Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/hT2GOXTR5j2qNf0V-yMqkbwUWwU.roa
File: hT2GOXTR5j2qNf0V-yMqkbwUWwU.roa (raw, json)
Hash identifier: Iw1exFnAZbwHkarh+9cN99hXDv+VCfEV2DABsi3eXKk=
Subject key identifier: 85:3D:86:39:74:D1:E6:3D:AA:35:FD:15:FB:23:2A:91:BC:14:5B:05
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 018B436D1EE96050DC6196135F4EC5462F87
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/hT2GOXTR5j2qNf0V-yMqkbwUWwU.roa
Signing time: Wed 18 Oct 2023 15:35:06 +0000
ROA not before: Wed 18 Oct 2023 15:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6813
IP address blocks: 194.179.98.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:43:6d:1e:e9:60:50:dc:61:96:13:5f:4e:c5:46:2f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Oct 18 15:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=853d863974d1e63daa35fd15fb232a91bc145b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c5:ec:a7:4c:cd:22:43:e1:bd:00:6b:59:88:
7c:aa:8e:aa:ce:07:d4:96:83:bf:ce:63:ed:f1:29:
e0:66:61:20:e8:cf:63:f3:e3:92:b3:6f:df:6f:04:
64:d4:e8:b0:4e:06:c5:17:1a:3a:9f:1f:e3:60:de:
61:6f:b2:8d:80:98:78:66:5a:58:25:8d:b0:a3:27:
01:72:81:e5:2c:ac:75:72:92:e8:a8:62:81:55:05:
9d:7e:e3:51:c8:af:66:77:21:49:c1:7d:a3:70:ff:
00:27:c1:c0:3a:e2:3d:f5:1b:e9:42:70:4d:5d:70:
ef:6c:22:f4:0d:0b:ed:73:34:0f:b3:0e:e3:d4:30:
cd:ed:d7:52:46:b3:d8:08:32:08:66:d1:34:de:54:
b4:0b:d6:1b:10:fc:c6:99:2d:1e:fb:b2:2a:ad:24:
e9:88:20:64:4b:dc:05:d3:e0:79:bc:a1:be:af:78:
c6:74:e3:3f:37:d9:0e:cf:5f:ac:52:0e:c7:24:c6:
fb:75:d6:59:33:2d:e8:e1:24:43:35:da:d8:90:1c:
4e:fb:96:df:b8:d0:53:00:d6:4c:ca:bc:a7:e6:f2:
df:ab:e4:b3:c2:65:f9:e4:b4:47:c9:cf:75:fe:1c:
c3:aa:ca:f1:f2:07:49:a9:7b:73:b9:da:1d:ee:9c:
d5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3D:86:39:74:D1:E6:3D:AA:35:FD:15:FB:23:2A:91:BC:14:5B:05
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/hT2GOXTR5j2qNf0V-yMqkbwUWwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.179.98.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:41:c4:b0:c9:16:7a:22:6f:97:57:d6:24:16:0b:28:d1:a6:
11:f5:92:2f:d0:a3:83:40:93:5a:57:32:b7:c2:98:0b:f8:05:
78:43:82:cc:a6:8a:46:53:db:10:6d:f1:da:69:15:31:94:c6:
23:1c:32:87:75:90:b6:fd:51:93:e1:a9:1b:2a:4b:84:a4:f4:
91:eb:bc:04:5b:47:62:21:60:4f:ca:33:40:7e:44:58:93:1b:
57:81:63:84:b5:4b:e2:b3:b3:06:94:30:40:64:05:c7:be:e6:
60:4a:14:6a:9c:be:61:4e:48:82:c4:a3:4a:ed:cb:70:a7:31:
d1:81:32:e5:1b:08:a2:19:24:1a:8e:d1:bb:61:46:77:38:9e:
38:f6:f2:02:a8:41:2b:75:a1:d0:a2:8d:0d:b9:e0:9e:0c:ea:
5f:ba:93:87:cd:41:c2:17:8e:b4:f2:69:b7:59:37:8a:fa:36:
ed:75:f2:c9:66:c1:b7:f3:7b:0a:80:89:25:fd:5e:3c:c9:10:
54:2a:c3:44:77:11:68:e6:58:91:42:e3:8e:98:50:fd:21:86:
b9:65:c7:7f:ae:73:33:6d:1a:d5:35:80:d6:85:6e:c5:9f:45:
4a:af:a8:45:58:a7:b6:58:14:d5:d5:d3:54:7a:7c:98:4c:b3:
77:d5:b0:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:35 2024 by rpki-client on console-ams.rpki-client.org