Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/tBFET8D-cUqksizjuUwfMVBRamA.roa
File: tBFET8D-cUqksizjuUwfMVBRamA.roa (raw, json)
Hash identifier: m2lJgNwbbxvb5PfZTBkr7qV8tKllX8n992t4eGY06vc=
Subject key identifier: B4:11:44:4F:C0:FE:71:4A:A4:B2:2C:E3:B9:4C:1F:31:50:51:6A:60
Certificate issuer: /CN=e5a1e519c9ce77575d89f07cf718f3b0cc86ec55
Certificate serial: 0185709515D66509CA67D4666AF96281DCDB
Authority key identifier: E5:A1:E5:19:C9:CE:77:57:5D:89:F0:7C:F7:18:F3:B0:CC:86:EC:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aHlGcnOd1ddifB89xjzsMyG7FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/tBFET8D-cUqksizjuUwfMVBRamA.roa
Signing time: Mon 02 Jan 2023 03:44:56 +0000
ROA not before: Mon 02 Jan 2023 03:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199117
IP address blocks: 194.33.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:15:d6:65:09:ca:67:d4:66:6a:f9:62:81:dc:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1e519c9ce77575d89f07cf718f3b0cc86ec55
Validity
Not Before: Jan 2 03:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b411444fc0fe714aa4b22ce3b94c1f3150516a60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1c:4b:8e:af:a8:52:d1:e5:64:78:52:27:b9:
38:41:91:7b:c5:8a:3b:c5:2b:f3:1b:b8:8a:01:dc:
91:be:f6:ff:79:e9:9e:e4:82:87:e3:e5:d1:b2:1a:
16:44:04:ac:c6:d6:9b:95:14:df:ce:c0:d4:4f:8c:
f5:43:36:b9:fc:18:d7:f0:2e:54:14:83:52:df:73:
c8:a9:60:fd:1d:46:4c:44:93:40:f7:90:5a:1a:da:
30:c6:e5:ea:6f:fa:0e:68:0a:71:5c:e3:64:a9:b2:
b5:34:b8:8b:7f:c7:c5:2a:d7:8b:c0:67:73:5f:6c:
07:d8:f1:1d:e7:7e:9b:91:d6:5c:c5:2b:78:24:ba:
95:b5:a9:99:fc:a0:0e:e2:29:13:9a:10:c1:d1:16:
4b:dc:a8:c7:04:5c:c6:a1:60:16:33:83:fc:76:d6:
ce:32:f0:a5:8a:86:97:69:ac:5d:6d:34:2d:ad:ca:
e4:fc:0b:9e:94:5b:80:83:6d:7e:f7:64:c5:57:ec:
e2:10:db:d5:61:29:66:23:21:b5:60:38:c3:6e:fe:
5e:c7:d0:60:48:ea:cc:56:4d:70:a2:5e:62:16:e7:
62:4d:b1:65:8d:0c:e9:c5:94:72:03:88:45:78:43:
13:ad:0f:f9:bb:09:2c:3c:75:c5:9e:ff:ae:30:d9:
75:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:11:44:4F:C0:FE:71:4A:A4:B2:2C:E3:B9:4C:1F:31:50:51:6A:60
X509v3 Authority Key Identifier:
keyid:E5:A1:E5:19:C9:CE:77:57:5D:89:F0:7C:F7:18:F3:B0:CC:86:EC:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aHlGcnOd1ddifB89xjzsMyG7FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/tBFET8D-cUqksizjuUwfMVBRamA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2cc22c-2d71-46d6-9215-38c5b0c4f152/1/5aHlGcnOd1ddifB89xjzsMyG7FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.78.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:b1:51:40:89:52:1d:d0:7f:00:5e:13:fe:87:b0:2e:32:c9:
a9:69:47:53:b4:6f:5c:d4:79:89:b3:28:0f:dc:7c:fc:72:f4:
85:64:c9:c7:7f:63:0c:b4:05:f1:63:42:72:b5:0b:87:4c:4f:
88:fe:43:33:ed:69:9f:ce:af:9c:36:1f:f8:3e:73:6d:28:9f:
f1:6c:e0:87:25:f9:a8:31:84:cf:72:2d:36:b5:a0:b7:3a:bc:
3e:7c:21:a4:93:49:ae:c9:db:4e:73:21:c8:6d:95:74:13:d3:
59:00:0b:a6:e5:6a:07:0b:ac:ea:5b:5b:5f:72:3f:13:fb:e9:
bf:f2:67:23:0e:0f:70:ca:08:db:e7:1f:59:90:0f:36:1f:01:
5f:81:7f:a5:5c:77:46:be:59:08:c2:aa:d6:42:ba:5a:e0:e3:
91:38:d4:99:ea:81:58:ae:ee:93:36:84:77:54:3b:a6:c3:4a:
91:63:0e:fb:7e:74:f0:13:9a:29:e8:11:84:7a:1f:ee:0e:ba:
06:e0:57:5a:15:d0:0c:7c:93:3d:d3:2f:80:14:6b:ce:a0:2d:
d5:71:7b:67:d5:69:36:40:aa:5c:d6:33:6b:67:2b:c9:2c:ac:
f4:3f:49:87:6a:bd:27:3e:6c:69:52:b0:c6:85:57:53:b0:0e:
25:f8:b2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:59 2024 by rpki-client on console-ams.rpki-client.org