Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/5e51ba-508f-4f23-a79f-43283b3718dc/1/hMmRJkGMaYplV9CnWvTB0t7vJyU.roa
File: hMmRJkGMaYplV9CnWvTB0t7vJyU.roa (raw, json)
Hash identifier: qItDGd2qv/gXniIhGnzbCvmrP0FOYhGMiOU6omkgwyQ=
Subject key identifier: 84:C9:91:26:41:8C:69:8A:65:57:D0:A7:5A:F4:C1:D2:DE:EF:27:25
Certificate issuer: /CN=d8c2096cc0c5557cbab6c10d61d077d078fe717f
Certificate serial: 018B41D037A4978E556022975BAD641CF2DF
Authority key identifier: D8:C2:09:6C:C0:C5:55:7C:BA:B6:C1:0D:61:D0:77:D0:78:FE:71:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MIJbMDFVXy6tsENYdB30Hj-cX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/5e51ba-508f-4f23-a79f-43283b3718dc/1/hMmRJkGMaYplV9CnWvTB0t7vJyU.roa
Signing time: Wed 18 Oct 2023 08:04:06 +0000
ROA not before: Wed 18 Oct 2023 08:04:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200043
IP address blocks: 194.50.54.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:41:d0:37:a4:97:8e:55:60:22:97:5b:ad:64:1c:f2:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c2096cc0c5557cbab6c10d61d077d078fe717f
Validity
Not Before: Oct 18 08:04:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84c99126418c698a6557d0a75af4c1d2deef2725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:18:d5:d4:bf:be:62:52:14:1f:73:54:2e:c0:
9a:90:4f:c0:57:36:b8:72:10:bb:86:9d:b3:3a:db:
d2:1d:81:7b:0f:3b:12:d7:19:45:35:7f:46:4b:21:
12:e8:0b:d0:20:9c:2e:53:ac:40:06:8e:0d:61:e7:
27:2b:e1:47:b5:54:2d:ee:97:57:84:2a:a1:df:83:
4d:d4:62:ac:fb:bd:48:bc:47:22:91:a3:12:85:94:
02:69:33:d9:77:ee:f0:19:e8:1f:a0:df:ba:81:e4:
cd:cc:97:f6:13:ed:03:8c:75:c9:04:25:c5:25:bd:
87:25:c3:1f:77:8e:60:a3:b7:ba:41:c4:fa:ab:c3:
e4:4f:c2:63:65:f7:c8:e2:bb:a5:2d:19:a1:02:2d:
91:d1:3a:2c:0b:e4:3c:53:bd:85:1e:fa:ce:3b:7d:
ee:6c:1f:a8:f9:44:33:41:f7:8f:ec:d6:fa:2d:a0:
38:36:b5:11:ec:67:75:20:7e:40:25:97:ac:9e:71:
a9:4b:61:5e:58:f8:6d:95:62:0c:85:ac:30:fd:0f:
06:3e:09:40:e7:bb:82:66:6c:80:01:56:d3:a1:d9:
dc:b8:ba:9e:56:4b:92:b7:64:97:6c:45:45:bb:b4:
16:3a:07:37:cf:ee:58:78:3c:72:20:f4:1e:23:cc:
fb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C9:91:26:41:8C:69:8A:65:57:D0:A7:5A:F4:C1:D2:DE:EF:27:25
X509v3 Authority Key Identifier:
keyid:D8:C2:09:6C:C0:C5:55:7C:BA:B6:C1:0D:61:D0:77:D0:78:FE:71:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MIJbMDFVXy6tsENYdB30Hj-cX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5e51ba-508f-4f23-a79f-43283b3718dc/1/hMmRJkGMaYplV9CnWvTB0t7vJyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/5e51ba-508f-4f23-a79f-43283b3718dc/1/2MIJbMDFVXy6tsENYdB30Hj-cX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.54.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:64:fe:1a:5a:01:9d:94:ae:c0:91:3f:73:26:6f:3c:42:80:
ee:8f:21:0a:ca:e1:4b:b4:c7:c5:91:e2:6f:60:22:77:d7:83:
f5:5e:2b:ad:33:74:2b:b0:2a:67:25:72:a4:b9:e8:e7:99:f1:
c2:ec:25:ed:78:1b:66:6b:02:dd:fc:5d:19:a5:46:1b:21:54:
c8:3c:e6:b7:49:ab:fd:70:45:be:5c:40:c8:fa:cb:f6:0c:0e:
ce:b9:a8:59:54:75:34:47:2c:49:80:be:14:fc:55:a4:cb:30:
c4:16:53:8e:5a:40:b0:b2:3b:b8:4d:e7:0a:a9:5c:fe:a1:68:
fb:31:ce:6b:2c:c6:9e:b4:7e:8c:9a:bb:5f:af:ea:c4:9a:5c:
5c:26:f3:11:4d:11:00:25:57:0b:3f:28:f8:dc:54:34:fc:c7:
68:68:23:15:ef:b0:0c:9e:cc:32:fe:80:d2:2f:ab:81:aa:af:
2a:ca:63:14:2f:ce:0d:63:9c:71:5a:bd:c5:33:de:dd:f9:8e:
78:65:69:a9:a5:f2:4a:69:27:28:80:c9:05:15:b5:51:36:a1:
79:51:90:5f:0b:90:45:f3:3f:14:4d:9f:c0:73:2c:be:2b:18:
e5:af:36:6d:e8:b9:9a:96:79:d9:77:8d:d1:13:ba:1c:b6:d0:
e6:e9:97:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:39 2024 by rpki-client on console-ams.rpki-client.org