Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/slYegZjM1Afxu_wQwy3Z5yqQGh0.roa
File: slYegZjM1Afxu_wQwy3Z5yqQGh0.roa (raw, json)
Hash identifier: PuLdkdcCvuf0/WG+kEbEs5/ausIT77/cP3Ezdlcvh8Y=
Subject key identifier: B2:56:1E:81:98:CC:D4:07:F1:BB:FC:10:C3:2D:D9:E7:2A:90:1A:1D
Certificate issuer: /CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Certificate serial: 01856CAF378F2E90EB3BB83C3B2E97B52663
Authority key identifier: 19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/slYegZjM1Afxu_wQwy3Z5yqQGh0.roa
Signing time: Sun 01 Jan 2023 09:35:00 +0000
ROA not before: Sun 01 Jan 2023 09:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 144.2.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:37:8f:2e:90:eb:3b:b8:3c:3b:2e:97:b5:26:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1954e32570bbfb9af11c2381e81c797c2f40087c
Validity
Not Before: Jan 1 09:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2561e8198ccd407f1bbfc10c32dd9e72a901a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:8c:f6:5b:ea:11:25:50:7b:67:ee:22:0f:b3:
df:cd:e5:e6:52:c1:e1:56:a3:a2:03:0f:06:07:94:
db:b2:1f:21:7c:8e:cc:7e:32:45:13:e8:31:9c:95:
eb:19:83:b3:d3:2b:76:56:32:26:11:7d:e5:f2:54:
d6:88:0e:0d:90:4e:1d:c8:ff:1b:f3:c7:90:7b:bf:
b9:81:a5:40:6e:a5:28:a2:69:cf:6d:e4:0e:9e:1b:
0b:44:f8:47:82:6a:15:15:1d:b4:93:32:19:ae:83:
7e:ad:d0:c8:e6:e2:56:0a:1e:00:bf:1f:d6:2c:54:
f8:f2:89:aa:79:2c:3d:de:53:f6:47:c4:1e:7d:78:
f4:1e:7a:0d:5d:37:9c:a4:ef:35:a7:14:c9:94:14:
0b:5c:22:78:4c:f5:08:0b:8f:56:72:4b:10:5c:fb:
4c:1d:19:c4:98:7f:0e:7d:1b:b6:83:3b:33:3f:49:
6d:82:05:74:1e:0b:25:0c:d8:af:e0:22:28:47:99:
e9:73:7f:da:f7:3e:1b:10:36:fb:96:1e:07:90:68:
6a:46:c3:72:7e:fe:ab:cb:ad:1b:c7:5f:4b:d5:7e:
a1:b4:87:a4:c5:77:0f:ec:55:21:7d:d9:b5:57:3c:
af:db:a8:5a:42:e6:cd:7e:04:4b:3a:a3:fc:17:b9:
8d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:56:1E:81:98:CC:D4:07:F1:BB:FC:10:C3:2D:D9:E7:2A:90:1A:1D
X509v3 Authority Key Identifier:
keyid:19:54:E3:25:70:BB:FB:9A:F1:1C:23:81:E8:1C:79:7C:2F:40:08:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/slYegZjM1Afxu_wQwy3Z5yqQGh0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/5c7c7d-4d2e-483c-89cd-26816ca92ca0/1/GVTjJXC7-5rxHCOB6Bx5fC9ACHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.170.0/24
Signature Algorithm: sha256WithRSAEncryption
39:90:24:b2:f6:cc:57:b1:14:29:45:21:34:65:40:3d:4d:a5:
bb:1c:5a:5d:31:3b:35:85:3d:7f:82:49:2e:a7:34:1b:b5:62:
0b:ea:3d:97:0d:86:29:bb:45:cd:42:64:20:00:3c:57:0b:28:
a3:c6:b8:a3:e7:2a:0f:c0:dc:cd:9a:dc:73:23:1f:9a:90:38:
cd:8f:e6:00:37:2f:16:2b:47:ec:6a:d3:5b:fe:63:d1:a6:4f:
4f:88:5a:e7:b8:b3:b2:ca:bd:e9:bd:c4:00:dc:3b:92:bd:eb:
8c:e2:54:6a:ca:2e:fb:7a:da:09:d9:7f:ad:8c:df:bf:e0:67:
ab:d2:4d:24:f3:12:97:cc:a9:e2:95:8b:ef:a9:5f:87:6a:ea:
7c:93:92:2d:bc:5c:80:f0:0b:92:08:1f:8a:65:55:ab:54:b1:
18:10:1a:37:23:85:6a:71:2e:5e:8a:49:1d:dc:19:a1:79:30:
cd:30:3f:85:cb:bb:cb:dd:fa:69:4e:c4:b4:03:ac:4d:d5:7a:
eb:32:3f:2c:75:ae:19:5e:01:0a:df:8b:33:ad:09:10:12:1b:
6c:d2:40:af:6d:50:37:a4:06:e6:33:c4:d3:72:4e:89:06:19:
49:53:8c:a6:b3:0f:1e:68:9a:de:fd:3a:cc:51:f8:fb:85:5a:
62:8e:50:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:58 2024 by rpki-client on console-fra.rpki-client.org