Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/cdQ9u1Uu_SmOkNESYpUEZUqsnnM.roa
File: cdQ9u1Uu_SmOkNESYpUEZUqsnnM.roa (raw, json)
Hash identifier: LBb+eo33TsYqwpKZGt9Q53xFkF+uXk5fhyFhAb4SeMc=
Subject key identifier: 71:D4:3D:BB:55:2E:FD:29:8E:90:D1:12:62:95:04:65:4A:AC:9E:73
Certificate issuer: /CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Certificate serial: 0189785BC370AEED3354EFA136AC08F3F915
Authority key identifier: CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/cdQ9u1Uu_SmOkNESYpUEZUqsnnM.roa
Signing time: Fri 21 Jul 2023 12:10:26 +0000
ROA not before: Fri 21 Jul 2023 12:10:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33915
IP address blocks: 194.35.73.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:5b:c3:70:ae:ed:33:54:ef:a1:36:ac:08:f3:f9:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Validity
Not Before: Jul 21 12:10:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71d43dbb552efd298e90d112629504654aac9e73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e7:0b:9e:a4:15:f1:be:40:9c:00:bf:c3:06:
a2:bc:81:6f:74:6b:95:a2:09:02:cf:b8:04:66:52:
9c:9d:19:1c:37:9d:d3:a9:f3:75:5a:54:ca:2e:9d:
e6:07:00:f7:a6:fd:cc:c7:bb:3a:00:b3:ca:cb:58:
aa:7e:52:50:97:72:9c:0a:15:c7:db:02:aa:4d:45:
f7:eb:54:5c:eb:27:25:8c:56:14:04:32:11:e1:ea:
ef:d7:13:c0:6d:80:e2:62:4b:c8:19:9f:ff:f5:6a:
88:ff:0e:be:19:2d:40:83:a2:d5:3c:0a:f2:03:89:
f0:0a:e9:0a:0a:53:0f:72:d8:63:eb:29:8b:e4:68:
cc:13:22:33:66:fc:95:6b:0a:99:6a:e3:bb:45:28:
dd:fe:79:ad:8b:b0:50:4d:48:6b:fa:7e:c6:04:02:
8f:4a:f5:e1:85:7f:fa:e3:5c:f0:56:eb:03:65:b4:
03:72:d2:16:3f:44:69:5a:5a:4d:8e:a7:29:66:3e:
23:a6:31:e7:be:72:8c:58:1b:ef:d9:f2:6f:8f:7b:
1d:fe:f1:e0:18:1d:da:e8:89:d1:08:8d:fe:17:ac:
2f:4b:8d:f9:6d:bd:b8:e5:24:c3:f4:c4:b1:3d:27:
17:68:c7:d3:fd:31:33:da:56:4f:32:f0:da:36:0c:
5b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D4:3D:BB:55:2E:FD:29:8E:90:D1:12:62:95:04:65:4A:AC:9E:73
X509v3 Authority Key Identifier:
keyid:CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/cdQ9u1Uu_SmOkNESYpUEZUqsnnM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.73.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:22:64:87:57:00:1a:32:4c:27:79:c7:80:ec:73:27:21:fd:
c8:6b:4a:69:80:3e:68:c9:44:2a:ca:07:f1:9c:83:c7:20:7e:
8f:8c:9f:c1:65:1a:01:76:fe:9e:a8:01:41:67:db:55:17:e4:
ee:75:a3:b4:18:a9:bf:9e:6c:6d:42:14:6b:a5:c5:16:af:15:
a1:34:b0:cc:83:4d:da:6c:0c:fd:04:5e:96:50:03:af:ab:65:
69:61:97:8b:d8:8c:22:d3:dd:41:39:99:82:73:8d:8f:05:dc:
79:97:5c:86:65:6c:2a:59:a1:7e:ca:c8:48:8e:86:71:53:ab:
63:3f:87:4f:3b:7f:44:0d:52:38:54:1b:02:3b:d3:9b:a9:da:
b8:68:27:20:3b:8e:a2:d4:0a:57:d2:46:a4:a6:ac:fc:29:2e:
1c:1d:59:ed:98:d4:ab:76:74:37:90:a5:bd:d0:77:7e:48:e7:
fd:7d:0f:6d:ca:5f:5e:c0:54:5f:ea:1c:37:aa:c8:3d:d4:bf:
a4:7e:84:f6:41:50:58:be:a0:3a:dc:d8:80:30:26:d1:d7:c6:
82:ee:69:df:b6:57:2d:c6:7c:1d:89:5a:5d:6b:42:f3:89:84:
9c:17:ab:53:43:25:6f:c9:d5:6e:30:2b:25:da:2a:57:85:63:
40:89:99:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 09:30:01 2023 by rpki-client on console-fra.rpki-client.org