Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/LxJS4CuDZMBQJIvkH45UHvMUZ08.roa
File: LxJS4CuDZMBQJIvkH45UHvMUZ08.roa (raw, json)
Hash identifier: m4n9C2coRW+gm7l9PGhOIluw5KkOkolFVYTUV7f8wUM=
Subject key identifier: 2F:12:52:E0:2B:83:64:C0:50:24:8B:E4:1F:8E:54:1E:F3:14:67:4F
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 01856DDD6916B4AF80992AAE37CA03178C2A
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/LxJS4CuDZMBQJIvkH45UHvMUZ08.roa
Signing time: Sun 01 Jan 2023 15:05:04 +0000
ROA not before: Sun 01 Jan 2023 15:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31027
IP address blocks: 194.50.57.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:69:16:b4:af:80:99:2a:ae:37:ca:03:17:8c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jan 1 15:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f1252e02b8364c050248be41f8e541ef314674f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:dc:0c:fe:55:1c:3f:21:5a:ed:f8:8f:6d:
6c:02:02:74:03:9d:e6:4e:5d:96:79:6a:26:f5:a9:
e0:e1:ac:7f:67:51:24:ac:d1:bd:bc:c8:d4:a5:fe:
93:63:71:13:a6:91:81:39:8c:70:c5:e2:32:17:c9:
27:c8:d3:46:6b:47:15:90:61:c1:0b:23:1d:21:8f:
5c:fa:2d:09:0c:ee:89:9a:fa:b5:d8:10:0d:03:c1:
e5:9c:28:87:97:33:ba:bb:b1:ee:07:ff:40:36:31:
68:1b:73:41:71:0a:a8:a9:6c:e4:7c:22:68:35:1f:
bf:e8:ae:78:2f:1e:c1:52:b6:4b:5f:e5:be:47:1c:
60:62:00:b2:4b:14:01:a2:60:90:05:07:15:e1:79:
83:ab:00:19:fd:75:b1:63:ed:05:15:a1:b9:d7:a0:
fd:15:3f:49:19:6b:5f:17:d4:ae:ca:23:27:cb:d4:
fa:09:95:9e:10:dd:f8:d4:ba:11:92:df:49:94:51:
78:55:78:76:ad:c5:ed:30:f3:97:b0:f3:b3:45:0f:
37:6f:1f:ba:ca:e5:6a:97:55:7e:ff:77:ca:7d:72:
86:16:0e:51:ab:cd:7b:ec:6a:12:ef:62:1b:a1:25:
fd:48:3e:8e:2a:c2:24:ff:ea:78:9b:b4:50:8e:47:
aa:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:12:52:E0:2B:83:64:C0:50:24:8B:E4:1F:8E:54:1E:F3:14:67:4F
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/LxJS4CuDZMBQJIvkH45UHvMUZ08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.57.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:3e:30:c6:6a:06:d1:fe:9e:25:20:39:fe:95:fe:c2:26:91:
fe:f5:2b:bf:c2:54:83:64:59:8a:1f:1a:af:88:91:46:40:fb:
97:78:8e:26:dc:85:8d:4a:62:91:c3:c6:1e:61:66:78:5a:69:
bf:c7:d7:19:c1:ae:9c:55:66:37:2c:34:65:ad:72:6f:15:84:
03:67:8b:40:55:92:14:4b:05:e8:36:c8:db:6d:2b:41:cf:54:
3f:65:f3:8c:72:45:be:17:3e:0a:f5:d1:fd:b5:e1:93:97:8e:
ed:b0:67:72:c4:85:20:36:23:5b:8a:3c:29:aa:c9:cd:94:fe:
56:98:65:d6:29:5a:11:3f:92:5f:3a:3b:fd:fb:07:a9:f1:15:
56:68:7b:b7:56:1f:61:a3:44:a7:a0:f1:7f:e9:89:0c:09:99:
64:97:cd:91:75:fc:9e:ec:f8:3a:b4:5f:2a:f1:e1:00:66:fa:
01:5d:08:98:3a:39:0e:cc:13:dc:25:d2:2f:80:71:87:13:19:
e2:28:76:a7:24:5e:c0:8d:63:b0:b6:e5:d1:c5:0e:77:72:7e:
ff:dc:26:46:7e:79:f5:b9:a0:59:b0:4b:fa:a0:39:26:c9:3e:
18:e2:80:92:12:cc:e2:22:d6:60:17:76:2f:65:dd:b5:72:7c:
c5:1c:20:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:58 2024 by rpki-client on console-ams.rpki-client.org