Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/_I-COUmbZ4zJS9FFzol5Q1Mp4mU.roa
File: _I-COUmbZ4zJS9FFzol5Q1Mp4mU.roa (raw, json)
Hash identifier: PqxtpB21Dz9wzjbC+OQbLrhJr06dGER40DvoDkWc07A=
Subject key identifier: FC:8F:82:39:49:9B:67:8C:C9:4B:D1:45:CE:89:79:43:53:29:E2:65
Certificate issuer: /CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Certificate serial: 018572C3712FD604C4293F42DE3D757081C9
Authority key identifier: EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/_I-COUmbZ4zJS9FFzol5Q1Mp4mU.roa
Signing time: Mon 02 Jan 2023 13:54:49 +0000
ROA not before: Mon 02 Jan 2023 13:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15987
IP address blocks: 194.39.186.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:71:2f:d6:04:c4:29:3f:42:de:3d:75:70:81:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Validity
Not Before: Jan 2 13:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc8f8239499b678cc94bd145ce8979435329e265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b5:a6:b6:67:0b:81:98:80:10:ee:64:2a:ce:
3f:3c:b7:01:28:06:7d:ae:3c:51:ca:b7:b1:19:6b:
f0:6a:4e:00:99:30:5c:46:bc:fc:8c:81:da:cc:7e:
9c:dd:91:2b:72:73:1a:09:c9:3e:89:36:e6:6f:97:
14:aa:85:a3:62:c8:f4:d4:4a:db:f6:f6:32:15:95:
62:53:0e:05:5d:11:55:16:3d:a2:5b:78:71:aa:25:
89:b7:02:02:30:93:41:42:01:77:7a:8f:e6:89:5f:
bb:21:26:dc:60:4f:3a:82:5e:e7:16:e8:63:59:78:
88:52:0f:d3:a6:8e:be:ca:f8:d7:6c:d5:45:41:1b:
87:7c:00:08:cd:55:9c:db:32:cf:16:5e:c9:ac:94:
33:d2:52:ae:ff:02:d3:2b:12:2c:ff:51:bf:6a:d4:
fd:18:0a:6c:6f:19:bb:fd:7f:6d:cf:a0:85:32:ca:
1b:5c:37:a9:01:bd:51:6a:ad:28:14:76:b1:7e:36:
5d:52:68:55:88:05:6a:91:ce:6d:ec:29:e2:bd:e9:
65:e1:24:e2:f8:9b:9b:0c:a6:88:ab:f8:cb:a2:62:
dc:36:24:b0:3d:85:26:2c:14:04:cc:66:83:84:5d:
8e:65:f4:ad:dd:01:ea:4d:fd:3a:8b:cd:7b:98:a0:
2e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:8F:82:39:49:9B:67:8C:C9:4B:D1:45:CE:89:79:43:53:29:E2:65
X509v3 Authority Key Identifier:
keyid:EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/_I-COUmbZ4zJS9FFzol5Q1Mp4mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.186.0/24
Signature Algorithm: sha256WithRSAEncryption
65:3f:6e:3e:f8:2b:3c:fc:fd:1c:7b:ce:ef:38:20:42:0c:ed:
ea:47:83:5d:16:d3:95:7a:f6:da:10:1e:27:5b:d0:04:ec:c1:
75:1f:c9:4c:74:6f:cd:f5:81:c3:50:b9:8a:04:35:c0:d6:45:
84:e1:7f:89:13:3c:bd:7c:5a:0f:b5:0d:a8:8e:78:e3:e1:43:
01:e4:59:d7:fc:90:1e:83:ac:0d:d8:a0:d3:c4:73:7f:9a:56:
d1:b3:9d:0a:ce:d1:c4:ef:0a:fe:1d:9b:18:ac:f5:26:ca:d4:
07:d1:6d:d0:84:b4:59:d4:53:77:08:71:f2:95:c3:c0:c2:09:
4a:53:a3:6c:58:19:73:a2:91:e2:53:b9:1e:16:00:ea:ae:5c:
d2:3f:ec:2d:95:fd:55:0a:72:e3:30:19:b3:e2:0a:11:06:3f:
e4:1d:7e:69:a1:5b:3d:be:91:e1:06:e0:e5:85:ca:93:47:e3:
c1:14:05:df:01:d0:ea:17:a3:70:7f:b0:45:d7:72:ef:15:5d:
75:c3:f6:4d:f6:b9:a9:4e:5e:89:31:a9:ce:7b:0b:03:40:4d:
79:66:39:75:0e:0e:6a:6d:35:f3:8a:a0:b9:81:ef:de:ea:77:
19:1e:50:9f:af:87:61:d5:62:05:76:41:01:a3:f2:4b:ff:fc:
2c:f7:08:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:28 2024 by rpki-client on console-ams.rpki-client.org