Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/R4k1OA_2QG-t6E456B4j1ABdH80.roa
File: R4k1OA_2QG-t6E456B4j1ABdH80.roa (raw, json)
Hash identifier: vgouqNaUJjWIOkQR+I5gvFOorZmJro3ciBZEPmdmZuQ=
Subject key identifier: 47:89:35:38:0F:F6:40:6F:AD:E8:4E:39:E8:1E:23:D4:00:5D:1F:CD
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7DE64E7714EF0A9C90E1F3613ED0F
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/R4k1OA_2QG-t6E456B4j1ABdH80.roa
Signing time: Mon 02 Jan 2023 09:37:30 +0000
ROA not before: Mon 02 Jan 2023 09:37:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 194.28.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:de:64:e7:71:4e:f0:a9:c9:0e:1f:36:13:ed:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=478935380ff6406fade84e39e81e23d4005d1fcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a6:69:24:f4:47:77:c4:ee:66:0d:17:8c:25:
e8:f6:34:18:81:ce:51:e9:4d:66:1a:c8:61:f2:c0:
58:47:d9:af:0b:e0:e5:c1:0f:0e:7d:f8:12:12:92:
d5:1f:ad:9f:4e:aa:33:31:9e:8b:b9:1d:f6:47:d2:
7e:60:9c:8c:18:b0:82:23:6d:d2:1d:94:c9:01:2c:
d9:47:09:61:44:30:e6:10:f6:67:f8:60:84:e8:58:
0a:3f:b3:dc:e0:26:9e:3c:4d:ad:16:6b:e5:5e:9d:
e4:b2:c3:b6:4a:ba:ce:4b:c9:a3:ff:f4:2d:bb:40:
4b:19:8b:00:a9:0c:a1:3e:ce:e0:5c:01:63:1a:5f:
b0:4b:9e:44:20:e6:cf:e7:99:7f:6b:01:a5:53:da:
38:a8:b4:3b:f2:0b:82:ad:9a:6d:31:9c:eb:c4:11:
f9:b8:e2:a3:e7:ae:0d:f6:8f:eb:c7:24:f7:65:79:
8c:c9:8c:7d:4e:65:54:3b:66:0e:30:dd:1a:85:bd:
00:96:a7:29:ef:72:ed:73:f4:d0:30:27:70:41:db:
38:56:86:e7:d8:69:05:74:67:e7:c9:83:87:25:3e:
26:fe:bb:0b:e0:0a:66:b8:30:f6:cd:98:4d:35:be:
51:40:86:6c:8c:db:9e:6f:1c:01:a6:f0:25:88:e5:
44:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:89:35:38:0F:F6:40:6F:AD:E8:4E:39:E8:1E:23:D4:00:5D:1F:CD
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/R4k1OA_2QG-t6E456B4j1ABdH80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.128.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:ee:97:b4:6f:22:4e:90:91:a1:e4:a8:1c:a1:c0:48:16:ac:
75:47:44:29:f1:62:ee:10:40:9a:0f:70:f6:19:6b:d5:c3:76:
90:6e:72:b2:98:3c:c4:79:6c:ae:b4:df:a8:62:53:10:c0:c1:
c4:73:74:c1:12:7c:46:07:89:70:42:55:4f:19:2f:5a:1a:61:
70:e6:0c:f8:03:92:0f:ae:75:ea:a4:cd:e1:2f:06:bb:bf:68:
de:ee:3d:89:4b:e5:68:db:c4:9d:4e:0c:33:45:a6:0a:bf:00:
30:9b:62:6f:99:9b:27:06:71:f9:53:0c:dd:a3:76:53:23:6f:
fe:45:1d:30:a6:c9:be:d2:e5:e3:e9:83:39:18:01:c4:4b:70:
ab:f7:14:86:a5:ed:88:4f:fb:f5:e4:2d:b1:39:27:2c:c5:b2:
0c:a9:fb:b4:11:71:6b:8c:e5:8f:f2:1a:6d:e6:f5:6c:9a:fb:
69:6e:ac:66:34:f2:d8:44:a7:e4:ff:69:1d:ad:66:82:96:d7:
cf:c1:04:3d:c4:2d:ce:bb:12:21:cd:38:8a:c3:65:32:fd:91:
c9:ef:9e:c7:11:bc:bd:95:72:79:90:54:a9:a8:2c:69:6e:2a:
ce:fd:ac:4d:16:ef:30:d2:8e:86:36:0c:d8:17:4a:ca:53:a8:
fd:b7:af:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:19 2023 by rpki-client on console-ams.rpki-client.org