Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/sjQXeDZehIBMIgWS0dI0An7Y3kw.roa
File: sjQXeDZehIBMIgWS0dI0An7Y3kw.roa (raw, json)
Hash identifier: 72LOeBDjAhwKY8lOriJYAp2hjmel9mi21vWqkfP3ySo=
Subject key identifier: B2:34:17:78:36:5E:84:80:4C:22:05:92:D1:D2:34:02:7E:D8:DE:4C
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01865B8C76FEA7CF6398F94495F37980A104
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/sjQXeDZehIBMIgWS0dI0An7Y3kw.roa
Signing time: Thu 16 Feb 2023 18:46:17 +0000
ROA not before: Thu 16 Feb 2023 18:46:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33387
IP address blocks: 194.28.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5b:8c:76:fe:a7:cf:63:98:f9:44:95:f3:79:80:a1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Feb 16 18:46:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2341778365e84804c220592d1d234027ed8de4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:44:8e:38:65:c7:eb:14:5b:2d:8f:8b:17:
79:ee:74:b1:7e:38:c0:bd:c4:dd:40:aa:9c:7d:14:
42:3e:af:55:67:f5:7e:18:2f:b5:25:f7:8c:48:43:
c2:15:bc:b4:5b:f6:ba:ff:c9:ff:86:d0:e5:4d:ff:
0b:9c:bd:ef:86:8f:fe:ee:19:c7:b1:e0:29:d0:5f:
69:4c:60:59:ac:55:ac:ee:70:f2:59:25:bf:0d:4d:
79:6c:ea:5b:29:5f:d0:c6:8a:30:03:a4:71:72:68:
ee:6f:93:9a:29:38:ab:61:cd:15:22:83:23:37:6f:
30:16:cf:e5:cb:9f:0d:9b:ba:4d:f5:84:70:a4:a7:
2c:b9:3c:72:58:1f:b3:3c:26:05:e9:6b:bf:7e:56:
9a:6b:24:3a:ae:b0:a9:41:6b:bc:7a:9b:e5:a2:79:
e8:19:93:72:3b:b6:65:92:02:c8:64:95:3d:3e:57:
f2:e4:61:ff:6a:04:3f:3d:7a:b1:f1:25:76:8d:c8:
30:0b:4d:7b:f7:f2:41:d2:47:f8:e8:03:ab:62:1e:
27:bf:c7:df:9e:0a:b2:bd:09:8b:b5:31:b3:c4:c0:
da:c5:49:54:c8:e5:90:c6:32:fa:cc:e2:e5:e3:15:
95:25:3d:7b:56:45:d5:f9:b1:ac:fd:75:b7:df:c7:
c4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:34:17:78:36:5E:84:80:4C:22:05:92:D1:D2:34:02:7E:D8:DE:4C
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/sjQXeDZehIBMIgWS0dI0An7Y3kw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.128.0/24
Signature Algorithm: sha256WithRSAEncryption
36:27:e9:6f:a9:ad:28:1c:38:99:21:69:66:fc:36:48:dd:97:
71:96:95:d7:d3:c0:84:38:8a:22:93:b4:26:17:5f:c3:b9:df:
18:e6:74:98:a5:59:ca:df:35:2e:b5:6d:3f:69:91:2f:57:7d:
e0:df:24:2c:96:81:ed:89:8f:5e:ab:45:e4:ea:8b:29:36:29:
51:0d:f5:da:78:81:af:b2:b0:6b:d2:30:da:7b:52:3a:fd:6e:
ee:2b:36:45:d2:a4:0b:38:68:e6:44:b8:07:9c:0c:5a:7e:5a:
0e:51:4d:91:ca:42:01:cc:16:3a:29:d8:a9:46:00:65:53:b9:
eb:35:50:2f:0f:98:59:12:3d:e2:ff:98:11:e0:95:13:9f:64:
2a:b2:54:19:7c:f9:82:db:89:3f:b4:e3:e7:58:eb:68:6c:1a:
82:61:88:3c:79:6c:f0:62:b0:84:e2:68:75:12:7c:01:a8:9e:
e6:79:ec:a4:e4:4e:3a:5f:45:33:cd:98:9f:c7:a5:f2:d9:af:
48:33:90:ca:86:53:82:99:c9:72:6b:4a:a2:a2:ea:54:56:d9:
36:7d:23:81:cc:75:19:e5:97:18:09:67:9f:0b:ef:3f:b7:ef:
b6:32:9c:16:88:71:8d:12:33:2f:f4:28:e7:a2:cd:4d:31:9b:
ee:f8:15:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org