Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/n74tZes0wSvXlhSoI7ZAC15bHoM.roa
File: n74tZes0wSvXlhSoI7ZAC15bHoM.roa (raw, json)
Hash identifier: cfzWcLljUPA8RJjO5bN9XSaQu4923J22oxFfKjCBlLs=
Subject key identifier: 9F:BE:2D:65:EB:34:C1:2B:D7:96:14:A8:23:B6:40:0B:5E:5B:1E:83
Certificate issuer: /CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Certificate serial: 018571830CC744C3036D3E9F7657D3DE3CA2
Authority key identifier: 79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/n74tZes0wSvXlhSoI7ZAC15bHoM.roa
Signing time: Mon 02 Jan 2023 08:04:51 +0000
ROA not before: Mon 02 Jan 2023 08:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51186
IP address blocks: 194.28.236.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:0c:c7:44:c3:03:6d:3e:9f:76:57:d3:de:3c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79bb370b0c9a06fd82cb7100d903859b09f50333
Validity
Not Before: Jan 2 08:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fbe2d65eb34c12bd79614a823b6400b5e5b1e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3a:64:81:65:28:38:37:11:2f:78:7e:d7:f3:
e6:ea:e3:b9:48:28:c2:d9:dd:b8:5c:79:f1:dd:77:
19:6e:73:16:1e:4b:bd:92:51:b3:69:54:bd:bd:f1:
2c:33:b0:7a:36:31:d9:99:87:33:49:50:bf:51:a7:
9a:7c:14:16:36:24:4a:39:29:1a:ff:a4:6b:65:b3:
e7:97:99:6a:a5:70:0a:74:ed:ed:a3:33:2e:ba:cd:
cb:6a:62:28:fb:ad:36:fa:c5:a7:76:89:21:b6:02:
ab:40:e5:70:19:f8:75:fd:0e:02:08:3f:53:9d:66:
4a:b7:33:73:1a:05:6f:9c:48:16:f7:f3:0a:3e:a3:
c7:3b:c8:1c:a0:ca:c3:42:30:95:66:97:ee:82:83:
cd:d1:83:69:2e:a3:9c:66:8a:0a:29:48:b4:f7:ff:
e1:da:ec:76:76:df:f2:9a:9c:7e:88:67:4c:6c:b2:
41:65:cc:16:d8:41:9f:33:c8:03:44:8d:4a:c6:e5:
fc:f3:17:5d:90:db:c7:05:2e:a8:bc:b8:22:c3:e5:
0f:24:6e:30:70:28:4f:d4:b4:6e:e2:d2:05:a1:96:
4c:46:04:19:4d:af:af:7b:69:06:9d:96:3c:5e:41:
45:9c:7d:e3:9e:18:6e:17:de:fe:3a:52:6d:f9:06:
f6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:BE:2D:65:EB:34:C1:2B:D7:96:14:A8:23:B6:40:0B:5E:5B:1E:83
X509v3 Authority Key Identifier:
keyid:79:BB:37:0B:0C:9A:06:FD:82:CB:71:00:D9:03:85:9B:09:F5:03:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/n74tZes0wSvXlhSoI7ZAC15bHoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/7ef2ee-c40d-4b22-a18f-53f25d436e2c/1/ebs3CwyaBv2Cy3EA2QOFmwn1AzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.236.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:32:d7:62:e6:bf:77:b5:04:7d:10:c8:fc:28:b8:55:5f:05:
2c:6c:f1:d2:a6:f0:c6:99:6b:a7:22:6c:da:f7:00:81:10:40:
af:6c:f2:d7:f4:84:46:87:3c:06:f4:cf:6e:3b:5b:3d:85:82:
7a:a9:8d:22:b3:36:23:2b:a4:22:1d:63:dd:a7:e9:2c:16:c1:
d3:9d:d2:c1:3a:33:5b:f4:47:93:09:25:94:ae:5a:6f:3c:92:
51:d7:77:96:68:8b:94:22:66:dc:35:c9:23:26:43:42:fc:d4:
aa:e4:4a:f1:97:a5:67:71:16:80:b6:9c:91:79:bd:56:4f:a8:
54:16:b7:ee:9d:f5:2a:73:61:36:95:22:9b:5c:e7:df:98:46:
51:35:57:5b:6a:8a:7c:3e:64:4b:7f:ec:4c:b0:28:56:1c:d5:
d3:47:bb:2d:72:09:37:17:5e:fc:98:be:a2:4c:94:71:22:9a:
67:f9:bd:81:f4:8e:02:2b:31:bc:45:2e:51:fd:e9:b4:d0:82:
ec:92:68:fa:04:f4:2b:dc:aa:d9:a6:72:1e:0d:32:58:18:95:
5c:49:e3:30:e9:81:d8:b8:3f:9e:f0:b9:fa:4a:08:5e:44:e7:
a0:05:1c:6f:2d:16:41:49:01:72:1c:81:13:a2:d3:f6:c8:88:
79:80:d9:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:18 2024 by rpki-client on console-fra.rpki-client.org