Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/9XkW7sysFpz5JcBNZ-QkFMRqpdk.roa
File: 9XkW7sysFpz5JcBNZ-QkFMRqpdk.roa (raw, json)
Hash identifier: DiQXz2TDDzbaX6weECIY9nAFzZM+kfsNtekovkej+SA=
Subject key identifier: F5:79:16:EE:CC:AC:16:9C:F9:25:C0:4D:67:E4:24:14:C4:6A:A5:D9
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 01866F5E5120D34B0C90222415A38A90F17D
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/9XkW7sysFpz5JcBNZ-QkFMRqpdk.roa
Signing time: Mon 20 Feb 2023 15:08:17 +0000
ROA not before: Mon 20 Feb 2023 15:08:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 194.246.37.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6f:5e:51:20:d3:4b:0c:90:22:24:15:a3:8a:90:f1:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Feb 20 15:08:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f57916eeccac169cf925c04d67e42414c46aa5d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ae:33:fc:cd:8a:36:c6:ae:0b:20:8f:b8:ba:
fa:0e:4c:e7:cc:97:3e:52:00:11:a5:0d:d0:a2:3b:
99:19:08:3a:a2:2d:db:74:e7:e4:34:f8:39:e6:21:
c6:1e:69:d5:be:72:90:5a:5d:d9:b0:3f:c1:23:f0:
27:3b:cc:57:37:de:e5:71:21:d3:b3:f7:35:e9:08:
6c:21:b0:85:52:4d:1a:d2:29:36:58:e4:df:c7:b5:
ad:32:9f:22:ab:ef:49:04:f7:b1:bb:f7:3d:2a:a6:
b8:c4:46:58:45:db:09:6f:ff:e5:9b:cc:4c:bb:cb:
32:cf:8c:4d:71:c3:2f:14:fb:4b:6d:fb:67:7b:fb:
e2:02:31:bd:72:88:4d:19:dc:ac:f6:92:f1:ef:f5:
75:ed:40:51:19:41:d3:9a:1a:a0:e0:12:73:81:fe:
44:b1:4f:b0:ec:8f:7c:cb:74:b0:7b:d5:be:1e:cb:
1d:3b:f5:66:c0:12:6b:29:41:3b:6f:e7:5e:fd:04:
19:8f:14:a3:0c:6e:6d:7c:fd:98:18:f8:d0:48:41:
a7:3c:8b:2d:ed:68:5c:48:d6:dd:d2:80:83:ab:b5:
7b:ad:3e:be:da:2a:b2:0a:68:c7:a7:7e:85:9c:d5:
87:04:12:4c:f9:0d:ee:2b:65:05:a4:09:d9:53:f3:
2b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:79:16:EE:CC:AC:16:9C:F9:25:C0:4D:67:E4:24:14:C4:6A:A5:D9
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/9XkW7sysFpz5JcBNZ-QkFMRqpdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:54:38:a2:4b:3a:64:90:91:b7:f8:20:37:44:e4:87:45:67:
2e:51:b3:e3:8a:1e:44:b7:9f:7f:32:fb:83:c8:ee:b4:5c:0a:
c0:48:0b:6e:9d:c7:29:fc:65:d9:7b:3e:3c:49:8b:f8:1c:6f:
4c:d2:34:78:59:2d:84:42:3b:e2:60:56:99:c7:fc:1b:5b:79:
6a:8f:61:5d:db:3f:24:74:8c:3a:c3:5d:58:05:27:cb:31:70:
36:24:95:b6:b6:c5:f8:dc:b3:e9:a0:8e:fd:b5:0a:3b:18:c6:
9b:aa:6a:92:f4:34:b4:1e:6f:9f:c3:4e:01:4b:d7:df:59:18:
2d:70:7a:ab:ee:59:74:4a:d2:c9:be:c2:6e:8f:ae:9f:5b:f7:
d4:d7:c3:9a:f5:c8:4b:f8:66:38:56:c9:7b:60:19:b0:e9:3b:
68:89:9b:d9:f0:27:1e:db:f6:c2:1f:12:82:0f:20:fe:dc:16:
fd:f4:d3:62:9b:22:5c:30:51:c0:c2:b4:a4:f1:ea:55:31:cd:
8b:22:14:b4:15:6f:02:5c:75:04:b7:8b:43:46:6c:c8:4d:ba:
2f:84:52:b9:c6:3a:65:9f:0b:10:de:bd:5c:d4:01:b1:ae:17:
40:2c:00:99:22:08:0c:51:db:7e:9a:ca:bf:d1:b2:cb:03:0c:
a5:bb:98:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:46 2023 by rpki-client on console-ams.rpki-client.org