Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/dHfACA6NkYTIcAzMBdICi-mkGb8.roa
File: dHfACA6NkYTIcAzMBdICi-mkGb8.roa (raw, json)
Hash identifier: mGveKim+eVi7YYUMwe+pnqkwYRZKxoM7nwyUdc9IN5g=
Subject key identifier: 74:77:C0:08:0E:8D:91:84:C8:70:0C:CC:05:D2:02:8B:E9:A4:19:BF
Certificate issuer: /CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Certificate serial: 018570F0AAAEC6518FFB3A2C6E55550B2EB5
Authority key identifier: 3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/dHfACA6NkYTIcAzMBdICi-mkGb8.roa
Signing time: Mon 02 Jan 2023 05:24:58 +0000
ROA not before: Mon 02 Jan 2023 05:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50869
IP address blocks: 194.126.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:aa:ae:c6:51:8f:fb:3a:2c:6e:55:55:0b:2e:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Validity
Not Before: Jan 2 05:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7477c0080e8d9184c8700ccc05d2028be9a419bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:72:77:97:ab:bb:05:26:9b:19:4d:2c:72:a6:
27:e9:f6:30:1f:d8:54:ac:af:79:6e:84:81:4b:96:
d2:2e:6b:b9:6a:f2:46:ed:e9:6c:99:a4:65:a6:99:
11:2f:4b:fc:e6:b3:84:80:b4:a1:88:68:ef:78:dd:
b7:6c:fc:16:d5:e3:fe:92:a9:ff:ed:dd:c2:b3:67:
87:6f:73:78:41:6c:8e:19:77:18:29:9b:05:b4:60:
4f:9e:26:f2:47:ee:32:96:31:c4:ab:a7:0e:91:9a:
d1:e6:39:60:e1:56:25:59:7f:82:2f:98:0c:17:1a:
5e:07:dc:f1:92:4d:a7:e0:07:60:7f:9f:4a:c6:42:
e0:85:cd:45:5b:1f:ee:e8:2c:5c:b4:fb:a6:8b:26:
d2:05:20:62:8f:46:19:c3:56:94:84:fa:df:25:32:
f6:fe:dd:d4:a5:85:28:8f:4c:ad:43:a4:4c:6f:d8:
8c:10:c4:c0:73:58:95:17:f8:b1:2b:e9:75:32:e7:
2a:9e:0c:7f:8d:4e:1e:f4:29:c0:3a:ac:5c:98:0c:
b3:b2:67:dc:1d:7e:d9:4c:42:46:44:2c:4e:89:69:
fb:6c:46:97:49:a4:81:f5:e7:78:dd:dd:b3:70:10:
92:a3:30:04:bc:19:39:63:2a:ec:31:09:7a:a9:56:
29:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:77:C0:08:0E:8D:91:84:C8:70:0C:CC:05:D2:02:8B:E9:A4:19:BF
X509v3 Authority Key Identifier:
keyid:3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/dHfACA6NkYTIcAzMBdICi-mkGb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/OuFF_jt5sr9oqtvgB9721yrvKsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.235.0/24
Signature Algorithm: sha256WithRSAEncryption
03:4a:43:41:93:3c:5f:c6:f8:b8:7d:d6:ed:bc:d5:61:2b:df:
83:75:90:01:59:b6:64:26:7e:a8:ac:1a:0e:7d:9b:14:57:82:
d3:be:e3:03:8b:00:2a:f5:12:94:c7:98:19:9e:1b:93:39:27:
a9:0c:79:d5:7e:5e:e0:96:ac:2d:f1:d2:ba:bc:b5:14:85:b9:
6d:7f:b8:98:45:97:bd:c1:2a:d2:9f:f9:47:5e:bd:be:0b:7d:
4d:4b:e3:dd:2f:45:e8:70:65:3c:0d:1f:d4:19:e6:c9:8d:46:
51:6b:23:fe:d0:61:92:70:98:99:e9:78:4e:3f:d4:eb:2d:2e:
39:a8:ae:0e:40:30:6d:1c:04:60:d6:25:e2:36:61:2d:94:f2:
55:a3:7d:be:73:3e:f4:b9:c3:7d:14:f8:3c:83:34:75:5b:32:
50:d6:45:e2:29:cc:fd:ee:06:42:df:e0:a6:f4:3e:e4:30:01:
03:da:cd:f9:48:14:8e:8c:c2:88:7c:8d:35:9e:d8:6a:ab:f8:
95:51:55:e6:35:05:bd:10:b9:f6:ea:b3:76:07:d2:07:1c:62:
80:a5:8d:09:8a:ee:e1:72:62:87:8f:15:66:23:5c:ff:c1:d4:
d0:d5:10:0f:50:5c:ce:09:b5:5b:6a:7c:1f:a3:6f:cf:08:f3:
35:ed:60:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:48 2024 by rpki-client on console-fra.rpki-client.org