Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/AfZ0Fznojv4USBStgC-2QHlZtRo.roa
File: AfZ0Fznojv4USBStgC-2QHlZtRo.roa (raw, json)
Hash identifier: zJDz1ls+5RYosgb2SK0ovBHZvUOeEvYnHjbEnJTfPRA=
Subject key identifier: 01:F6:74:17:39:E8:8E:FE:14:48:14:AD:80:2F:B6:40:79:59:B5:1A
Certificate issuer: /CN=0a81fe9059f6820bc18ad5802f2f1fca77d254b7
Certificate serial: 0186979CDFB4844A964477994918973726E9
Authority key identifier: 0A:81:FE:90:59:F6:82:0B:C1:8A:D5:80:2F:2F:1F:CA:77:D2:54:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CoH-kFn2ggvBitWALy8fynfSVLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/AfZ0Fznojv4USBStgC-2QHlZtRo.roa
Signing time: Tue 28 Feb 2023 10:41:25 +0000
ROA not before: Tue 28 Feb 2023 10:41:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50247
IP address blocks: 194.1.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:9c:df:b4:84:4a:96:44:77:99:49:18:97:37:26:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a81fe9059f6820bc18ad5802f2f1fca77d254b7
Validity
Not Before: Feb 28 10:41:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01f6741739e88efe144814ad802fb6407959b51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:29:13:14:88:ba:1b:d8:7c:59:64:4a:30:1e:
63:48:c8:6e:16:a5:18:e4:9b:c2:44:48:54:b1:36:
cf:ef:cb:88:9d:3b:f7:ea:05:10:d9:8c:03:5b:2c:
f8:70:bf:70:6c:b0:a8:a7:ed:f2:4e:d1:00:bd:e0:
02:3c:a4:46:f5:70:09:55:6f:f2:7b:fe:60:8a:a7:
15:db:65:d1:a6:25:0c:00:22:8f:43:e6:8c:93:13:
a0:14:9c:56:a2:6a:49:00:eb:04:46:78:35:0a:ce:
da:15:d0:a1:2c:55:04:7f:ae:d1:e4:10:03:34:fb:
37:06:22:ec:96:e8:ae:cd:15:34:e7:f3:5b:a9:f1:
47:14:ad:5d:ee:8d:78:94:03:4f:a2:7c:1e:4a:6e:
cb:23:17:12:8e:ab:31:43:6d:8c:2d:2c:63:1a:c2:
f5:63:76:5e:47:d7:9e:8d:10:76:ec:41:82:39:26:
a4:80:e2:3b:0d:6d:98:1f:1e:57:49:f2:1c:68:d8:
2b:ab:76:d8:0a:e5:2f:be:45:dc:4c:57:32:64:6b:
51:ad:3b:7b:aa:74:95:f3:29:e2:2b:2b:3a:37:2e:
d9:40:5d:cf:b6:e1:41:59:ff:ac:14:5d:a3:3f:33:
62:27:19:ec:6f:95:e6:7b:50:db:29:ce:8f:c4:01:
6d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F6:74:17:39:E8:8E:FE:14:48:14:AD:80:2F:B6:40:79:59:B5:1A
X509v3 Authority Key Identifier:
keyid:0A:81:FE:90:59:F6:82:0B:C1:8A:D5:80:2F:2F:1F:CA:77:D2:54:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CoH-kFn2ggvBitWALy8fynfSVLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/AfZ0Fznojv4USBStgC-2QHlZtRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4984df-6db2-4e0a-91f8-bf05acc82bd1/1/CoH-kFn2ggvBitWALy8fynfSVLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:29:4c:ad:c3:cb:e7:60:74:dc:5a:0b:f7:67:3b:98:19:63:
03:c5:c2:1f:62:b3:46:c7:5e:7c:e7:a4:59:e4:1c:3a:d6:53:
2a:d8:c0:59:e3:56:42:36:2e:62:ff:24:a7:34:ae:1f:6d:61:
35:4a:43:a1:78:89:51:84:1f:17:b0:70:63:ef:a1:e8:24:cf:
21:7b:cb:3c:56:58:49:31:9d:17:8e:ba:80:d1:8a:52:8d:55:
cd:8f:b8:5b:4e:e6:ec:b2:52:b1:4e:d3:5f:f4:32:ae:00:b6:
3f:78:00:91:db:1c:c5:95:79:ac:b1:26:e1:12:7f:ec:cf:23:
68:e4:00:ca:cc:26:82:e9:88:2e:13:95:0d:e7:30:88:c1:0e:
63:c2:da:61:7d:96:27:81:e1:2c:64:b8:8a:d5:95:14:b3:b0:
9a:eb:a9:78:52:91:b2:e7:cd:30:e2:57:0e:66:e6:0c:9f:94:
7d:52:c1:76:1e:83:ca:31:55:6b:39:5c:76:e8:94:62:a2:c7:
99:6f:36:6f:31:b3:e5:82:ab:48:7f:f2:86:8a:19:36:9a:96:
11:6b:67:44:93:12:c9:b8:a0:68:64:2d:3b:8d:3a:09:99:40:
eb:45:c3:13:be:3e:de:fe:d9:5a:bc:e4:8c:fe:22:4b:78:f9:
05:1c:d4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:16 2024 by rpki-client on console-ams.rpki-client.org