Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/9xDKfuavd7XJtonE-Bgym3G_2ds.roa
File: 9xDKfuavd7XJtonE-Bgym3G_2ds.roa (raw, json)
Hash identifier: 9epQMukX+9p6QPmPz3eiVkMVKtfe4bnFJoAGh11vEF8=
Subject key identifier: F7:10:CA:7E:E6:AF:77:B5:C9:B6:89:C4:F8:18:32:9B:71:BF:D9:DB
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 018572B43CEFA1C81C301D1C6F18C8511DA5
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/9xDKfuavd7XJtonE-Bgym3G_2ds.roa
Signing time: Mon 02 Jan 2023 13:38:12 +0000
ROA not before: Mon 02 Jan 2023 13:38:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 194.1.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 12:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:3c:ef:a1:c8:1c:30:1d:1c:6f:18:c8:51:1d:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Jan 2 13:38:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f710ca7ee6af77b5c9b689c4f818329b71bfd9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:3f:23:e3:72:3f:85:0e:f9:f1:79:52:0c:ee:
ec:3a:e4:6e:7d:a0:28:e0:b4:0c:1f:16:b7:9a:11:
fb:08:2a:04:ea:3a:f3:61:66:08:4f:b0:c7:62:c5:
8f:f8:03:75:40:3e:54:6f:9f:39:d4:ee:d9:84:cc:
16:e0:ff:a2:61:b1:fd:5b:2e:2e:2d:e6:20:fe:09:
ef:a9:fa:21:ba:b3:0d:cf:bb:23:83:ff:24:c4:f5:
28:5d:b6:51:fb:32:e1:ab:a0:91:85:5e:28:9d:03:
0a:f8:40:d0:fa:6e:74:fc:ee:72:78:58:66:6f:cd:
14:f4:a4:d1:fd:25:3a:e4:b3:f3:8f:92:36:4e:4f:
2c:c9:6f:c7:df:83:06:a7:74:66:58:8c:ac:e5:69:
13:1d:33:61:b0:f6:54:d2:63:5f:36:bf:64:d4:62:
1d:51:ca:1f:5b:c9:f0:29:65:cd:3b:0e:5f:87:67:
3c:b2:f3:1e:6e:13:b0:7c:e5:b9:31:ac:96:c2:42:
ec:86:bb:32:29:d7:c6:42:0c:a4:a3:38:4e:d4:aa:
75:32:c5:4f:f9:10:23:ec:8c:7f:e7:42:41:1c:b0:
de:39:e8:e4:73:ef:91:32:fb:6a:e8:46:83:b6:d8:
eb:02:81:53:2b:dc:99:a2:12:31:71:69:4f:d5:97:
c3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:10:CA:7E:E6:AF:77:B5:C9:B6:89:C4:F8:18:32:9B:71:BF:D9:DB
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/9xDKfuavd7XJtonE-Bgym3G_2ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.131.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e4:21:d6:45:c3:87:b5:56:69:84:48:86:5d:6f:35:67:71:
0b:7d:01:92:7f:95:62:3a:af:8f:6e:f2:42:2f:2d:d2:ca:dd:
bd:42:b6:89:6f:6e:c3:b3:9e:01:ec:aa:29:ea:c7:4e:cf:6d:
0c:9a:c1:e2:8f:56:d5:b9:d9:0a:5d:08:21:88:6d:87:22:87:
bb:72:0b:b3:0b:4a:38:1c:48:2a:3c:55:59:fb:c7:fb:81:58:
9a:e5:32:45:aa:48:05:09:7f:66:b2:a8:ce:a4:d7:05:9b:59:
98:0e:58:f1:b6:9e:95:1f:e3:50:58:97:72:08:df:bc:75:de:
dc:b5:3f:50:ae:63:94:65:d0:c8:e2:83:0d:a9:a7:16:34:cb:
50:06:b8:ce:24:7f:c3:e1:38:47:2c:6e:a2:cb:65:a8:b8:2c:
a5:4c:1e:e9:19:c9:c4:38:b0:79:1b:88:c0:c5:e8:cb:16:88:
1d:82:12:4a:4a:bf:c2:24:0d:34:e6:ed:35:41:ae:29:99:7e:
8d:ae:a2:14:0d:4e:4b:31:f7:79:ed:6d:c1:7b:55:84:b5:1c:
c6:60:fd:b0:b4:c4:b4:84:27:a0:a1:06:1e:42:cf:d6:aa:f4:
5e:fb:d8:f3:63:6c:ac:99:69:68:bb:59:64:69:b6:e9:8a:ea:
64:23:80:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org