Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/5f45a5-7288-4537-89dd-c687e792b25d/1/jvprE6I0nqZwotUt8hKULx2RZfI.roa
File: jvprE6I0nqZwotUt8hKULx2RZfI.roa (raw, json)
Hash identifier: 8Ka5OSy3yhEdfL7mODF1PN0nb3WgUoNAnqVGCTGY/Cs=
Subject key identifier: 8E:FA:6B:13:A2:34:9E:A6:70:A2:D5:2D:F2:12:94:2F:1D:91:65:F2
Certificate issuer: /CN=52e86b141c51c65eeabd6e62ea522edc5988526e
Certificate serial: 01857082D4A12A892AA88572D207BE1D2851
Authority key identifier: 52:E8:6B:14:1C:51:C6:5E:EA:BD:6E:62:EA:52:2E:DC:59:88:52:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UuhrFBxRxl7qvW5i6lIu3FmIUm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/5f45a5-7288-4537-89dd-c687e792b25d/1/jvprE6I0nqZwotUt8hKULx2RZfI.roa
Signing time: Mon 02 Jan 2023 03:25:00 +0000
ROA not before: Mon 02 Jan 2023 03:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21423
IP address blocks: 194.0.198.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:d4:a1:2a:89:2a:a8:85:72:d2:07:be:1d:28:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52e86b141c51c65eeabd6e62ea522edc5988526e
Validity
Not Before: Jan 2 03:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8efa6b13a2349ea670a2d52df212942f1d9165f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:24:dc:23:ff:ae:02:3e:f8:77:14:8d:d9:4d:
29:f9:69:37:de:68:3d:a5:1a:3a:b6:a2:d4:a6:3d:
9b:03:a2:d8:85:59:07:10:0e:20:ee:5c:24:10:57:
4d:e9:ff:46:9e:42:a5:e5:99:50:4a:b7:ba:cc:08:
37:9e:f4:21:51:2e:32:b3:3d:dd:cc:49:ad:db:05:
4d:f0:2e:cd:c7:9c:e7:fe:ed:74:7d:0c:11:29:56:
81:9c:b1:1f:28:94:6a:3b:70:3f:1e:b4:94:bc:bd:
2a:dd:c3:fd:4f:c3:a1:82:18:cb:d4:46:cb:e6:e5:
f2:16:31:15:8f:f9:84:aa:75:a7:ed:71:a1:49:88:
40:82:03:26:a6:f1:05:07:b7:fa:92:65:16:a7:12:
e4:ff:f5:75:0c:5c:20:1a:45:fc:ce:38:fc:70:62:
6b:f8:1c:0e:d3:d1:9f:a5:bc:fa:77:53:ca:24:eb:
ff:fc:f6:6d:8f:0c:5d:4e:fa:d1:a7:d9:d7:35:d0:
97:7c:cb:b9:3f:c0:24:32:6c:c3:c5:70:e4:7e:1b:
cf:0f:d5:3d:1a:1d:a4:67:c5:70:e6:7d:a6:65:90:
c2:dd:56:f4:d4:0c:12:42:ec:0c:7e:d2:f7:5f:f4:
b0:7d:08:ef:78:49:33:05:b9:b0:6b:fb:2f:b6:d1:
01:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FA:6B:13:A2:34:9E:A6:70:A2:D5:2D:F2:12:94:2F:1D:91:65:F2
X509v3 Authority Key Identifier:
keyid:52:E8:6B:14:1C:51:C6:5E:EA:BD:6E:62:EA:52:2E:DC:59:88:52:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UuhrFBxRxl7qvW5i6lIu3FmIUm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5f45a5-7288-4537-89dd-c687e792b25d/1/jvprE6I0nqZwotUt8hKULx2RZfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/5f45a5-7288-4537-89dd-c687e792b25d/1/UuhrFBxRxl7qvW5i6lIu3FmIUm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.198.0/24
Signature Algorithm: sha256WithRSAEncryption
60:b3:8e:af:84:cb:59:f9:a7:a9:e7:b7:1b:47:59:b0:d7:cf:
fc:75:84:cb:3e:f5:27:e5:80:2c:1f:16:13:d1:61:87:f9:34:
19:b1:82:a5:a4:2f:5e:f2:80:41:24:85:e7:55:b2:b4:6e:78:
9b:34:25:0a:a6:ff:d2:e7:48:47:79:d5:82:9f:ef:fe:47:66:
2e:4b:02:4b:e5:c8:e0:2e:a9:2f:96:46:12:cb:68:d1:cc:fc:
51:36:21:8f:3d:04:7b:2c:88:21:08:cb:33:cd:3a:05:a9:9b:
ab:12:55:c2:5e:fd:a2:b6:c9:5a:54:22:1c:d0:df:81:39:bd:
a2:d0:91:b8:a0:e2:02:b3:98:dd:12:2f:be:10:c8:42:7a:45:
57:4c:b8:f0:1f:c3:39:d7:d8:8f:27:0f:00:4f:56:12:95:08:
d1:db:b2:3c:e4:7b:88:28:3d:19:3c:34:16:94:ca:a0:0a:80:
74:e9:e5:0e:31:b8:d0:0b:fa:dd:46:1f:b2:a5:62:be:60:70:
18:4c:9a:e1:8d:d6:4a:e6:c1:ea:39:df:47:05:f9:28:6f:70:
04:58:d4:ae:67:f9:c0:b2:93:23:f7:71:e9:f0:df:c7:86:41:
b4:3d:76:95:bd:f0:3f:bc:b4:d2:ec:a2:9e:97:9b:3a:75:49:
3f:f9:38:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:31 2024 by rpki-client on console-fra.rpki-client.org