Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/vSwG4oHrcBzW0Rkv9lNRARVYgww.roa
File: vSwG4oHrcBzW0Rkv9lNRARVYgww.roa (raw, json)
Hash identifier: +DbubYbqeakZkkp9gg8dpphbnW0ZvFXQcwnZ+IDsPhM=
Subject key identifier: BD:2C:06:E2:81:EB:70:1C:D6:D1:19:2F:F6:53:51:01:15:58:83:0C
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 01856DDD77B16F2BF310F4F13B7F0966D915
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/vSwG4oHrcBzW0Rkv9lNRARVYgww.roa
Signing time: Sun 01 Jan 2023 15:05:08 +0000
ROA not before: Sun 01 Jan 2023 15:05:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211924
IP address blocks: 194.147.105.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:77:b1:6f:2b:f3:10:f4:f1:3b:7f:09:66:d9:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 1 15:05:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd2c06e281eb701cd6d1192ff65351011558830c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:21:8d:c0:aa:5a:15:86:1a:e5:6a:d8:18:7b:
99:e1:24:bb:43:3c:c7:d6:d0:98:ff:cc:f0:ff:e2:
c7:e9:41:1d:65:b3:a1:86:bc:6a:d2:7d:3d:83:33:
84:ba:a9:25:ef:1e:d9:66:70:4e:e3:8b:7a:4f:74:
9f:83:a6:1d:2e:ea:1d:8e:ec:a7:35:b0:f3:34:ee:
c5:ae:2a:a2:57:39:6c:14:9d:dc:af:03:e1:68:8c:
2a:74:7a:f1:2a:c1:4c:a9:60:74:89:a8:e0:9c:9a:
fb:50:e0:43:0d:38:c9:cb:8a:f9:d4:4a:55:f9:75:
c5:2a:ba:00:c1:ad:2a:36:ac:5e:a4:10:83:92:c8:
4d:f6:a4:96:25:61:90:3c:00:93:21:2c:f3:6d:94:
5b:86:a5:b3:63:c6:52:c9:3d:79:7d:9d:61:68:72:
96:24:ab:02:dc:ea:f9:36:aa:94:41:33:6c:63:9b:
6d:55:8a:66:c3:a9:a0:81:85:79:37:60:ab:c2:dc:
d3:e0:08:34:b8:fe:22:44:26:fb:0c:36:2c:29:f0:
cb:27:14:9b:63:1d:9a:4e:7a:f5:cc:2d:62:00:35:
14:41:0d:8b:b3:29:e6:ce:3f:3f:19:e2:d7:f7:84:
21:f6:d9:03:0c:e1:ed:57:e4:c9:14:39:04:08:7c:
b1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2C:06:E2:81:EB:70:1C:D6:D1:19:2F:F6:53:51:01:15:58:83:0C
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/vSwG4oHrcBzW0Rkv9lNRARVYgww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.105.0/24
Signature Algorithm: sha256WithRSAEncryption
27:64:07:48:1b:f9:f4:65:40:58:2a:f5:f5:92:a8:25:46:32:
ff:26:48:5c:ee:25:a5:82:97:32:15:11:b9:cc:d3:09:ba:42:
91:95:96:54:a5:6f:e4:89:68:0b:c6:da:b8:19:1b:da:40:64:
98:21:44:e3:da:af:b7:4c:92:48:d1:fd:a9:55:cb:36:22:a9:
9a:11:2a:7f:3e:cb:ad:f0:3c:64:ac:31:23:83:3e:74:67:e5:
63:c5:8b:06:46:04:e4:70:f5:90:f0:bf:99:0b:fd:eb:9a:18:
73:93:ea:34:51:61:61:0c:8e:35:0b:f6:f3:25:ae:19:2c:36:
70:ec:08:4d:19:39:4c:a9:f8:c1:43:16:0c:42:7c:fa:79:27:
f2:69:f6:36:87:e9:40:6f:80:0f:0b:b0:de:aa:8b:0d:02:18:
d6:a1:65:fc:08:e3:1a:55:c9:fe:08:3e:bd:b5:87:b7:bb:67:
d6:d4:fa:14:1e:f0:9f:b7:a7:99:7c:c7:11:29:e8:73:a7:0f:
1d:4e:ae:3e:58:b0:fa:51:2f:ce:09:d1:0c:86:3d:15:16:15:
9b:bf:e4:03:d2:ff:2c:1b:20:6f:7f:6e:e9:fd:0c:4c:b5:a3:
fd:c3:5c:5c:da:fb:a9:ed:79:88:55:63:da:6b:ed:e5:b1:83:
ee:14:a5:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:23 2024 by rpki-client on console-fra.rpki-client.org