Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/IUazJGjb4xYF7EyNeOhUfsXWIA4.roa
File: IUazJGjb4xYF7EyNeOhUfsXWIA4.roa (raw, json)
Hash identifier: V+JqdgJV/8iX1CtfsUgp5w7979uG8hVfT/qVTT7K82k=
Subject key identifier: 21:46:B3:24:68:DB:E3:16:05:EC:4C:8D:78:E8:54:7E:C5:D6:20:0E
Certificate issuer: /CN=a023766c62deb51297155708eccb421c8b04780a
Certificate serial: 01856CE6357B89EAFF9234BB5A51C480629D
Authority key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/IUazJGjb4xYF7EyNeOhUfsXWIA4.roa
Signing time: Sun 01 Jan 2023 10:35:04 +0000
ROA not before: Sun 01 Jan 2023 10:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207784
IP address blocks: 195.144.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:35:7b:89:ea:ff:92:34:bb:5a:51:c4:80:62:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a023766c62deb51297155708eccb421c8b04780a
Validity
Not Before: Jan 1 10:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2146b32468dbe31605ec4c8d78e8547ec5d6200e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:44:b6:23:5c:ad:e2:64:9b:f0:7c:71:76:67:
c5:7f:47:8d:78:94:b2:e5:0c:d7:a1:59:2b:2b:7a:
a1:4c:2e:6b:59:18:70:a6:63:de:49:6c:bb:f9:63:
32:95:ff:ff:7b:22:53:1f:f6:f7:fc:95:82:f5:46:
19:0c:1d:b6:b7:f3:43:fd:f8:96:f0:33:f3:40:93:
3e:3d:e0:ec:bb:7c:a9:5a:53:59:4b:67:c9:aa:9b:
d1:4f:24:94:11:21:d7:54:8a:7d:a1:60:61:16:8f:
59:fe:e0:61:f6:4b:c7:cb:93:13:a7:fd:39:2b:02:
93:94:38:0b:91:51:b7:f1:f4:32:fa:2b:13:cd:6f:
3a:80:6e:70:83:4c:9b:c3:be:04:81:36:fb:04:ae:
c0:4d:1f:2b:c3:7e:0e:35:43:8e:16:44:ec:93:01:
45:8f:0d:b3:d2:b6:71:62:78:30:ec:e5:b0:f7:be:
56:f8:9a:01:5d:39:d6:0f:a8:f9:b5:4f:1b:79:8a:
3a:c6:83:cb:a1:bd:ff:99:20:db:81:5a:af:f8:43:
1d:8e:70:56:31:ca:c5:80:21:03:e5:d9:7e:9f:18:
c7:e9:d5:78:06:1f:45:26:c7:1e:20:42:bb:a5:9b:
f3:55:ce:02:7b:c6:a1:8e:fb:a1:cb:09:64:66:6b:
59:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:46:B3:24:68:DB:E3:16:05:EC:4C:8D:78:E8:54:7E:C5:D6:20:0E
X509v3 Authority Key Identifier:
keyid:A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/IUazJGjb4xYF7EyNeOhUfsXWIA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.144.27.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:7f:6e:29:72:4e:64:d0:4c:8d:55:8f:04:da:06:79:3c:5f:
73:27:f8:8e:e9:b3:12:65:9e:d1:20:d8:df:46:c2:42:1d:3d:
9f:8f:22:aa:14:d0:5d:f2:e3:a2:6c:35:44:84:a1:08:f7:89:
eb:e3:b1:12:33:6e:68:c9:26:cc:ed:ac:c4:ff:b6:03:b1:29:
3f:df:ed:13:01:fd:a4:dc:ca:2a:15:e4:51:3b:c1:f5:59:98:
9c:e0:29:0a:fd:93:2c:54:37:c3:bd:fc:09:1b:d3:52:66:93:
1c:71:87:7c:ca:f2:bd:85:91:17:d3:fb:6c:1c:b8:3a:eb:e8:
62:cf:15:d8:cb:95:6d:32:db:6a:0f:83:2a:7d:45:23:d6:22:
96:55:9b:de:f1:cb:c6:72:0b:24:57:81:98:a9:75:41:d0:45:
08:42:79:2a:7a:66:42:5c:35:86:dc:a2:5d:be:b7:91:68:3c:
d6:f9:c7:24:a0:36:66:94:44:18:ed:a9:64:f8:13:02:f1:50:
75:92:a6:9f:43:19:e2:43:ed:88:cc:6e:79:91:7b:2b:5f:20:
da:ee:28:28:f7:77:d6:d2:7c:23:d9:f1:e7:93:63:e1:0a:90:
a3:5f:2f:1d:be:8b:d1:32:90:e7:61:aa:ff:55:3e:40:e7:60:
7d:68:b2:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:13 2024 by rpki-client on console-ams.rpki-client.org