Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/VRbIPGS3qJeZKNyjUZfTKbTZQVI.roa
File: VRbIPGS3qJeZKNyjUZfTKbTZQVI.roa (raw, json)
Hash identifier: A0DwX4LSaHwmLWVRUhcIasTHbe2nSBTpsd3/nxKDQVU=
Subject key identifier: 55:16:C8:3C:64:B7:A8:97:99:28:DC:A3:51:97:D3:29:B4:D9:41:52
Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Certificate serial: 01856F1DB3D0401FA48629425C73049AB83E
Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/VRbIPGS3qJeZKNyjUZfTKbTZQVI.roa
Signing time: Sun 01 Jan 2023 20:54:55 +0000
ROA not before: Sun 01 Jan 2023 20:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 194.8.123.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:b3:d0:40:1f:a4:86:29:42:5c:73:04:9a:b8:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Validity
Not Before: Jan 1 20:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5516c83c64b7a8979928dca35197d329b4d94152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:59:44:95:c3:e2:85:3a:38:47:57:77:02:09:
f1:05:31:60:c2:48:25:9d:99:8d:6d:4d:f7:d5:b8:
b5:e6:c4:85:03:e2:7a:0f:f6:24:e9:32:1a:50:8e:
bd:64:f6:0f:f9:f0:e5:bd:e2:e6:ad:e5:06:13:76:
d1:7f:9d:d4:45:5b:09:9e:37:b0:f7:2b:01:21:6c:
e9:a8:83:18:75:5c:f1:fb:2a:80:97:28:ea:ad:38:
24:67:da:2b:87:47:1c:eb:19:d6:66:10:f7:21:d1:
44:a0:2b:3d:57:e6:03:f4:76:bf:3f:a4:eb:9c:c8:
02:9d:a2:d4:2f:be:d9:b0:b4:2d:17:ae:d5:fb:56:
60:d7:cc:25:49:18:3c:c4:fb:37:62:05:2b:e0:c9:
7a:74:d9:7b:fb:df:f8:cb:23:63:fd:92:f8:8b:0c:
50:0f:ec:9f:9b:35:3d:21:09:da:8e:6e:ae:f3:b2:
9f:2a:04:25:85:d3:cc:50:09:83:8a:62:fb:b1:78:
d1:f8:f1:11:c0:65:6a:d3:d1:fc:27:cd:bf:72:aa:
df:ab:a0:59:6e:76:78:18:71:25:7d:33:d6:aa:cd:
90:8e:4c:86:45:30:da:7d:31:b8:93:b3:35:aa:76:
ea:37:4a:8e:32:2e:9e:df:67:bc:4e:70:39:e9:4c:
f9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:16:C8:3C:64:B7:A8:97:99:28:DC:A3:51:97:D3:29:B4:D9:41:52
X509v3 Authority Key Identifier:
keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/VRbIPGS3qJeZKNyjUZfTKbTZQVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.123.0/24
Signature Algorithm: sha256WithRSAEncryption
03:3e:2b:bb:33:f6:56:41:23:cf:01:d3:83:2c:f2:ab:2d:4a:
f9:7b:4a:10:6b:db:57:2b:b8:e5:ce:2e:43:af:da:ea:31:2e:
8b:35:df:d7:84:52:5e:90:0c:68:e7:45:ee:09:24:3e:ad:6b:
79:a7:d1:af:af:01:75:35:fb:57:4b:b1:2c:7a:85:cd:5b:67:
12:5a:9e:33:2d:40:9d:83:6f:b3:ee:86:b9:26:f4:b2:fb:46:
5b:bc:67:ea:de:98:70:73:19:e7:78:1f:4b:dc:d5:11:14:0a:
66:5e:76:0d:f0:b6:5b:68:6b:7b:7a:4e:e5:6e:f3:44:a1:1a:
bf:0b:9f:43:43:b9:04:19:50:75:09:18:33:a3:b7:c9:05:ff:
f3:fb:40:01:a3:eb:ed:0c:92:74:89:9d:cd:49:d2:db:f2:a8:
70:a0:99:44:c3:bb:1b:8d:33:5e:76:1d:57:0d:a6:90:ed:29:
27:b7:85:67:3f:a9:df:9d:97:d2:ce:f4:17:74:b4:58:f6:e8:
52:cf:ce:ec:fd:01:33:52:b0:3b:59:34:ec:30:8b:0b:5f:e4:
f6:78:ce:2a:c2:13:e6:49:25:97:ce:67:33:b6:fb:bb:a7:0b:
31:54:c4:66:c7:4c:93:7b:54:69:0a:a0:19:ae:80:08:c3:ee:
aa:9a:eb:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:44 2024 by rpki-client on console-fra.rpki-client.org