3:7f:19:fa:15:50:02:0f:6f:5e:31:
5b:59:05:0d:de:49:1e:d2:ed:18:57:82:75:4e:47:
c3:ce:ce:79:ef:12:6b:ee:24:ed:f1:a4:89:b4:24:
e2:42:89:9b:78:11:d8:64:13:e2:61:cb:74:27:df:
c8:87:4e:34:03:0a:02:ba:0f:ee:25:7a:8d:cd:f1:
d4:9b:57:bd:a3:4e:55:1b:44:41:71:2b:19:9f:d1:
a1:ac:6f:7c:3f:7c:2c:5b:ec:40:61:17:61:89:43:
29:8a:24:a8:25:90:88:e6:e4:08:7b:db:23:48:49:
cf:b4:85:ba:7a:33:b8:f4:ac:39:67:c7:36:24:71:
f2:fa:e4:b8:0e:e1:ae:f9:33:36:7c:95:a4:45:cd:
3e:b7:38:12:89:ab:4b:f6:ef:d1:16:5d:3c:21:8d:
de:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:8F:E9:63:DE:12:4B:DB:95:0C:30:B9:53:91:69:C9:51:42:EE:95
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/OY_pY94SS9uVDDC5U5FpyVFC7pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.20.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:f8:7a:02:e0:81:ee:4a:3d:09:da:bf:ce:bb:12:ac:e1:49:
c4:d8:bc:36:00:64:84:95:80:d2:ed:fd:50:a9:8a:e4:76:1a:
26:3f:aa:b0:d1:55:99:ab:66:30:31:b8:43:c5:54:79:6e:0a:
12:5e:3c:54:ec:12:86:02:da:09:74:07:33:38:76:37:b8:32:
23:62:20:15:1f:b1:be:af:e5:d0:c0:66:04:44:57:a6:ab:4c:
33:75:97:af:91:aa:4d:3b:d4:34:fd:e1:2b:f3:52:f4:86:55:
b9:ec:34:38:80:df:3b:a4:83:ea:eb:07:ff:82:39:c6:20:d6:
ac:ed:74:74:eb:71:92:36:f6:0e:38:98:2c:be:8c:65:4c:9b:
f3:ae:3e:8c:a2:3e:e0:48:2e:3e:1e:fe:af:e9:18:bc:89:b4:
a2:2d:00:3b:ae:7f:04:02:4f:c2:e3:4e:d9:e5:10:bd:32:c3:
d8:95:ff:54:fc:54:51:3f:5a:70:45:e3:d5:e5:cb:b0:80:b8:
2c:64:ba:87:fb:93:44:1d:bc:3e:37:73:61:fe:8b:07:00:5e:
76:1b:9b:83:d3:97:4e:f2:91:80:33:ac:b6:42:69:e7:7e:03:
35:76:c0:b8:d7:f9:62:a2:5f:79:91:64:fd:e2:6c:c1:a8:81:
26:ab:35:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:56 2024 by rpki-client on console-ams.rpki-client.org