Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/4d0b1f-ac85-4a2a-a1b4-08b07e89b42a/1/DE3-cDOTOm0e-c7appUHceXYfyM.roa
File: DE3-cDOTOm0e-c7appUHceXYfyM.roa (raw, json)
Hash identifier: nIIVQdjD9klmqEUPWi1Cm1rO9pUH8DoKrsR+Ksu/pQ0=
Subject key identifier: 0C:4D:FE:70:33:93:3A:6D:1E:F9:CE:DA:A6:95:07:71:E5:D8:7F:23
Certificate issuer: /CN=ac9fce0b8b637c15f231aecffb5c80a74ffccb1d
Certificate serial: 01856F4B6D93964D38FE90F045B3A112FC0A
Authority key identifier: AC:9F:CE:0B:8B:63:7C:15:F2:31:AE:CF:FB:5C:80:A7:4F:FC:CB:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJ_OC4tjfBXyMa7P-1yAp0_8yx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/4d0b1f-ac85-4a2a-a1b4-08b07e89b42a/1/DE3-cDOTOm0e-c7appUHceXYfyM.roa
Signing time: Sun 01 Jan 2023 21:44:52 +0000
ROA not before: Sun 01 Jan 2023 21:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48613
IP address blocks: 194.126.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:6d:93:96:4d:38:fe:90:f0:45:b3:a1:12:fc:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9fce0b8b637c15f231aecffb5c80a74ffccb1d
Validity
Not Before: Jan 1 21:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c4dfe7033933a6d1ef9cedaa6950771e5d87f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f0:66:ab:0a:1c:8d:9e:0e:02:b3:ef:8c:d1:
41:3b:45:c4:4a:52:73:aa:e9:b0:1c:a6:b8:3e:64:
98:9a:24:17:e0:56:5d:fa:b0:c6:04:bb:4f:cb:ab:
bf:18:7a:59:8f:28:67:7c:cf:cb:d3:13:57:28:e1:
bf:31:58:10:26:e9:24:8e:8f:6d:d8:9c:b6:b9:c7:
8a:4a:45:b5:42:19:44:56:90:ee:5b:a9:06:db:29:
1c:ca:bd:bc:9a:11:63:b7:8c:4f:55:2f:9f:6d:f6:
d3:8b:ca:77:ea:a7:c3:2b:c5:f7:b0:c2:c8:6a:c8:
f1:d5:d9:23:ca:0b:76:19:69:cc:d6:34:db:77:04:
cf:fc:c2:ef:f6:2e:f0:a7:7c:46:5d:55:0b:d4:2f:
85:ea:e3:39:b2:39:53:79:4c:22:0d:cf:2d:58:c0:
b4:44:1b:71:90:8b:34:b3:e3:b4:1a:6a:fa:06:90:
47:e6:b9:df:03:ed:11:1a:95:2b:55:ce:30:66:ff:
00:84:7f:92:9b:c0:0c:c2:fb:f9:bf:17:e2:fb:4e:
b3:11:3a:92:90:32:65:aa:34:b4:2e:5b:fa:5e:f7:
49:6e:b1:b5:30:88:fb:3d:94:23:09:1c:85:7c:e9:
3d:fd:48:df:39:78:67:68:fe:9f:f2:80:e6:89:ff:
4b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4D:FE:70:33:93:3A:6D:1E:F9:CE:DA:A6:95:07:71:E5:D8:7F:23
X509v3 Authority Key Identifier:
keyid:AC:9F:CE:0B:8B:63:7C:15:F2:31:AE:CF:FB:5C:80:A7:4F:FC:CB:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJ_OC4tjfBXyMa7P-1yAp0_8yx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/4d0b1f-ac85-4a2a-a1b4-08b07e89b42a/1/DE3-cDOTOm0e-c7appUHceXYfyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/4d0b1f-ac85-4a2a-a1b4-08b07e89b42a/1/rJ_OC4tjfBXyMa7P-1yAp0_8yx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.128.0/24
Signature Algorithm: sha256WithRSAEncryption
52:7e:6f:b9:f5:70:e0:74:f3:b8:e6:a2:71:94:2a:c7:ca:41:
cc:e0:8a:cc:b1:61:62:89:bc:96:1e:88:70:df:b3:3b:c4:d0:
d3:40:6c:f3:6f:42:1b:3b:e3:53:31:dc:08:40:35:9b:3c:88:
41:fb:5f:8c:fb:3c:d8:cf:0f:d1:44:b7:a1:12:44:e4:a1:2c:
4e:c4:db:db:7a:73:6f:b2:f9:df:3a:fd:df:55:3c:1d:94:f4:
a3:4c:2a:4c:a5:71:de:b8:4d:d0:8e:f9:cd:1d:e0:7e:4a:f3:
99:29:36:dd:fa:af:61:75:8e:2f:00:e9:91:5f:2c:34:28:b5:
6b:03:19:12:40:27:d7:5e:06:a4:80:72:f1:93:bf:c8:d9:73:
8a:d0:87:c4:05:a9:06:ff:0f:e3:5e:36:6a:2e:44:ef:fb:52:
1f:97:8e:3d:20:54:5c:47:8a:51:90:a3:c0:5b:5e:1b:e9:9b:
6e:fa:3f:7e:81:b4:31:b2:d6:25:d0:84:77:e8:e2:70:ab:4e:
1b:96:bc:26:f6:c1:38:bc:c3:fe:7c:9d:aa:0d:7e:8a:1d:b2:
5c:c3:06:a0:63:a9:be:1b:e3:e0:1a:29:14:ff:a3:87:f1:89:
c6:8c:79:46:de:2b:97:c7:46:f8:e9:4d:a7:15:a3:dd:91:fe:
9a:a9:fd:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:40 2024 by rpki-client on console-ams.rpki-client.org