Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/XwWtuqNXsk9PkwuHiiO_U4QyTRM.roa
File: XwWtuqNXsk9PkwuHiiO_U4QyTRM.roa (raw, json)
Hash identifier: khwzhrYH7YSlHjSWC2+b8thlYSH/tMORyq2iqVz2Ny4=
Subject key identifier: 5F:05:AD:BA:A3:57:B2:4F:4F:93:0B:87:8A:23:BF:53:84:32:4D:13
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 01856B9364131EB65242E9152068E5025917
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/XwWtuqNXsk9PkwuHiiO_U4QyTRM.roa
Signing time: Sun 01 Jan 2023 04:24:59 +0000
ROA not before: Sun 01 Jan 2023 04:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197106
IP address blocks: 94.31.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:64:13:1e:b6:52:42:e9:15:20:68:e5:02:59:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: Jan 1 04:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f05adbaa357b24f4f930b878a23bf5384324d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:78:ac:28:db:fb:e8:b3:df:d6:54:41:60:5f:
d4:12:d7:e3:e0:2f:f7:c6:6d:79:03:db:d4:61:ee:
48:38:e1:9c:82:f0:91:bc:c3:29:f6:ab:35:36:dd:
a6:62:8c:a9:6e:86:67:c2:dd:c2:53:cc:3a:44:36:
78:18:15:db:97:7c:c3:c3:f2:6c:ef:04:18:4e:81:
16:13:a5:bd:d7:35:76:87:7d:f1:28:56:85:13:8f:
d1:9a:fc:6a:71:e2:c7:2a:1b:2f:52:e9:bf:c3:ec:
3f:6c:07:25:a5:7f:1f:5d:6a:de:93:21:5b:91:93:
61:ee:28:89:d0:91:d5:58:76:39:da:db:e4:3e:a2:
42:3e:65:0c:4a:d2:b6:6f:39:f4:4c:bf:9e:1f:28:
8e:30:34:43:fd:ff:b6:cf:f0:a6:19:b1:9b:51:0d:
bf:e5:d8:2d:50:7c:1e:05:9a:89:45:27:f4:71:b5:
4d:af:23:59:75:49:66:63:74:4b:ff:93:50:a3:7a:
50:9b:4e:3f:79:18:5b:f9:02:4c:a4:2f:cd:c2:08:
1a:a7:fb:ed:a4:b9:31:3b:69:c4:e7:50:ec:e9:5f:
d7:19:92:76:5a:57:b1:ef:b7:c3:08:76:a4:98:8b:
39:67:1e:ce:81:06:da:25:e7:e2:7f:dd:b5:99:a0:
c9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:05:AD:BA:A3:57:B2:4F:4F:93:0B:87:8A:23:BF:53:84:32:4D:13
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/XwWtuqNXsk9PkwuHiiO_U4QyTRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.31.3.0/24
Signature Algorithm: sha256WithRSAEncryption
13:bd:a4:b3:51:5b:aa:1c:8a:7c:a3:53:b7:e7:94:18:37:b4:
e6:51:2e:8c:1f:53:c4:f3:50:68:2e:84:20:74:e5:61:16:8f:
a6:14:e2:84:d7:aa:c7:e8:f4:e8:4b:9a:4b:f9:c6:7c:fb:60:
66:3b:c9:2a:a7:87:e7:ac:4b:96:b9:3f:1a:34:d6:24:75:fe:
49:0d:c2:69:06:8b:5f:27:0b:31:7c:1b:15:3e:e9:3c:3c:32:
81:5a:48:ae:dc:fb:13:88:b8:0a:10:4b:48:f0:92:07:04:83:
f0:fc:be:bf:32:ac:b1:a3:8d:bd:21:9e:69:1a:2a:fe:e4:fd:
33:c3:ce:be:6b:22:cb:eb:c8:bf:7a:41:2e:88:f6:72:3d:7c:
c8:71:6e:df:20:97:74:50:57:eb:4b:c2:9d:94:5e:15:dc:87:
ae:13:ae:d3:c9:79:15:b5:de:81:b7:23:ee:76:6a:a7:6c:40:
b0:b2:06:42:52:ec:80:cd:20:cc:c2:91:76:da:0b:68:23:72:
ae:a8:04:cd:73:07:58:b4:b0:ee:58:a9:1f:8a:e0:68:65:2a:
37:61:bd:1a:48:12:4d:90:bf:54:a7:39:ee:c6:95:b4:f0:62:
c2:5a:df:a8:75:dd:5d:63:2d:29:81:09:10:bf:9e:b0:b9:78:
38:a6:0c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:46 2024 by rpki-client on console-fra.rpki-client.org