Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b3ce1b-f1f7-40cb-b3d0-6d20f5c197f6/1/D9R7NTr_Uws0gpkJxlXid4cIT3Q.roa
File: D9R7NTr_Uws0gpkJxlXid4cIT3Q.roa (raw, json)
Hash identifier: LJRT0x9v2JCxgqjrKzaEa6rmdW7xICNjX3A6U8PcP18=
Subject key identifier: 0F:D4:7B:35:3A:FF:53:0B:34:82:99:09:C6:55:E2:77:87:08:4F:74
Certificate issuer: /CN=09b0110ae4b81794a508831fcb5edcc8d5fd2f1b
Certificate serial: 0185720C3F17DFB789E7C4C23F1E50C7E95F
Authority key identifier: 09:B0:11:0A:E4:B8:17:94:A5:08:83:1F:CB:5E:DC:C8:D5:FD:2F:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CbARCuS4F5SlCIMfy17cyNX9Lxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b3ce1b-f1f7-40cb-b3d0-6d20f5c197f6/1/D9R7NTr_Uws0gpkJxlXid4cIT3Q.roa
Signing time: Mon 02 Jan 2023 10:34:43 +0000
ROA not before: Mon 02 Jan 2023 10:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212807
IP address blocks: 194.15.40.0/24 maxlen: 24
2a0f:7480::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:3f:17:df:b7:89:e7:c4:c2:3f:1e:50:c7:e9:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09b0110ae4b81794a508831fcb5edcc8d5fd2f1b
Validity
Not Before: Jan 2 10:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd47b353aff530b34829909c655e27787084f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:52:16:9e:b0:72:9b:a9:77:bb:bd:9d:5e:b9:
54:e5:90:8a:76:14:a8:43:79:ad:db:8e:4d:79:74:
21:8b:e9:94:05:63:42:c7:41:d3:8e:2f:fb:af:10:
eb:7b:70:a8:8c:2a:20:f4:67:3e:04:f4:be:23:de:
ee:03:8c:88:03:7a:13:4a:ca:3f:1c:f6:52:53:2e:
24:16:a0:cc:f3:2f:72:4a:8d:d3:e8:b8:81:10:32:
41:88:5f:e8:ba:d1:1f:90:74:03:09:df:67:81:e2:
53:e0:bd:66:72:d7:fb:bc:9b:c0:05:1b:99:78:1a:
6b:68:a3:9d:67:4c:77:b1:1a:bf:93:7f:b3:4b:4b:
06:ab:fa:02:87:ef:bb:4a:d5:0a:f5:4d:a7:b2:9d:
78:1b:2d:54:73:4f:9d:7a:23:fd:79:cc:46:8c:38:
ce:b1:7f:62:fc:6f:8b:ab:1a:ab:c1:66:a8:ca:65:
8d:50:72:71:71:45:8d:8a:16:55:d3:27:c1:8a:cb:
7d:25:74:00:48:dc:a2:bc:10:3c:07:ae:07:d6:52:
c7:b4:1a:65:ce:9d:4d:1a:dc:07:a8:9c:3d:5f:db:
8e:5f:d1:49:29:c7:a5:eb:a6:10:ec:11:3f:42:8f:
ab:df:9a:0c:24:01:ba:f8:62:c1:9b:09:bf:64:ca:
7f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D4:7B:35:3A:FF:53:0B:34:82:99:09:C6:55:E2:77:87:08:4F:74
X509v3 Authority Key Identifier:
keyid:09:B0:11:0A:E4:B8:17:94:A5:08:83:1F:CB:5E:DC:C8:D5:FD:2F:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CbARCuS4F5SlCIMfy17cyNX9Lxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b3ce1b-f1f7-40cb-b3d0-6d20f5c197f6/1/D9R7NTr_Uws0gpkJxlXid4cIT3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b3ce1b-f1f7-40cb-b3d0-6d20f5c197f6/1/CbARCuS4F5SlCIMfy17cyNX9Lxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.40.0/24
IPv6:
2a0f:7480::/29
Signature Algorithm: sha256WithRSAEncryption
7d:5b:ee:04:94:cc:72:c8:02:56:9b:3e:3f:16:cb:ab:4e:f1:
cc:41:58:57:f3:fd:2b:e2:0a:6d:bf:49:7d:aa:89:ad:5a:f7:
79:ba:66:41:57:82:14:63:f1:13:09:4c:33:64:c7:07:22:07:
50:4b:d2:64:e6:a9:55:92:88:5c:98:e4:73:a4:3b:b7:fa:53:
5e:a4:0b:1d:3e:b5:10:d1:e7:9a:5e:ac:c3:a9:84:d9:39:bc:
aa:be:99:0e:1c:37:d0:7c:5c:a5:48:38:63:4b:4a:91:bb:13:
71:54:85:7f:ce:47:a0:1b:5b:b6:5b:c0:e1:5d:99:7e:20:54:
84:81:62:1c:b7:73:29:08:32:f2:93:a4:e7:a9:1e:ef:d7:f9:
7a:e5:46:ac:ed:9a:e2:a3:43:3e:74:5f:c7:a4:42:21:b0:28:
be:ec:86:d6:e7:ed:5c:cd:0c:a6:7e:8f:77:a8:09:6a:2b:79:
6c:b7:83:1d:15:f6:e1:a7:ad:1c:81:bc:93:42:b7:ad:f9:ef:
5d:36:72:5e:95:47:ea:65:16:75:11:a7:17:65:1e:c0:04:9e:
35:0c:f1:17:e9:17:3e:a9:08:fd:12:dd:b9:52:b8:19:54:6b:
fe:a2:ef:d1:11:5d:10:f8:23:45:c6:fb:9a:f9:e8:ec:4b:d2:
ea:f6:1c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:39 2024 by rpki-client on console-fra.rpki-client.org