Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/xmTwX6PPA-w8-yqxKu1YGx2A838.roa
File: xmTwX6PPA-w8-yqxKu1YGx2A838.roa (raw, json)
Hash identifier: L+gawpam+RFCQrlzX4yP42lU5GWcqMe3mfbyPtEehwU=
Subject key identifier: C6:64:F0:5F:A3:CF:03:EC:3C:FB:2A:B1:2A:ED:58:1B:1D:80:F3:7F
Certificate issuer: /CN=0039f741686da11e79ae7c5e486aa290808cb1b7
Certificate serial: 0185719E6C537D7D7E7100FB61069FD7A33F
Authority key identifier: 00:39:F7:41:68:6D:A1:1E:79:AE:7C:5E:48:6A:A2:90:80:8C:B1:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADn3QWhtoR55rnxeSGqikICMsbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/xmTwX6PPA-w8-yqxKu1YGx2A838.roa
Signing time: Mon 02 Jan 2023 08:34:45 +0000
ROA not before: Mon 02 Jan 2023 08:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206827
IP address blocks: 194.31.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:6c:53:7d:7d:7e:71:00:fb:61:06:9f:d7:a3:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0039f741686da11e79ae7c5e486aa290808cb1b7
Validity
Not Before: Jan 2 08:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c664f05fa3cf03ec3cfb2ab12aed581b1d80f37f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f4:e5:47:f2:2d:0e:31:f7:7c:b4:94:cc:a8:
41:8a:b1:c9:5f:db:d3:12:a5:66:30:51:d5:fb:0f:
3d:5a:ac:c5:2b:88:6d:da:eb:63:9b:ac:60:34:63:
f5:a1:94:9c:bd:72:46:7b:7d:f8:50:1d:23:a8:43:
f0:4b:6d:28:7b:b6:f2:df:fb:e1:5f:99:33:01:1c:
18:9f:e9:f5:8e:bf:26:0f:6b:74:80:76:87:bb:38:
3a:4d:e5:1d:56:df:50:1a:fb:ef:f1:95:cf:4b:84:
f6:e8:7a:05:a4:71:f7:9e:5e:33:94:28:ee:ef:a4:
a9:44:b7:b1:28:51:97:08:11:b0:2a:c6:89:f4:e9:
48:69:bd:70:2b:f9:2d:18:6d:8b:e9:44:ba:ee:f0:
76:fa:d5:4c:8c:e1:4f:05:bd:c9:2c:0c:d9:5d:62:
77:62:37:a3:6d:d6:7b:ff:fe:25:ea:8f:68:8e:b3:
7d:c7:1f:ad:e8:08:ad:85:27:ca:52:16:51:dd:40:
87:e5:5b:ba:4c:90:42:78:63:aa:5b:29:c3:40:e9:
52:4b:94:7a:a2:11:2b:3d:ee:50:10:1c:45:f0:d1:
db:a3:cc:ef:4f:ae:49:13:c7:9c:a2:08:a0:64:a9:
c5:a5:df:83:0a:9a:e3:ab:88:7a:a4:9b:68:f6:d7:
d1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:64:F0:5F:A3:CF:03:EC:3C:FB:2A:B1:2A:ED:58:1B:1D:80:F3:7F
X509v3 Authority Key Identifier:
keyid:00:39:F7:41:68:6D:A1:1E:79:AE:7C:5E:48:6A:A2:90:80:8C:B1:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADn3QWhtoR55rnxeSGqikICMsbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/xmTwX6PPA-w8-yqxKu1YGx2A838.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/3c616f-0138-4ffb-af17-55f41fdf0e63/1/ADn3QWhtoR55rnxeSGqikICMsbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.66.0/24
Signature Algorithm: sha256WithRSAEncryption
48:bb:50:b9:36:e2:16:07:82:59:38:92:bb:a6:fa:8f:0b:29:
25:0d:db:8a:6a:fe:24:93:d0:44:8d:53:2f:b4:58:0f:2c:8b:
4e:c7:63:d8:cb:4a:80:8c:7e:60:b8:90:97:10:5c:b1:46:d9:
f3:aa:ce:61:89:2c:b9:73:84:22:3e:ed:4c:ce:13:ab:67:70:
d5:a4:ae:42:44:a6:8a:8b:3a:ca:03:67:b3:96:47:4d:2a:6a:
dc:06:81:3f:c6:c8:1e:3e:d6:2e:49:a7:47:18:0e:67:2a:ca:
df:3c:b7:c0:18:92:91:5d:7f:ed:39:c0:d3:6d:94:6a:d7:f1:
48:2e:11:d1:a6:e8:85:83:87:96:e7:0b:a3:d1:a6:60:ec:d2:
d8:af:80:58:20:2a:21:d2:3b:5b:e5:6a:20:c2:a4:fb:30:46:
61:8f:a6:b4:43:a5:2e:f2:65:f4:39:30:19:9f:2f:0c:25:60:
c5:00:18:af:3a:f1:a0:b8:24:d9:83:70:86:1a:a5:c4:27:ab:
c7:6d:9a:dd:8f:b4:e2:d3:ae:59:c5:59:27:bf:c4:d2:bd:de:
1f:03:01:fb:e0:ec:94:26:4c:5d:31:a1:49:ee:bf:7c:53:6b:
0b:72:04:2f:7d:c6:4f:fa:fc:57:b5:f2:2d:5f:a0:fe:c1:db:
85:72:46:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:09 2024 by rpki-client on console-ams.rpki-client.org