Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/2zZOuElrDeB5VQSE1B5qNV-cAH4.roa
File: 2zZOuElrDeB5VQSE1B5qNV-cAH4.roa (raw, json)
Hash identifier: gMgZUVJmRFaw5dL8MHkiQ5RbvHEQg33Xnn1EG07OUNM=
Subject key identifier: DB:36:4E:B8:49:6B:0D:E0:79:55:04:84:D4:1E:6A:35:5F:9C:00:7E
Certificate issuer: /CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Certificate serial: 018BE908AC76E1AEAFCA6EBF99AF4F20B722
Authority key identifier: F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/2zZOuElrDeB5VQSE1B5qNV-cAH4.roa
Signing time: Sun 19 Nov 2023 19:22:21 +0000
ROA not before: Sun 19 Nov 2023 19:22:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203168
IP address blocks: 194.33.191.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:e9:08:ac:76:e1:ae:af:ca:6e:bf:99:af:4f:20:b7:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Validity
Not Before: Nov 19 19:22:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db364eb8496b0de079550484d41e6a355f9c007e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1c:1e:93:8e:c8:1f:7f:0b:f6:c1:80:7a:e6:
79:4d:95:7b:93:aa:aa:af:7f:b8:17:a9:0f:24:50:
9a:3c:4d:06:10:fa:4f:98:64:3d:72:08:b0:c7:69:
cf:ce:dc:4e:d9:10:a4:fa:bb:a8:8c:bb:8c:a6:8a:
b5:84:b3:e1:3e:f1:d9:60:b9:ed:55:f2:83:c3:18:
f7:f2:05:83:41:d8:da:f1:b4:34:01:9d:fa:1c:ca:
94:57:d5:08:c2:b4:a3:b5:e0:6e:4a:35:3f:47:cf:
61:4d:06:0a:4e:d2:d2:c1:38:28:4e:ed:5a:1c:e4:
21:23:ab:89:dd:ed:a2:ba:c2:77:b0:57:13:df:ac:
fa:d8:be:c6:ac:d4:60:00:61:b9:79:d2:5d:c1:72:
de:fe:01:d0:5d:db:48:22:c1:5a:3d:9a:14:bb:84:
ef:54:bd:a9:f8:7a:42:1a:da:7d:14:7e:8c:eb:fa:
60:d6:bd:a3:79:d0:30:c7:2e:09:8e:41:59:15:bc:
e0:6a:f3:d2:e7:ac:03:09:91:a9:2a:08:d9:14:bd:
e5:87:a2:d1:02:c3:57:e3:4a:22:fb:7d:55:dd:19:
76:38:34:38:76:18:81:95:bc:ca:0e:f6:95:ad:1b:
20:80:78:fe:d0:40:62:82:fa:df:96:f3:66:f6:e0:
3d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:36:4E:B8:49:6B:0D:E0:79:55:04:84:D4:1E:6A:35:5F:9C:00:7E
X509v3 Authority Key Identifier:
keyid:F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/2zZOuElrDeB5VQSE1B5qNV-cAH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/1-A4BfPFxFRmw_59lhYxJGy-l1As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.191.0/24
Signature Algorithm: sha256WithRSAEncryption
29:f8:b6:ea:fa:1a:ef:d8:01:90:fc:94:03:e8:b2:0a:b6:55:
1c:98:35:90:dc:d4:eb:5d:13:0d:55:f5:ee:4c:48:4f:b0:ae:
74:f9:1f:c4:3f:a2:ee:ff:25:84:e1:00:4c:b7:98:a0:ef:6d:
85:af:bd:7d:cb:ae:41:13:a0:05:52:4a:09:74:96:d3:55:44:
67:e6:64:04:4d:1d:d2:31:fa:88:56:4a:40:f9:ae:02:bb:10:
9a:c2:8d:67:6d:34:a7:a3:2e:e5:e5:b6:5e:fd:c2:d4:ca:6e:
2b:4c:28:a3:31:ec:37:db:aa:b7:1b:9e:0c:a1:d0:15:b4:0c:
3e:8e:c8:bb:43:be:32:b7:eb:33:cf:30:27:1d:bc:c0:a2:e6:
fd:ea:c8:8b:80:85:59:39:a6:1a:59:07:dd:67:08:c7:eb:8b:
4f:e1:80:a0:14:8b:8c:9e:d6:53:67:d4:c6:da:ea:49:0c:3f:
4e:49:24:ea:8d:26:9b:d0:49:a5:63:a3:63:79:ba:6b:5f:d8:
58:f6:b2:a6:91:01:44:b0:0e:4e:8d:ae:eb:6b:25:f7:83:76:
0d:5c:fd:7f:4c:0a:e0:ab:2b:f7:1b:74:11:27:85:95:01:21:
35:21:e7:85:2c:1f:44:8b:4b:91:69:5b:d3:1f:d2:c5:8b:4f:
3f:a0:37:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:42 2024 by rpki-client on console-ams.rpki-client.org