Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/t3JU6aiRh3_z9HUZnod03S01hus.roa
File: t3JU6aiRh3_z9HUZnod03S01hus.roa (raw, json)
Hash identifier: kFpnWItGDHdyCcg4qySUtHyiE3UsrF9fYdGuWdIud54=
Subject key identifier: B7:72:54:E9:A8:91:87:7F:F3:F4:75:19:9E:87:74:DD:2D:35:86:EB
Certificate issuer: /CN=da60f646bc7f488caf5ebdca8072c09d63f61a21
Certificate serial: 018570D549A01CF7A7F4FFD1370860C415B5
Authority key identifier: DA:60:F6:46:BC:7F:48:8C:AF:5E:BD:CA:80:72:C0:9D:63:F6:1A:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/t3JU6aiRh3_z9HUZnod03S01hus.roa
Signing time: Mon 02 Jan 2023 04:55:04 +0000
ROA not before: Mon 02 Jan 2023 04:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204155
IP address blocks: 194.31.120.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:49:a0:1c:f7:a7:f4:ff:d1:37:08:60:c4:15:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da60f646bc7f488caf5ebdca8072c09d63f61a21
Validity
Not Before: Jan 2 04:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b77254e9a891877ff3f475199e8774dd2d3586eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c5:dc:f3:8e:89:dc:80:65:4e:91:a1:17:89:
20:e1:68:2d:2e:6d:c3:6a:b9:48:64:11:0f:1d:44:
2c:17:f4:bc:62:e5:fd:09:c7:f3:cc:f8:1f:d6:57:
d0:e6:6c:fa:df:8e:53:6a:56:b9:79:59:da:32:d5:
77:c9:a9:cb:6e:42:17:9f:9c:9c:67:f2:7f:87:77:
b4:52:e0:d4:89:b6:a8:12:4c:79:77:24:2a:e2:54:
64:d4:f5:30:7f:c6:00:92:04:3f:18:21:f2:b6:fd:
7d:6b:df:87:76:6f:46:dd:d2:3f:6e:4a:15:e6:68:
fd:0e:ef:06:11:bc:87:de:12:8e:a4:5d:49:13:a7:
6f:b6:27:e4:04:17:a4:0f:19:5a:c4:16:47:2f:cb:
a3:b4:46:63:f5:af:e0:f2:86:2a:bd:21:f2:e8:3b:
8d:db:0c:59:19:1c:48:fe:6d:29:12:93:2b:e1:c2:
4e:0c:b5:14:55:6e:a2:78:96:53:01:f6:40:fc:a2:
08:5f:bb:93:48:59:d3:db:bf:e2:9d:cc:46:14:c4:
e6:1b:cf:56:45:94:bc:8a:cf:66:67:74:15:1a:4a:
fe:40:3a:8e:61:da:37:d2:ea:53:fb:7b:65:b8:cd:
6f:d7:d9:49:7e:20:f7:f5:53:26:67:c9:76:e6:10:
a8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:72:54:E9:A8:91:87:7F:F3:F4:75:19:9E:87:74:DD:2D:35:86:EB
X509v3 Authority Key Identifier:
keyid:DA:60:F6:46:BC:7F:48:8C:AF:5E:BD:CA:80:72:C0:9D:63:F6:1A:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/t3JU6aiRh3_z9HUZnod03S01hus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/0d0d11-8b0c-4360-ac61-dab9f8ba8fb6/1/2mD2Rrx_SIyvXr3KgHLAnWP2GiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.120.0/21
Signature Algorithm: sha256WithRSAEncryption
05:27:0a:e3:7d:fc:5e:18:e3:36:bf:1b:e5:b8:0c:70:ec:2c:
c7:4b:3c:72:74:20:98:2b:35:72:a1:f3:4f:a5:d4:66:1e:db:
c5:61:10:55:a4:aa:04:b0:bb:74:b5:9a:4e:54:3b:4c:23:65:
8a:ac:4e:ff:e6:5d:83:6f:dd:a9:eb:27:6c:b8:a5:de:3f:5f:
7d:33:cd:b6:d1:35:b5:68:98:79:fe:4a:f9:2d:9b:8f:5f:da:
9c:d5:62:de:a0:28:49:ce:55:a0:f1:38:e6:5e:34:48:60:aa:
1e:6e:dd:90:8d:88:17:3e:a3:a4:72:0e:a0:09:4a:34:1a:e4:
2e:a8:4e:2d:0f:ee:16:07:ca:6a:57:88:72:53:67:10:d6:f4:
92:54:41:2f:0a:2b:8e:bb:42:ee:9b:1f:b0:eb:db:10:e7:2e:
8a:49:2c:eb:0e:a2:c6:6d:ad:9c:52:11:e0:d5:1d:5f:8f:33:
19:73:41:ab:10:c1:33:b8:23:b7:5b:c8:46:a5:c3:61:23:8b:
e1:42:13:71:81:46:20:fa:5f:ff:e8:b1:7e:b1:96:f4:fb:32:
aa:c1:57:09:18:62:4e:7a:80:68:d6:8b:89:cd:56:8b:9a:c2:
dd:4e:a0:c4:ee:41:9f:f0:b1:a2:82:78:7a:c8:a3:01:94:21:
4c:b8:31:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:39 2024 by rpki-client on console-fra.rpki-client.org