Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ed69dc-80d7-4336-a22d-848af698d0d8/1/H-o3eN3GE08imhqkmdR9B8JI5Gk.roa
File: H-o3eN3GE08imhqkmdR9B8JI5Gk.roa (raw, json)
Hash identifier: HWNj1noAPb4xkPAfbBunFBtE7qYIeWh6khDjAELLqLg=
Subject key identifier: 1F:EA:37:78:DD:C6:13:4F:22:9A:1A:A4:99:D4:7D:07:C2:48:E4:69
Certificate issuer: /CN=83ac88f0170cbfe446cfd31a5823cde0e093199a
Certificate serial: 018572311E08609D9DD1EA28A9A4AC25F21C
Authority key identifier: 83:AC:88:F0:17:0C:BF:E4:46:CF:D3:1A:58:23:CD:E0:E0:93:19:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g6yI8BcMv-RGz9MaWCPN4OCTGZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ed69dc-80d7-4336-a22d-848af698d0d8/1/H-o3eN3GE08imhqkmdR9B8JI5Gk.roa
Signing time: Mon 02 Jan 2023 11:14:59 +0000
ROA not before: Mon 02 Jan 2023 11:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33915
IP address blocks: 194.53.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1e:08:60:9d:9d:d1:ea:28:a9:a4:ac:25:f2:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83ac88f0170cbfe446cfd31a5823cde0e093199a
Validity
Not Before: Jan 2 11:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fea3778ddc6134f229a1aa499d47d07c248e469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:66:c2:77:a5:69:bd:a1:f5:68:cd:95:60:f3:
4c:8e:06:f2:42:93:15:d4:f2:eb:14:ca:0d:de:25:
8a:74:f5:ae:c6:62:7f:9d:22:88:c6:bd:b6:26:8e:
f7:e4:05:a4:18:ee:5e:e5:49:77:1a:4f:14:f4:ac:
f8:b2:7b:88:74:5d:29:af:4c:56:0f:48:f5:aa:a1:
fb:70:e2:03:ee:74:99:cb:ec:b2:3a:ce:11:1f:3e:
51:68:26:ef:9a:c9:0e:d4:85:a7:03:98:f9:85:39:
4c:62:96:1c:90:e3:b3:88:77:7a:bd:f1:ac:ce:3d:
70:c9:6d:57:06:c0:d8:40:cb:a7:1d:4d:57:e0:f5:
0f:02:e9:fc:d9:df:fa:0e:7b:45:ac:c3:bc:91:06:
ed:1c:53:36:01:50:7f:c1:a8:11:be:ae:25:2c:87:
10:51:7c:2e:1f:b5:38:50:ae:8a:97:56:d5:49:5a:
44:84:57:59:61:d6:43:e9:20:e6:94:ec:07:0c:02:
e4:7b:5f:18:91:3b:57:04:4a:84:8b:82:cf:26:5c:
b1:49:14:71:4b:05:06:47:8a:d8:02:9d:a6:d7:9f:
1f:68:f0:2f:10:eb:61:85:12:5d:7c:dc:3b:08:ff:
44:4e:ba:1c:22:3e:60:b6:05:98:66:dc:39:0b:1b:
4c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:EA:37:78:DD:C6:13:4F:22:9A:1A:A4:99:D4:7D:07:C2:48:E4:69
X509v3 Authority Key Identifier:
keyid:83:AC:88:F0:17:0C:BF:E4:46:CF:D3:1A:58:23:CD:E0:E0:93:19:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g6yI8BcMv-RGz9MaWCPN4OCTGZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ed69dc-80d7-4336-a22d-848af698d0d8/1/H-o3eN3GE08imhqkmdR9B8JI5Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ed69dc-80d7-4336-a22d-848af698d0d8/1/g6yI8BcMv-RGz9MaWCPN4OCTGZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.10.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:95:99:ef:85:3d:7e:f4:3b:7f:e1:67:1c:76:52:68:1a:f0:
cf:02:51:eb:de:4f:cc:59:10:4a:6d:60:53:13:ef:9b:ac:38:
d1:e6:b6:3d:22:54:bd:26:47:8e:fd:69:f7:e5:6a:4c:80:5f:
ec:6f:e1:9e:b3:76:7f:67:93:b7:5b:a2:87:25:42:2a:03:6c:
32:01:ae:1a:18:60:d1:36:32:c8:75:3f:94:44:5e:97:23:a2:
9d:77:bb:b3:c9:0a:cd:9e:2e:20:98:1a:e1:9e:18:0f:70:74:
ad:33:5d:dc:f4:47:de:a6:ca:d4:f1:8f:6d:2e:db:39:c3:93:
8b:24:72:b8:b6:ea:8c:01:20:be:99:68:0a:53:01:ad:34:33:
bb:4a:14:8c:f2:d0:9c:4f:e6:c1:9e:d9:92:ee:7e:6d:65:92:
4c:fa:60:ed:ec:38:89:d5:6b:a4:75:c6:dc:2b:bb:e8:a7:a8:
70:0f:89:bc:06:f2:fc:cf:84:08:44:e6:6d:6e:f5:80:54:4f:
cc:f5:e6:5c:83:35:e4:86:66:bf:0a:0f:fe:11:2d:e0:3a:ff:
48:79:e6:1e:1c:b8:2d:4e:4c:53:36:44:c2:85:3a:de:ce:de:
de:86:b2:b1:f5:1d:de:4a:28:39:57:48:4e:83:d3:2d:d9:d7:
8e:8c:99:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:40 2024 by rpki-client on console-fra.rpki-client.org