Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/6TPk6hCITcz_L2K_plY47i4TAgo.roa
File: 6TPk6hCITcz_L2K_plY47i4TAgo.roa (raw, json)
Hash identifier: J30weQjTwyVyEafhtqnJUH+ZVZbIFNZ+OjBFObkdPKo=
Subject key identifier: E9:33:E4:EA:10:88:4D:CC:FF:2F:62:BF:A6:56:38:EE:2E:13:02:0A
Certificate issuer: /CN=1da3393991409489ef9fd7460a75a370cae9dca7
Certificate serial: 01856DDD4011EB48AAC00C88AD74D1064222
Authority key identifier: 1D:A3:39:39:91:40:94:89:EF:9F:D7:46:0A:75:A3:70:CA:E9:DC:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HaM5OZFAlInvn9dGCnWjcMrp3Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/6TPk6hCITcz_L2K_plY47i4TAgo.roa
Signing time: Sun 01 Jan 2023 15:04:54 +0000
ROA not before: Sun 01 Jan 2023 15:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.45.100.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:40:11:eb:48:aa:c0:0c:88:ad:74:d1:06:42:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1da3393991409489ef9fd7460a75a370cae9dca7
Validity
Not Before: Jan 1 15:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e933e4ea10884dccff2f62bfa65638ee2e13020a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e8:75:41:ec:e1:a8:f9:ac:89:7b:60:48:80:
d8:73:ca:7d:31:6c:df:21:b3:27:70:79:a8:dd:8e:
bf:00:59:11:be:7b:b5:18:2f:27:35:6e:74:5d:05:
23:b1:ee:6f:f1:f6:a1:13:f4:77:c1:83:81:d1:d1:
49:5d:f1:01:1d:ba:cc:67:c6:c2:93:1c:6c:35:56:
8a:90:5e:d5:d0:a3:09:25:07:64:5c:28:92:50:ba:
38:ea:46:62:d4:22:97:66:3d:1b:fc:7a:85:98:87:
b2:1d:51:11:91:b8:5b:4c:e4:e8:68:77:28:30:e4:
80:49:73:2c:32:e2:7c:d6:44:0a:c4:e6:27:9c:21:
3a:5c:7c:8a:87:03:1d:ac:60:6f:34:74:7f:73:eb:
46:98:c7:48:f3:4c:08:0f:87:ba:e0:40:b3:f9:f2:
30:10:88:8c:43:97:85:fd:83:53:d1:5e:be:89:3c:
ca:8e:49:bc:72:e6:9c:ca:d2:87:82:77:32:31:6f:
5c:ea:0e:34:43:9d:88:a7:00:3f:24:8b:3a:c8:c1:
c8:54:e7:d4:c8:7d:cb:c4:9b:b6:0f:a7:c3:dc:c0:
53:84:97:bb:ee:75:37:d1:a0:0a:41:82:fe:5d:7b:
a9:3e:97:2a:7c:ff:1a:a6:99:2f:11:ec:14:87:5f:
45:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:33:E4:EA:10:88:4D:CC:FF:2F:62:BF:A6:56:38:EE:2E:13:02:0A
X509v3 Authority Key Identifier:
keyid:1D:A3:39:39:91:40:94:89:EF:9F:D7:46:0A:75:A3:70:CA:E9:DC:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HaM5OZFAlInvn9dGCnWjcMrp3Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/6TPk6hCITcz_L2K_plY47i4TAgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/508017-e484-4094-807c-86a3a795da49/1/HaM5OZFAlInvn9dGCnWjcMrp3Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.100.0/24
Signature Algorithm: sha256WithRSAEncryption
41:13:27:8b:86:6c:2e:fa:91:4e:68:39:b0:50:1b:56:ff:17:
51:1c:2c:05:06:93:20:de:a8:17:fc:5f:28:37:07:97:4c:8d:
ea:bf:70:f2:bf:e4:28:c3:ff:36:bc:3a:ac:df:f0:45:f7:61:
7f:b1:b9:91:4a:48:55:0d:e3:f4:42:11:c0:23:b8:cb:eb:96:
f9:b5:ca:89:16:38:6a:c1:71:88:47:dd:ee:57:f4:8c:0c:6c:
66:95:99:1a:74:38:3f:bc:84:0b:70:ec:24:2a:1d:42:b8:0a:
02:70:10:ed:4a:c1:11:93:d4:60:0d:13:e3:6f:5d:33:85:00:
7d:5c:9f:5e:b0:0c:a8:b1:5e:92:74:d1:78:41:60:ec:2b:39:
2b:03:e1:73:b5:52:80:a3:64:3a:5b:ab:47:ce:96:9d:69:95:
ec:81:25:a4:9d:92:8c:66:74:32:8c:39:e1:93:7b:b5:e3:75:
75:be:7a:b9:77:18:99:e6:58:76:81:71:9a:99:01:a1:a4:6d:
dd:2b:be:c9:86:08:55:c6:9d:26:1d:81:67:27:b9:62:82:aa:
08:12:ec:13:3d:67:50:06:92:f1:02:66:37:37:1c:6d:a6:57:
ca:7f:9d:1d:ea:2a:fd:e3:9c:35:95:52:4c:a9:3d:c7:0b:8c:
f9:be:46:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:46 2023 by rpki-client on console-ams.rpki-client.org