Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/KjeV_mXE58clWaGJtAokdDHxcJ0.roa
File: KjeV_mXE58clWaGJtAokdDHxcJ0.roa (raw, json)
Hash identifier: aIOhv3zfjOFQYAJcLwugww0+r6HYL13QMUQh3V/Sh0c=
Subject key identifier: 2A:37:95:FE:65:C4:E7:C7:25:59:A1:89:B4:0A:24:74:31:F1:70:9D
Certificate issuer: /CN=d8a711b135dfd5f34bbb98c10036f8d8f0c1731f
Certificate serial: 01877AC2499C8A0F6D45386E6DC572B59920
Authority key identifier: D8:A7:11:B1:35:DF:D5:F3:4B:BB:98:C1:00:36:F8:D8:F0:C1:73:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KcRsTXf1fNLu5jBADb42PDBcx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/KjeV_mXE58clWaGJtAokdDHxcJ0.roa
Signing time: Thu 13 Apr 2023 13:16:05 +0000
ROA not before: Thu 13 Apr 2023 13:16:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59504
IP address blocks: 194.26.210.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7a:c2:49:9c:8a:0f:6d:45:38:6e:6d:c5:72:b5:99:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a711b135dfd5f34bbb98c10036f8d8f0c1731f
Validity
Not Before: Apr 13 13:16:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a3795fe65c4e7c72559a189b40a247431f1709d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a3:43:b3:81:59:29:be:6f:88:da:2f:ce:fd:
dd:c5:f3:d9:17:77:39:aa:b5:e3:dc:e5:8b:a4:c3:
09:67:b5:bf:c2:f8:96:37:d1:37:5d:ce:40:5f:7b:
71:30:1c:b0:0f:53:65:db:ee:22:84:cf:a8:2f:4f:
fe:2d:db:3f:7a:27:13:36:9f:35:b1:84:af:89:eb:
ba:4c:4e:aa:6e:22:6e:2c:6b:52:9a:be:bc:61:7f:
ca:a1:65:6f:3a:7c:8d:6e:8d:89:e0:fd:65:77:2e:
5e:e4:f2:4b:29:b7:a7:06:28:75:22:43:51:4d:6c:
35:32:ef:5f:43:00:1a:d6:4e:53:92:50:67:71:8b:
54:d2:5a:ae:a4:d3:c5:6b:2a:ad:b3:24:3e:c7:bb:
f4:69:3d:ce:6e:b8:85:e5:d2:91:62:86:32:40:c6:
43:5a:28:97:5b:03:0b:fd:14:b6:9c:92:54:f5:4c:
1e:84:9a:99:71:07:e9:3b:f2:44:03:2b:50:43:3c:
63:fd:ab:cc:b3:cc:3f:7a:32:3a:c5:b9:36:a6:3b:
fb:ed:d7:bd:71:44:6f:60:a1:da:c5:03:47:d3:67:
35:8b:c1:43:8c:32:0c:bc:4f:ac:f5:94:62:63:0b:
1c:49:b9:3f:4b:86:43:f0:2b:ec:c9:ee:d1:d6:55:
44:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:37:95:FE:65:C4:E7:C7:25:59:A1:89:B4:0A:24:74:31:F1:70:9D
X509v3 Authority Key Identifier:
keyid:D8:A7:11:B1:35:DF:D5:F3:4B:BB:98:C1:00:36:F8:D8:F0:C1:73:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KcRsTXf1fNLu5jBADb42PDBcx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/KjeV_mXE58clWaGJtAokdDHxcJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/7d3fbf-3fbc-4025-aab1-f108e5552720/1/2KcRsTXf1fNLu5jBADb42PDBcx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.210.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:24:49:34:c2:12:60:11:10:4b:ab:ff:4d:b6:aa:93:0c:3f:
c5:8a:93:9f:0b:d6:2f:5f:ef:26:2c:d2:f7:ff:39:15:d6:04:
7b:21:87:8b:be:a6:d0:e9:fe:ba:83:e1:e6:6f:8a:2b:08:14:
ab:96:fa:6b:79:e0:c4:2c:87:2d:d3:63:ed:60:d8:45:25:e1:
06:7f:b4:11:6b:5f:46:18:03:31:13:1a:3e:87:13:70:42:10:
ff:58:52:85:92:10:99:91:95:4d:29:83:2b:35:cc:45:99:73:
e1:69:54:aa:6d:2f:06:b7:d9:08:f7:4b:1f:b6:6e:a1:dc:9e:
76:94:fb:78:27:15:a5:aa:17:21:11:9a:c9:a5:92:1a:22:38:
5f:b5:aa:b6:42:16:72:3e:22:16:44:9c:ef:44:1a:96:97:e2:
c2:b3:23:fb:42:72:8c:c3:97:ce:48:0b:66:3f:cf:f8:cb:02:
3c:86:cc:05:ae:11:85:e8:0d:0a:25:dd:13:b9:14:14:bb:8c:
ad:bf:09:ea:48:03:4b:9e:8f:c1:62:4d:1a:61:92:2a:61:27:
4c:34:df:60:82:0b:48:48:d3:2b:f8:14:19:f0:7d:a3:04:a2:
d9:29:fc:02:75:16:20:3c:4d:4f:42:28:eb:7b:16:a6:aa:be:
87:78:42:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 2 08:01:30 2023 by rpki-client on console-fra.rpki-client.org