Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/bE92vNS2gyc79JKOHxw2-j1hmuM.roa
File: bE92vNS2gyc79JKOHxw2-j1hmuM.roa (raw, json)
Hash identifier: +JcKqYYPffG28u8zHOW7Rkc9zD3FhFSdhttwT4jUuxU=
Subject key identifier: 6C:4F:76:BC:D4:B6:83:27:3B:F4:92:8E:1F:1C:36:FA:3D:61:9A:E3
Certificate issuer: /CN=ab9cfd157441f69428dd1f6361ca4f4ae42cb38a
Certificate serial: 018570B0785A9A9CD81ED5C109CCB7EEFBCC
Authority key identifier: AB:9C:FD:15:74:41:F6:94:28:DD:1F:63:61:CA:4F:4A:E4:2C:B3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q5z9FXRB9pQo3R9jYcpPSuQss4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/bE92vNS2gyc79JKOHxw2-j1hmuM.roa
Signing time: Mon 02 Jan 2023 04:14:51 +0000
ROA not before: Mon 02 Jan 2023 04:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6799
IP address blocks: 194.125.252.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:78:5a:9a:9c:d8:1e:d5:c1:09:cc:b7:ee:fb:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab9cfd157441f69428dd1f6361ca4f4ae42cb38a
Validity
Not Before: Jan 2 04:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c4f76bcd4b683273bf4928e1f1c36fa3d619ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:11:68:27:3c:89:a9:86:ec:c4:97:7e:e9:c8:
bb:8f:11:17:35:78:02:a4:91:da:5d:2e:2d:e9:75:
ef:a8:b1:3f:57:df:62:89:4d:ee:84:77:2b:72:ae:
8c:84:9a:e1:5b:9e:48:d4:96:2e:df:03:45:e3:70:
14:02:61:d2:10:eb:d3:82:97:fd:8e:ac:1d:ed:f2:
e1:4b:b5:e7:af:04:5d:1c:ab:86:a5:0f:c4:e0:d9:
60:32:6a:8d:77:e7:f6:fe:aa:4f:e8:66:cb:0e:aa:
dd:1d:a6:b3:74:cf:19:03:83:7a:92:ef:60:9e:f3:
3e:ec:01:f1:4c:f6:15:cb:ca:4f:03:16:01:db:e5:
1b:18:cf:45:ca:fc:c5:a2:e5:4b:4e:39:18:d4:ab:
fe:d8:83:ef:c9:fb:e3:1d:53:2e:f6:9c:9c:3a:ad:
4d:a4:77:1d:8c:88:ed:3b:b0:29:61:6d:3f:fb:bb:
e4:e7:98:2b:c4:a7:d6:1b:17:4e:85:3b:65:7e:25:
da:db:4f:fe:02:c8:93:a6:59:dc:20:86:a5:84:3b:
95:4d:1c:9c:79:57:c9:ae:19:41:3f:fd:4f:6a:e2:
0d:c4:25:56:79:7c:44:f0:f7:a4:ed:9a:f9:6d:6b:
34:e8:3e:fc:fd:b9:16:10:36:c7:1d:99:68:e1:82:
a2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:4F:76:BC:D4:B6:83:27:3B:F4:92:8E:1F:1C:36:FA:3D:61:9A:E3
X509v3 Authority Key Identifier:
keyid:AB:9C:FD:15:74:41:F6:94:28:DD:1F:63:61:CA:4F:4A:E4:2C:B3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q5z9FXRB9pQo3R9jYcpPSuQss4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/bE92vNS2gyc79JKOHxw2-j1hmuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/7d314e-42cd-42ce-985e-954f26913f43/1/q5z9FXRB9pQo3R9jYcpPSuQss4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.125.252.0/23
Signature Algorithm: sha256WithRSAEncryption
27:1a:49:de:c9:1a:cc:de:a5:8d:e3:fb:81:86:61:90:88:31:
25:8b:d3:1b:93:fb:ec:20:ee:7f:f4:74:df:20:5c:d8:ba:ed:
b6:a5:03:55:7c:3d:2d:02:73:4c:69:e2:3f:fb:c5:38:a4:66:
6a:29:de:4b:e3:28:64:ac:83:1a:25:21:05:29:b9:3a:15:6e:
71:4e:21:43:29:5d:0e:13:56:1c:df:c8:f9:fd:f9:76:6a:a9:
a3:34:86:d1:51:40:4c:11:2d:57:1b:2a:2a:47:3c:9b:49:f0:
68:e7:48:0a:1d:bc:1c:80:56:00:11:6d:18:63:f3:c2:42:62:
59:77:5f:c4:bd:99:b0:cb:68:eb:91:2b:b0:0b:ff:78:61:f5:
6b:5e:c8:80:2d:7b:be:3c:05:5c:6d:af:2f:34:89:e2:4a:cb:
9c:95:99:1c:38:0a:25:d0:dd:a1:66:fc:d5:58:7b:8d:da:99:
32:81:f9:99:3f:cb:00:0f:5a:d4:b5:e0:71:f6:ac:58:64:b2:
5d:88:4f:d9:30:04:7d:21:62:65:76:95:79:1f:64:24:a5:a7:
56:ea:33:33:2e:f9:b1:16:95:73:04:c2:33:be:4e:52:08:5e:
36:b1:e9:b4:03:aa:85:ef:66:f4:e0:cf:81:43:f3:ad:f5:10:
80:70:54:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:26 2024 by rpki-client on console-fra.rpki-client.org