Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/L_ERaz0eKn-KKUkAJcx5qOxCfuY.roa
File: L_ERaz0eKn-KKUkAJcx5qOxCfuY.roa (raw, json)
Hash identifier: uA81qK9nWgjVkZ1lS+WKSaQWqtVFhUnUAkryKauxUrQ=
Subject key identifier: 2F:F1:11:6B:3D:1E:2A:7F:8A:29:49:00:25:CC:79:A8:EC:42:7E:E6
Certificate issuer: /CN=9b55a642379ce578f39ec0d10603dcfa83f6e34e
Certificate serial: 01856E14585D0C9C6884AB9585E76105FE1C
Authority key identifier: 9B:55:A6:42:37:9C:E5:78:F3:9E:C0:D1:06:03:DC:FA:83:F6:E3:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m1WmQjec5XjznsDRBgPc-oP2404.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/L_ERaz0eKn-KKUkAJcx5qOxCfuY.roa
Signing time: Sun 01 Jan 2023 16:05:05 +0000
ROA not before: Sun 01 Jan 2023 16:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59497
IP address blocks: 194.8.144.0/24 maxlen: 24
194.8.145.0/24 maxlen: 24
194.8.144.0/22 maxlen: 22
194.8.147.0/24 maxlen: 24
194.8.146.0/24 maxlen: 24
188.191.233.0/24 maxlen: 24
188.191.232.0/21 maxlen: 21
188.191.232.0/24 maxlen: 24
188.191.237.0/24 maxlen: 24
188.191.235.0/24 maxlen: 24
188.191.236.0/24 maxlen: 24
188.191.234.0/24 maxlen: 24
188.191.238.0/24 maxlen: 24
188.191.239.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:58:5d:0c:9c:68:84:ab:95:85:e7:61:05:fe:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b55a642379ce578f39ec0d10603dcfa83f6e34e
Validity
Not Before: Jan 1 16:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ff1116b3d1e2a7f8a29490025cc79a8ec427ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b3:85:eb:3c:10:9a:b1:db:35:7e:4f:a3:a0:
f2:13:04:b9:75:95:af:2d:85:42:cb:a1:86:5c:97:
13:b5:0f:c5:58:a1:13:3f:1e:d2:ad:7d:0c:65:85:
06:5e:27:aa:1f:c1:8f:c0:5d:d6:f4:c9:52:1e:93:
fd:03:c2:a4:0d:ed:df:f6:7d:30:9a:55:47:dc:49:
f1:89:ba:62:e0:73:c2:f8:dd:86:75:44:f0:ae:1b:
58:e0:da:fd:4d:57:cc:4b:cc:30:46:e2:93:fe:23:
89:3c:31:c9:95:89:21:38:4a:c2:2e:6b:65:17:00:
d5:28:ad:3f:56:ac:e4:66:99:b6:02:31:ed:ab:2a:
f8:f2:18:53:4b:fb:36:3a:12:22:03:49:f1:72:9d:
ed:7a:31:cd:f4:42:d1:54:ab:f6:c1:56:74:41:23:
11:1f:55:f7:6f:72:09:9f:d2:c0:21:98:71:a0:ac:
1a:6c:56:95:5f:2a:79:5e:91:f7:86:fb:6f:82:c9:
d0:93:34:b5:96:63:e2:14:6b:1e:79:ca:01:a4:f7:
a1:03:40:84:82:90:20:31:b6:f3:d7:e1:b2:50:73:
07:65:ac:53:bc:c4:2e:45:77:f2:61:48:01:d3:e9:
fc:5a:51:0f:67:42:f8:ed:70:73:20:6f:ab:00:f6:
57:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F1:11:6B:3D:1E:2A:7F:8A:29:49:00:25:CC:79:A8:EC:42:7E:E6
X509v3 Authority Key Identifier:
keyid:9B:55:A6:42:37:9C:E5:78:F3:9E:C0:D1:06:03:DC:FA:83:F6:E3:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m1WmQjec5XjznsDRBgPc-oP2404.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/L_ERaz0eKn-KKUkAJcx5qOxCfuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/be92b5-5717-4046-ac1c-8222e251a91b/1/m1WmQjec5XjznsDRBgPc-oP2404.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.232.0/21
194.8.144.0/22
Signature Algorithm: sha256WithRSAEncryption
00:78:ac:2e:70:fb:0e:ec:6a:9a:bf:1b:1d:99:a3:87:44:81:
de:34:13:69:b9:a3:24:34:b7:ac:31:84:2b:2d:de:c6:94:55:
14:9b:e8:55:4a:bc:42:e8:83:f1:4a:b4:d4:b4:22:9b:1f:09:
b8:2c:41:c4:48:95:ab:8e:7e:92:a7:8c:8f:a7:ac:97:5e:d9:
be:f3:7a:fb:d9:ce:f4:0b:a1:ff:01:d8:63:c1:e7:cc:6f:ce:
f7:b1:dc:b6:27:5d:36:8f:f6:dc:ca:f5:95:65:a7:61:a8:72:
6b:47:cc:fc:4b:94:0a:a4:ff:6a:ef:ad:e6:d2:b5:a1:12:eb:
10:a1:64:67:a1:c8:84:a6:b0:3f:8b:88:4c:0d:da:98:aa:ca:
fc:ec:64:b1:a8:13:9f:d0:58:3a:92:ca:63:48:a7:c9:ff:eb:
b4:67:79:c5:ae:72:92:b0:21:6c:c0:49:c2:d0:c9:fb:e8:72:
83:f3:64:83:e2:a4:f3:a7:4b:4d:a0:2f:ca:88:d5:47:56:b3:
18:7f:ec:d0:84:cb:f4:12:ea:e6:89:72:6e:f1:74:ba:ca:a9:
8a:0d:66:4e:0b:c4:dd:01:8e:54:aa:11:f1:89:88:ba:ab:e5:
00:cc:aa:f8:44:04:b2:b7:12:48:41:e7:cb:52:da:a2:28:28:
37:5b:bd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:28 2024 by rpki-client on console-ams.rpki-client.org