Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/jGtHT-SGl88RkGDansDKUNfeHWU.roa
File: jGtHT-SGl88RkGDansDKUNfeHWU.roa (raw, json)
Hash identifier: +3w1eumyUAr5epdRuSeNyIlV2bFV+8EI5HMyZ+b1UEw=
Subject key identifier: 8C:6B:47:4F:E4:86:97:CF:11:90:60:DA:9E:C0:CA:50:D7:DE:1D:65
Certificate issuer: /CN=53f8bacc3659dcb3389aa47e3664a5f8284e00af
Certificate serial: 01857246E942E69B2D04D73ADF5540BF32EF
Authority key identifier: 53:F8:BA:CC:36:59:DC:B3:38:9A:A4:7E:36:64:A5:F8:28:4E:00:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_i6zDZZ3LM4mqR-NmSl-ChOAK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/jGtHT-SGl88RkGDansDKUNfeHWU.roa
Signing time: Mon 02 Jan 2023 11:38:47 +0000
ROA not before: Mon 02 Jan 2023 11:38:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207309
IP address blocks: 194.30.186.0/24 maxlen: 24
2a10:3d80::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:e9:42:e6:9b:2d:04:d7:3a:df:55:40:bf:32:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f8bacc3659dcb3389aa47e3664a5f8284e00af
Validity
Not Before: Jan 2 11:38:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c6b474fe48697cf119060da9ec0ca50d7de1d65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1f:b1:d8:18:e9:72:b8:0e:86:27:9c:fa:23:
ea:e3:ff:36:86:47:ea:84:ff:8a:22:d1:f5:3d:bb:
ae:97:ad:cc:52:98:eb:f8:5b:3d:3d:db:bb:70:6c:
7d:49:65:78:64:79:a7:45:14:ec:61:88:10:df:0b:
f8:7f:f9:60:9c:1a:1e:f9:91:88:c4:e4:a0:eb:ed:
40:04:63:da:97:51:ea:5d:05:67:37:32:9f:a3:de:
65:88:c8:79:d1:a1:bb:b2:0b:cc:8d:d4:04:28:87:
22:4b:d1:47:e7:71:8b:fa:cb:32:ab:86:71:f1:86:
bb:0e:c9:04:49:00:af:9e:f7:47:cb:d4:46:87:62:
75:a1:6a:54:31:49:ab:f3:23:63:d5:c0:0e:0d:ce:
b0:35:13:22:1a:98:d1:90:27:3c:ca:81:84:27:17:
41:c7:25:01:b2:63:bd:f0:c8:b8:8a:eb:0b:9e:df:
7b:c3:82:9d:1d:10:85:79:36:e6:2a:14:6e:6f:2c:
8f:9d:41:b3:06:36:c9:bc:6e:27:ef:80:93:99:8f:
33:3b:bb:6d:69:0f:f5:a9:1c:19:d7:1f:04:0c:50:
fa:ef:85:0f:fa:c5:a3:04:80:72:00:38:d7:53:33:
2b:c5:4e:b1:05:6d:6a:76:e4:58:72:c3:e2:45:f7:
49:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:6B:47:4F:E4:86:97:CF:11:90:60:DA:9E:C0:CA:50:D7:DE:1D:65
X509v3 Authority Key Identifier:
keyid:53:F8:BA:CC:36:59:DC:B3:38:9A:A4:7E:36:64:A5:F8:28:4E:00:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_i6zDZZ3LM4mqR-NmSl-ChOAK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/jGtHT-SGl88RkGDansDKUNfeHWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/b35d6a-8bd4-42bd-abdd-15107bca45b5/1/U_i6zDZZ3LM4mqR-NmSl-ChOAK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.186.0/24
IPv6:
2a10:3d80::/29
Signature Algorithm: sha256WithRSAEncryption
6a:83:b8:e4:75:b4:c3:6b:69:24:f8:86:9e:69:16:a9:5c:9a:
2e:d0:d5:68:bf:a5:64:b5:54:e9:b5:d1:a1:4e:83:5f:79:97:
1b:dd:a7:fa:65:16:c7:87:db:06:d1:ef:5a:8a:57:7d:25:83:
cf:93:ea:b6:02:8a:e3:35:dd:e9:11:c7:7a:44:62:1c:b3:52:
61:a5:8d:6a:37:b7:43:f6:16:aa:e1:a3:31:8c:f3:90:39:84:
12:63:14:75:75:b1:b7:6f:47:46:71:20:db:d9:f5:93:4e:25:
8d:cf:b8:7e:9d:21:ba:b4:13:88:6b:29:23:69:09:4d:64:28:
ae:07:ca:48:da:81:31:25:a3:bf:c9:b1:5d:0a:47:fa:41:a0:
c9:09:70:e2:a0:37:a9:5c:c1:64:b9:7b:ca:f4:4f:33:55:b2:
26:37:79:85:5a:2e:7e:51:99:20:1e:41:3a:c6:04:ee:7d:df:
79:6c:90:2e:25:ed:1c:25:6d:fa:62:d3:42:fa:9f:82:08:c6:
34:a4:70:dc:74:90:fb:91:8a:f7:0d:d9:b6:63:40:ba:fa:1e:
95:c5:e3:60:ed:2d:d8:0c:de:03:7d:3a:43:74:51:eb:2b:36:
da:85:e0:11:84:ec:5a:36:9d:29:5f:18:a2:42:74:b8:5b:84:
17:18:dc:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:32 2024 by rpki-client on console-fra.rpki-client.org