Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/_PJwHzNEUtufHwpfpjutg1GxWKg.roa
File: _PJwHzNEUtufHwpfpjutg1GxWKg.roa (raw, json)
Hash identifier: VtNQ5s7oZL7eS+vifmNv7TwBPwBhYkS1i5c5YmLUHIY=
Subject key identifier: FC:F2:70:1F:33:44:52:DB:9F:1F:0A:5F:A6:3B:AD:83:51:B1:58:A8
Certificate issuer: /CN=3d9aae8443cca1feed797d9a892f83321038c0f7
Certificate serial: 0185709505F822007777C28D9682C8AF35AE
Authority key identifier: 3D:9A:AE:84:43:CC:A1:FE:ED:79:7D:9A:89:2F:83:32:10:38:C0:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZquhEPMof7teX2aiS-DMhA4wPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/_PJwHzNEUtufHwpfpjutg1GxWKg.roa
Signing time: Mon 02 Jan 2023 03:44:52 +0000
ROA not before: Mon 02 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 559
IP address blocks: 193.247.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:05:f8:22:00:77:77:c2:8d:96:82:c8:af:35:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9aae8443cca1feed797d9a892f83321038c0f7
Validity
Not Before: Jan 2 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcf2701f334452db9f1f0a5fa63bad8351b158a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:84:13:8c:fc:39:9b:71:bc:47:63:ef:b6:4a:
0d:8f:5d:8c:c8:51:21:d7:d0:1e:83:5f:cf:1f:ea:
38:32:78:77:ff:94:2a:54:f0:79:8e:29:01:98:e0:
d5:55:81:34:93:66:79:d5:8b:b9:43:d8:2b:83:ed:
f8:5c:81:5b:81:ab:19:bd:a4:23:85:9b:81:96:a1:
7c:95:35:17:4b:1d:33:63:11:10:f1:2f:e1:88:7a:
ad:7b:97:1e:a6:8b:ae:d5:8c:91:18:eb:7f:2c:55:
aa:1f:e2:30:de:15:f3:45:d0:6f:a2:85:41:71:c3:
e4:95:2a:6c:38:19:2a:2a:48:a1:79:4d:8e:e6:88:
a6:6f:65:fa:e6:1c:7e:37:56:31:9e:71:4b:ec:11:
88:5b:63:1a:72:33:d9:d9:ef:a8:9e:82:e1:5a:f7:
c2:a0:47:29:d8:62:89:ca:2a:6e:00:93:6a:79:18:
79:16:73:77:54:f4:74:c7:e1:7d:0f:e8:1c:bb:f0:
87:3f:48:d1:96:f9:36:11:53:d9:fc:63:3e:74:29:
44:b4:3d:75:42:d3:66:e6:e6:29:aa:17:80:d7:ef:
02:58:08:53:0c:8f:b1:a4:32:71:98:b7:5f:cf:fe:
30:e0:f6:49:66:45:72:9f:a4:8e:07:12:fe:e0:58:
39:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F2:70:1F:33:44:52:DB:9F:1F:0A:5F:A6:3B:AD:83:51:B1:58:A8
X509v3 Authority Key Identifier:
keyid:3D:9A:AE:84:43:CC:A1:FE:ED:79:7D:9A:89:2F:83:32:10:38:C0:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZquhEPMof7teX2aiS-DMhA4wPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/_PJwHzNEUtufHwpfpjutg1GxWKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/b35797-8134-4bb7-90dd-287d36dbf5ee/1/PZquhEPMof7teX2aiS-DMhA4wPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.254.0/24
Signature Algorithm: sha256WithRSAEncryption
32:6c:c2:63:62:57:be:71:39:11:5a:ea:08:9f:6e:8c:04:95:
f5:c7:5d:f2:a2:55:71:d5:60:28:7d:03:04:02:17:bc:c0:63:
75:1b:30:73:7e:1d:32:43:e2:36:3e:42:6f:ff:4a:37:5f:17:
e2:6a:88:8c:b3:53:b0:41:0d:26:e0:6c:3d:7a:03:85:ab:cf:
a7:73:dc:c9:74:1a:08:2c:a3:59:b3:23:8b:74:e3:8c:a2:53:
6d:27:61:7d:34:e2:43:44:ca:7a:3a:64:71:98:cd:c5:0c:36:
7a:17:bb:b1:ca:10:79:5d:5d:8a:28:08:fd:57:b0:42:87:b3:
17:95:ef:ea:75:0e:96:bb:36:55:cc:78:b1:a1:ee:d8:60:b5:
ad:28:bf:0f:ae:39:b3:c6:e3:67:0d:5f:53:48:f1:e0:e4:e9:
76:84:cb:ed:cc:2a:8d:04:ba:c5:ff:d1:2c:48:83:0e:bc:6c:
24:f3:b5:17:b7:79:ad:ef:65:2f:56:9c:09:54:3b:64:60:c9:
69:17:93:c3:78:3a:52:0c:e4:f7:bd:54:bc:05:6d:64:ec:f0:
d2:b2:7d:47:da:bf:07:1b:ef:e2:cc:3b:33:14:82:04:c5:84:
0a:10:7d:0e:db:07:b6:5f:46:5f:3b:c7:a8:92:ca:e8:89:2c:
5d:d9:2d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:10 2024 by rpki-client on console-ams.rpki-client.org