Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/AHu-tpNPSxdjyEWqW4jelb1cCEI.roa
File: AHu-tpNPSxdjyEWqW4jelb1cCEI.roa (raw, json)
Hash identifier: /PnyckJLg+ypctQ3fQfd18/E8+QxVJ0GxHdQgoGg3Lc=
Subject key identifier: 00:7B:BE:B6:93:4F:4B:17:63:C8:45:AA:5B:88:DE:95:BD:5C:08:42
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018570307080D1684EB4A46BF0E4E94E6F66
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/AHu-tpNPSxdjyEWqW4jelb1cCEI.roa
Signing time: Mon 02 Jan 2023 01:55:00 +0000
ROA not before: Mon 02 Jan 2023 01:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202738
IP address blocks: 194.88.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:70:80:d1:68:4e:b4:a4:6b:f0:e4:e9:4e:6f:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=007bbeb6934f4b1763c845aa5b88de95bd5c0842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b1:7e:cb:f2:da:5a:87:4e:12:ff:6a:21:bd:
d8:17:14:ee:68:5d:a8:2a:63:f5:e4:ec:e0:37:64:
9b:11:34:07:36:67:fe:26:c2:7c:f2:f7:5f:d6:ec:
43:6f:fd:f7:10:4c:99:6d:76:be:79:54:11:05:bd:
1c:4a:6e:5e:1a:2e:d1:45:f7:f2:1d:38:76:07:be:
de:4e:d3:0a:36:e2:11:6e:d5:16:01:0f:44:e9:2d:
03:b2:42:27:ce:4b:b0:60:32:76:5b:14:78:30:6c:
a7:b6:b5:14:18:38:2f:6c:01:1d:10:97:f7:de:77:
1c:f4:21:68:4d:50:49:51:a2:0a:0c:d3:9b:62:5e:
24:f2:27:a4:b9:0b:5b:cd:ff:ac:a5:2c:44:d7:b2:
13:13:ab:9c:e7:99:2c:18:c4:5f:8a:0d:88:d4:f6:
c8:f9:01:d9:89:55:30:26:f2:3b:bb:f9:cb:ef:11:
50:bb:d6:0e:78:cb:9a:5b:cd:33:a3:1c:1e:98:6c:
9e:18:81:d5:38:48:3e:9f:7a:4a:40:b3:ca:af:96:
02:dd:61:9c:84:89:8a:c3:61:54:40:9d:61:cc:24:
25:7a:61:dc:ee:32:bd:59:2a:86:ee:ab:d6:f3:f3:
9a:10:65:51:8c:60:30:d5:e5:31:43:6c:3a:29:d4:
89:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7B:BE:B6:93:4F:4B:17:63:C8:45:AA:5B:88:DE:95:BD:5C:08:42
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/AHu-tpNPSxdjyEWqW4jelb1cCEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.34.0/24
Signature Algorithm: sha256WithRSAEncryption
65:9a:86:57:c6:d0:b3:76:49:a2:f2:2f:94:b7:1b:51:01:34:
25:9f:09:7d:e5:48:0a:24:c4:5f:d4:b5:41:c2:6e:59:81:dc:
73:e6:a5:18:c6:55:c3:0d:e8:ad:b0:b1:b4:07:e6:b0:0a:e0:
a4:9d:f9:a0:ef:3b:a7:b4:8d:7c:83:ca:62:66:0c:ed:75:14:
a2:76:00:3f:f6:0b:60:04:34:26:4d:96:19:dc:68:78:66:25:
4e:a3:44:5b:7f:92:80:80:48:a3:48:d2:61:90:15:10:51:1b:
1d:7f:a4:66:70:45:f3:ce:83:d6:4b:5e:aa:3f:09:7d:95:ac:
dd:17:09:da:37:2f:a7:f2:a9:64:18:e4:6a:d1:aa:cd:29:27:
32:30:d4:1b:29:32:64:58:41:a9:27:96:95:d2:70:48:a7:7a:
49:77:a0:47:6a:e0:e4:bf:f2:e8:62:8b:6b:20:3a:ee:0b:42:
38:ee:07:df:5b:83:1a:03:a2:d1:89:bc:e2:c3:7e:0d:18:76:
87:f1:01:55:fa:d2:49:8e:17:ab:0f:17:66:87:08:93:dc:36:
91:02:0e:be:a1:11:51:88:39:04:ce:0d:58:a2:1a:47:ad:63:
41:85:7a:48:db:c4:ae:35:cc:73:95:da:60:b9:7a:12:e2:02:
6e:6f:ac:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:04 2024 by rpki-client on console-fra.rpki-client.org