Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Tj6QeMkZ_eKzZbBqWaL_BjXrF44.roa
File: Tj6QeMkZ_eKzZbBqWaL_BjXrF44.roa (raw, json)
Hash identifier: 0mF4ZExfI2Hrzem3QUfgAcPitBa44Jp48vlpF73LCu0=
Subject key identifier: 4E:3E:90:78:C9:19:FD:E2:B3:65:B0:6A:59:A2:FF:06:35:EB:17:8E
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01885243587993A3B0E8A8690884F2F18F18
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Tj6QeMkZ_eKzZbBqWaL_BjXrF44.roa
Signing time: Thu 25 May 2023 09:35:25 +0000
ROA not before: Thu 25 May 2023 09:35:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31034
IP address blocks: 194.242.14.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:43:58:79:93:a3:b0:e8:a8:69:08:84:f2:f1:8f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: May 25 09:35:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e3e9078c919fde2b365b06a59a2ff0635eb178e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1c:2a:82:1c:d4:ab:46:16:3e:03:b0:2c:8e:
cd:37:01:12:d5:b8:73:11:a6:da:52:95:55:39:4e:
7b:d0:1a:fb:71:f3:8d:59:66:03:17:97:43:8f:65:
f5:ee:18:a7:e7:f9:5f:4f:d9:5f:bc:21:e5:f2:1a:
e2:b2:a8:a6:85:df:be:7d:e7:86:c1:f7:46:47:97:
ef:79:38:52:bf:a4:e8:a8:17:d3:65:d1:3e:84:34:
7a:87:5e:25:fd:5a:21:8f:55:df:6c:2a:81:fc:ae:
11:6a:8c:95:bc:e0:aa:07:5b:56:bc:a7:9c:3b:a4:
3b:0e:a3:c8:c2:d8:1e:a1:1b:98:1e:56:3e:cd:0a:
e8:41:ef:cd:1f:5e:8f:7a:ec:ef:a5:ce:51:64:f6:
b7:60:2b:59:b4:b8:c8:33:c7:8c:98:c3:c9:ca:6c:
d4:43:38:96:71:23:e0:8c:4f:50:17:bd:13:91:96:
42:9c:2c:6d:ec:27:08:f3:5b:cc:1f:87:99:30:04:
4b:8b:fa:f0:c9:56:27:35:37:bd:19:92:25:65:f5:
cb:b6:27:91:c6:58:ce:34:df:ed:c7:04:fd:b4:8c:
25:88:7e:8f:21:72:36:ec:7c:66:9a:e4:c2:a4:34:
f1:03:2d:e6:ff:27:30:0b:1c:ff:1c:92:1d:9d:58:
1a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:3E:90:78:C9:19:FD:E2:B3:65:B0:6A:59:A2:FF:06:35:EB:17:8E
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Tj6QeMkZ_eKzZbBqWaL_BjXrF44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.14.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:ba:a8:c8:21:f6:e2:c3:43:52:88:1f:7b:b0:f5:1d:12:57:
fd:d6:4f:ac:6b:8d:e9:8d:cb:3c:ca:58:04:75:b1:cd:f9:d1:
22:54:f9:ae:fa:c8:3b:4a:ad:74:60:03:55:ab:f3:71:5b:0f:
a4:ce:ea:30:77:81:ec:83:ae:a2:fe:bb:58:7c:74:a0:a3:bc:
db:e7:4c:fc:5c:87:91:6b:db:b3:46:8a:28:0a:c9:3e:f1:77:
36:13:e8:ec:45:1a:b8:0a:2d:6f:86:00:b6:43:4d:45:f0:fd:
ce:83:5b:b6:43:d8:20:43:be:d2:94:7f:91:93:8e:85:ed:e5:
d0:9e:0d:88:7f:ff:72:94:83:0d:ec:19:f8:bb:0a:d9:b9:d9:
0a:7b:1c:a1:d7:81:d3:ff:5b:3a:c6:b8:82:ae:26:b2:a7:d1:
8c:2f:19:54:8e:e9:d2:89:fd:4f:86:eb:75:72:25:86:c0:62:
63:89:04:98:8b:0a:66:64:65:ee:0f:80:1e:25:11:11:ee:97:
86:3e:96:d4:fe:03:34:f2:26:b0:65:ce:94:14:b5:7c:ca:55:
88:23:8d:27:ee:12:21:a4:43:ae:71:c6:78:6e:ae:48:f2:e5:
44:35:ac:bb:d8:7f:f2:f2:d8:5d:02:2a:53:88:03:0b:b6:7d:
1f:53:76:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:03:18 2024 by rpki-client on console-ams.rpki-client.org