Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/0hCorypo78xtPNhzIOCz6hYZBbo.roa
File: 0hCorypo78xtPNhzIOCz6hYZBbo.roa (raw, json)
Hash identifier: d6p8rUOcvN/wUVLrjRYsHFttXy2U0HkdtsuH7Ry1uEc=
Subject key identifier: D2:10:A8:AF:2A:68:EF:CC:6D:3C:D8:73:20:E0:B3:EA:16:19:05:BA
Certificate issuer: /CN=5e3a7835377b9e849fe7c33f9fca4572d902673f
Certificate serial: 01856F4B5CED2847B692DFCDAC85507234A6
Authority key identifier: 5E:3A:78:35:37:7B:9E:84:9F:E7:C3:3F:9F:CA:45:72:D9:02:67:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xjp4NTd7noSf58M_n8pFctkCZz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/0hCorypo78xtPNhzIOCz6hYZBbo.roa
Signing time: Sun 01 Jan 2023 21:44:47 +0000
ROA not before: Sun 01 Jan 2023 21:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201339
IP address blocks: 194.127.204.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:5c:ed:28:47:b6:92:df:cd:ac:85:50:72:34:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e3a7835377b9e849fe7c33f9fca4572d902673f
Validity
Not Before: Jan 1 21:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d210a8af2a68efcc6d3cd87320e0b3ea161905ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:07:f0:27:3a:54:e4:0e:fd:17:35:d8:2b:01:
84:74:70:8d:ba:c1:55:97:d0:b2:b0:2f:f0:d8:65:
bd:f1:1a:11:59:5b:51:3c:da:4e:6f:21:81:aa:e5:
d7:e0:3a:ca:c3:3a:ef:92:e7:83:22:05:2c:95:4e:
c5:ac:ed:0a:32:87:dc:c4:c9:68:9f:60:1d:15:9e:
e7:fe:07:36:3a:8b:45:e4:fb:7d:87:64:3a:df:2e:
73:72:d5:28:d4:1e:2b:27:4e:ac:81:60:9d:04:c0:
a0:2b:b9:4b:00:3b:af:8b:3a:e6:53:77:64:f3:32:
78:0b:da:2f:28:4d:f0:5f:dd:9d:b8:4a:da:3b:b2:
98:82:1e:1b:78:17:9d:12:0b:63:0d:d4:0f:5f:53:
e7:ad:53:fc:30:d8:9b:15:d4:90:2b:14:14:e2:79:
43:72:a4:98:18:fa:8a:b0:67:a9:28:69:c3:50:90:
db:d4:bb:b3:b6:e9:b9:46:6c:d0:ea:d3:94:b9:38:
99:0a:88:2e:59:93:28:63:dd:fe:cd:0f:28:12:1d:
66:68:a2:a5:18:73:55:3a:a7:40:3b:ed:13:56:f6:
30:df:51:c6:09:92:e1:25:d8:c8:97:8e:76:ad:1e:
65:71:dc:93:6c:e4:54:ca:46:30:c1:21:44:6a:45:
8d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:10:A8:AF:2A:68:EF:CC:6D:3C:D8:73:20:E0:B3:EA:16:19:05:BA
X509v3 Authority Key Identifier:
keyid:5E:3A:78:35:37:7B:9E:84:9F:E7:C3:3F:9F:CA:45:72:D9:02:67:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xjp4NTd7noSf58M_n8pFctkCZz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/0hCorypo78xtPNhzIOCz6hYZBbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/cdd815-8bd3-414f-a9b8-055b1b0e60f4/1/Xjp4NTd7noSf58M_n8pFctkCZz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.204.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:f9:e2:eb:55:fe:43:51:b4:b1:f6:f0:a0:e9:7a:08:8b:68:
34:7d:c5:6f:a9:94:de:aa:eb:7e:ac:c7:99:f3:2e:88:67:9e:
31:44:7f:69:75:1d:a5:d7:50:de:39:48:79:84:a3:53:33:bc:
d8:c6:45:59:94:48:e6:08:74:71:b1:2d:b7:b5:33:e7:be:fb:
66:c4:cb:19:a3:4f:04:b9:11:19:d7:f3:86:c7:ba:d4:da:ea:
c0:e0:1d:1f:ab:5b:2e:81:96:8f:b2:ef:2e:42:05:07:2c:61:
b8:d1:b7:d6:0e:dc:14:f2:16:67:99:7b:9b:ee:81:29:f0:f1:
57:a1:2f:14:70:50:e7:04:26:c9:1b:a8:a7:6c:23:0b:3d:98:
a8:a8:fd:57:9c:bc:34:96:64:53:ea:b1:db:32:57:74:f5:36:
0b:c3:1e:1a:40:45:35:b1:2a:ea:b7:f1:fb:63:d4:36:ed:97:
63:cd:92:f9:af:34:d7:8c:70:9d:7c:c3:cb:65:32:bb:23:37:
41:06:c5:e6:bb:52:25:30:b2:15:08:20:34:7f:5e:75:f4:3d:
25:7c:a5:9e:23:ae:6a:2a:6b:a1:a5:78:34:ff:a3:60:c1:45:
a0:b3:e9:36:2a:eb:4f:0a:13:8d:ea:bd:6e:22:d1:bb:45:28:
58:4a:ca:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:43 2024 by rpki-client on console-ams.rpki-client.org