Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/VmG7z25FapyFoyecZ249KisUL2s.roa
File: VmG7z25FapyFoyecZ249KisUL2s.roa (raw, json)
Hash identifier: 1j/495MCxJrgz9OIsl7tllCmc9/m0HrG4/0cDt37JbM=
Subject key identifier: 56:61:BB:CF:6E:45:6A:9C:85:A3:27:9C:67:6E:3D:2A:2B:14:2F:6B
Certificate issuer: /CN=0533048d6ff424bf19215771cf257bc15b67ee15
Certificate serial: 0186FE54AC7E7FF9EB0A37A4CD076317A4E6
Authority key identifier: 05:33:04:8D:6F:F4:24:BF:19:21:57:71:CF:25:7B:C1:5B:67:EE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/VmG7z25FapyFoyecZ249KisUL2s.roa
Signing time: Mon 20 Mar 2023 09:23:27 +0000
ROA not before: Mon 20 Mar 2023 09:23:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12611
IP address blocks: 194.169.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:54:ac:7e:7f:f9:eb:0a:37:a4:cd:07:63:17:a4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0533048d6ff424bf19215771cf257bc15b67ee15
Validity
Not Before: Mar 20 09:23:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5661bbcf6e456a9c85a3279c676e3d2a2b142f6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:8f:36:04:57:30:72:15:a2:e0:e3:d6:54:
32:d0:4c:64:0d:de:16:ed:33:8a:f1:95:3a:29:f3:
aa:b2:05:c1:ed:b7:97:5d:3f:7a:a1:bb:56:eb:a1:
7f:11:ee:ed:98:0b:f1:69:10:cf:5e:a7:36:3d:44:
98:c7:6f:a7:e6:4f:f2:3c:4a:55:3e:56:61:78:60:
35:82:c2:ce:5b:2b:98:71:65:27:fb:f5:71:5b:74:
e2:ca:a4:26:6e:38:8e:ab:d3:b2:3b:e8:74:d5:11:
ca:ed:65:87:8e:9a:5b:26:61:df:e7:fb:72:06:7a:
8b:c0:d0:26:af:a9:3d:8e:39:c8:08:92:96:3f:bf:
57:1c:27:d9:c3:49:68:07:d3:38:f5:61:f2:c2:89:
b0:fa:b1:44:c2:03:75:15:2b:61:dd:50:ec:64:0f:
8e:9b:73:8e:be:2a:b0:59:42:a2:5e:82:fe:d5:1b:
6b:9f:43:74:b8:23:93:6b:55:1e:84:9b:14:7d:e0:
39:98:c7:42:4d:07:c5:90:f9:aa:20:29:db:55:e0:
e0:9b:fe:1b:fd:80:47:19:83:d7:ae:63:00:37:3d:
3e:47:f7:4f:be:81:4a:65:b4:48:59:d4:7c:7a:55:
74:3d:72:e5:8c:82:ec:f4:4d:5e:36:bf:d9:aa:55:
e3:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:61:BB:CF:6E:45:6A:9C:85:A3:27:9C:67:6E:3D:2A:2B:14:2F:6B
X509v3 Authority Key Identifier:
keyid:05:33:04:8D:6F:F4:24:BF:19:21:57:71:CF:25:7B:C1:5B:67:EE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/VmG7z25FapyFoyecZ249KisUL2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/3e4899-aacc-4efd-93df-a61a98359c4a/1/BTMEjW_0JL8ZIVdxzyV7wVtn7hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.251.0/24
Signature Algorithm: sha256WithRSAEncryption
21:55:69:ae:50:2d:39:3a:a9:9a:5f:1c:e4:aa:c5:44:2c:3c:
eb:7d:f6:82:53:b9:c5:54:23:55:16:6b:d9:fa:39:39:f7:09:
14:ff:0f:ce:81:11:6d:18:fc:31:35:ae:77:50:d9:13:5d:7f:
b4:c6:83:d4:6b:85:8c:34:df:d0:1e:47:96:cf:70:45:96:a3:
f8:dc:ab:8e:75:39:db:1f:7b:65:4a:0a:d6:08:32:9f:72:f8:
3a:c1:e8:85:07:60:4e:5c:32:8e:b1:db:92:65:4a:66:14:89:
67:b5:2b:ef:31:50:06:8d:ea:7e:e2:3c:dc:61:af:b8:33:4c:
be:68:c8:fd:a5:82:4b:74:0e:6c:d1:bd:83:4d:cd:e3:c4:6b:
de:29:30:62:12:de:22:95:2d:c7:bd:f0:ba:48:ed:1e:e8:39:
e5:a7:c1:58:48:1f:c5:ed:75:79:cc:a6:63:0e:28:55:68:a2:
83:c5:da:42:1f:eb:63:77:82:c8:4a:9a:ba:b6:03:fd:ea:2d:
20:be:0b:2d:b5:d6:7a:d8:3a:f0:dd:39:74:fc:0a:2c:f8:fe:
5e:ba:8f:cf:ce:3b:bd:35:89:20:23:c0:72:53:d2:9b:66:57:
7c:37:c8:03:aa:12:e9:f8:c2:96:ad:db:79:77:15:94:2d:14:
73:11:14:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:11 2024 by rpki-client on console-fra.rpki-client.org