Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/T3le6fkZeXFSTcJVzobWfTYITTE.roa
File: T3le6fkZeXFSTcJVzobWfTYITTE.roa (raw, json)
Hash identifier: tywIbaWaI/3QSxpcVvWnvjh9nvidTiBg6gGA0QXS4BY=
Subject key identifier: 4F:79:5E:E9:F9:19:79:71:52:4D:C2:55:CE:86:D6:7D:36:08:4D:31
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018571030BF0B0FEE8A041053E1D2C4E4C24
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/T3le6fkZeXFSTcJVzobWfTYITTE.roa
Signing time: Mon 02 Jan 2023 05:45:03 +0000
ROA not before: Mon 02 Jan 2023 05:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49367
IP address blocks: 194.242.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 25 May 2023 09:35:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:0b:f0:b0:fe:e8:a0:41:05:3e:1d:2c:4e:4c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f795ee9f9197971524dc255ce86d67d36084d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:8d:84:df:eb:4b:e1:3b:34:51:8e:74:6d:ae:
14:e9:ea:0a:36:a7:87:39:8f:11:a8:1c:32:06:6a:
62:97:c6:fd:88:df:89:6e:61:53:b1:ae:ca:d1:9f:
7f:a1:20:18:f0:c3:46:eb:d5:e4:e2:c1:d1:c5:b1:
d4:d2:48:ac:38:69:79:d5:8a:13:7f:d5:e0:c4:c8:
85:39:7f:61:c8:43:35:f6:11:db:5e:e9:e6:c5:3c:
65:10:7f:7c:d6:16:c9:41:ca:64:56:db:d2:d3:30:
17:c6:6d:f7:49:fc:97:0c:5a:ad:35:70:69:38:69:
05:a7:19:ba:48:9d:52:27:91:f7:4a:30:26:9e:9a:
f9:31:e3:23:3c:96:63:1c:6b:42:62:87:67:1b:89:
10:8d:8d:b9:6a:1f:1a:cc:89:3c:ff:1e:a0:d6:25:
f1:aa:fb:c8:87:da:49:4a:c6:7c:96:19:08:52:cb:
9c:4d:44:f7:39:6b:3a:a9:3e:0a:6f:96:57:7b:41:
f9:b1:c5:43:0e:45:e4:ad:7e:f3:8e:c3:9e:16:24:
75:98:e1:b9:f4:f4:4a:d3:55:36:1f:e4:07:24:75:
1a:06:bf:b7:60:95:95:d7:9e:bf:09:73:59:2c:2e:
8c:96:dd:84:1b:3b:82:5b:c7:80:8e:e0:50:2a:79:
ee:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:79:5E:E9:F9:19:79:71:52:4D:C2:55:CE:86:D6:7D:36:08:4D:31
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/T3le6fkZeXFSTcJVzobWfTYITTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.14.0/23
Signature Algorithm: sha256WithRSAEncryption
00:58:fc:8d:40:e0:2e:67:aa:32:78:b0:af:c9:6a:49:05:2a:
a2:70:ac:a5:89:22:1b:f3:4a:29:8d:49:91:81:13:21:d2:9e:
38:7f:1a:c6:b4:68:20:c6:55:82:02:48:fe:1d:09:1e:d5:59:
ee:08:16:41:c7:a6:9b:1f:9a:07:b6:a5:ae:b4:bc:45:a0:a0:
9b:2c:be:c6:c8:01:81:8b:50:c3:0f:58:aa:c7:c4:95:ee:26:
d8:a5:6f:a3:39:d3:f6:93:40:6e:85:19:15:1b:ff:a8:2a:25:
9a:aa:a2:2a:09:e3:5b:28:e4:79:9d:ac:62:5f:f7:a8:37:2d:
a6:0b:cf:85:1a:d9:25:80:5c:31:47:ac:e2:16:fb:c7:06:61:
a4:23:21:a1:b2:0d:8a:e6:49:f4:d7:da:5d:c5:7c:9d:82:a5:
41:a5:44:fd:14:e3:ad:35:f0:d4:c0:ef:2b:6d:c7:0d:c4:c7:
d8:3b:3e:12:ba:10:5e:4e:c0:70:58:cb:80:1b:5a:56:bb:26:
a8:bf:77:dd:f7:0d:7c:3c:65:ab:b9:12:b8:1d:54:73:d9:a1:
8f:14:04:0b:8c:d2:0e:42:ef:d8:7d:19:77:18:0c:39:2e:8a:
c0:10:05:40:d0:e4:23:b4:76:b7:ee:84:36:02:a0:d9:7f:75:
af:28:eb:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:11 2024 by rpki-client on console-ams.rpki-client.org