Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/oz0k-Niwr4HI41reF687gtBV3do.roa
File: oz0k-Niwr4HI41reF687gtBV3do.roa (raw, json)
Hash identifier: +OFT93aDG/Fx5oFQPhHO8JZa+sN7TGGJfKKXfA4G7vg=
Subject key identifier: A3:3D:24:F8:D8:B0:AF:81:C8:E3:5A:DE:17:AF:3B:82:D0:55:DD:DA
Certificate issuer: /CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Certificate serial: 01856D93FA26071141ADCC3C8B9EFF9003A6
Authority key identifier: B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/oz0k-Niwr4HI41reF687gtBV3do.roa
Signing time: Sun 01 Jan 2023 13:44:52 +0000
ROA not before: Sun 01 Jan 2023 13:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39516
IP address blocks: 194.50.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:fa:26:07:11:41:ad:cc:3c:8b:9e:ff:90:03:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4395f6cea9a018a4cc84818e6aa3520d322218b
Validity
Not Before: Jan 1 13:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a33d24f8d8b0af81c8e35ade17af3b82d055ddda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b8:42:ca:c7:8d:1f:22:e0:8a:e1:0c:50:4a:
d9:83:68:25:52:73:d6:ad:c2:08:63:cd:01:ae:14:
e1:61:fb:7b:96:62:cd:b9:06:d5:81:a0:98:37:f8:
61:77:f4:0a:00:7c:df:03:94:bd:c8:5e:0b:00:cd:
a6:ed:7e:32:b4:0d:bd:63:a7:d8:97:19:5b:13:a4:
a9:6b:1a:a9:06:08:fc:0e:99:3e:ef:3d:a1:c8:32:
95:12:b7:e7:a8:07:e7:59:30:01:b0:78:17:5a:92:
86:fd:6f:51:9a:bd:83:32:43:32:ea:48:0b:92:30:
c5:09:d3:0d:0a:e7:13:a8:2b:b5:49:4b:d5:67:dd:
2c:eb:c6:b3:30:72:bf:2d:5e:ce:24:58:5f:f1:fd:
55:ee:3c:f5:5f:4b:ee:7c:f8:e1:13:9e:97:78:1a:
a8:c7:70:de:d9:47:19:24:5b:94:03:e2:94:23:65:
f9:f8:f5:31:06:85:91:53:ec:7a:da:c5:77:b9:27:
7f:54:53:cb:ad:5d:84:4f:12:6c:11:23:e6:cd:a0:
2b:8c:60:bc:c4:00:61:ae:a9:08:69:97:7c:d8:87:
a0:9e:2d:dc:b3:da:0c:75:18:49:bb:b5:de:9f:0e:
c1:8d:ff:29:06:c9:aa:ab:29:17:09:90:2c:10:33:
d0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3D:24:F8:D8:B0:AF:81:C8:E3:5A:DE:17:AF:3B:82:D0:55:DD:DA
X509v3 Authority Key Identifier:
keyid:B4:39:5F:6C:EA:9A:01:8A:4C:C8:48:18:E6:AA:35:20:D3:22:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDlfbOqaAYpMyEgY5qo1INMiIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/oz0k-Niwr4HI41reF687gtBV3do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1e5c88-c3fc-4e76-bc65-391fec267dae/1/tDlfbOqaAYpMyEgY5qo1INMiIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.44.0/24
Signature Algorithm: sha256WithRSAEncryption
64:6e:28:d1:3a:2f:22:5e:61:b4:49:ae:46:86:95:59:3d:b3:
63:d6:65:a7:86:d6:4e:b7:3c:d3:70:79:ad:ce:8b:de:c2:0f:
96:eb:a2:60:69:fe:f5:4b:23:d6:f3:ab:d6:b2:f6:85:ed:91:
d9:68:1e:60:14:09:d9:57:18:98:e7:9d:f1:6a:09:80:0f:54:
a2:7a:25:b0:9b:53:21:22:98:9e:3e:4b:23:3b:1c:a7:82:af:
6c:23:86:1c:5a:a2:1c:83:50:ac:d7:86:8a:f6:5a:cf:2b:27:
e9:f5:a1:b9:8c:60:a3:b4:df:f4:a0:f6:c2:63:e2:13:d1:5e:
a0:9e:72:73:0d:b6:9b:85:2d:66:b5:83:82:3d:4b:c9:e2:24:
f9:a4:aa:45:61:5a:a2:b1:4d:30:68:9f:cc:96:d5:55:5a:da:
93:8f:2f:83:73:c8:49:85:0e:b0:4b:96:82:a2:08:9a:14:90:
bc:a4:8c:cd:3f:b8:c9:7f:83:d8:73:72:7d:73:e1:f3:26:87:
1f:80:a6:e9:7e:ba:4a:2c:e3:5f:6e:0a:46:1d:b4:91:f7:9a:
98:bd:a0:c4:6f:f6:67:9f:db:93:41:ef:e3:af:6b:e1:14:f1:
f7:33:9a:35:be:36:cf:37:ad:18:21:31:47:72:82:a5:c2:f2:
a7:38:21:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:29 2024 by rpki-client on console-fra.rpki-client.org