Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/6bf5ed-6fe6-4562-b853-9a4ec10607c5/1/zlW3Ko5PkAc5rg7UGWJ0yOL43g4.roa
File: zlW3Ko5PkAc5rg7UGWJ0yOL43g4.roa (raw, json)
Hash identifier: KnGvQutgGLyS7Kk/2eZfTGBaA72LKe1aQ03PU4mONTs=
Subject key identifier: CE:55:B7:2A:8E:4F:90:07:39:AE:0E:D4:19:62:74:C8:E2:F8:DE:0E
Certificate issuer: /CN=d32563ed9964e42681a1c5d295b0c6148606e73d
Certificate serial: 018683CBC5857AA9CD4893AB377AB875D654
Authority key identifier: D3:25:63:ED:99:64:E4:26:81:A1:C5:D2:95:B0:C6:14:86:06:E7:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0yVj7Zlk5CaBocXSlbDGFIYG5z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/6bf5ed-6fe6-4562-b853-9a4ec10607c5/1/zlW3Ko5PkAc5rg7UGWJ0yOL43g4.roa
Signing time: Fri 24 Feb 2023 14:20:14 +0000
ROA not before: Fri 24 Feb 2023 14:20:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 194.59.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:cb:c5:85:7a:a9:cd:48:93:ab:37:7a:b8:75:d6:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d32563ed9964e42681a1c5d295b0c6148606e73d
Validity
Not Before: Feb 24 14:20:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce55b72a8e4f900739ae0ed4196274c8e2f8de0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:85:23:f3:6b:4d:78:a7:07:c9:bc:07:7e:92:
c1:a6:a5:a3:b2:76:f8:36:6a:a2:a8:dc:ff:03:9e:
f3:60:82:2f:1a:dc:7d:38:c3:52:e6:5d:d3:86:3a:
39:fb:2a:6f:8a:b8:85:c4:b4:79:e8:6b:8a:d9:01:
9a:56:9d:ff:2b:2c:2e:95:ed:f2:55:40:d7:7b:a7:
4e:36:35:1b:ae:f4:59:a7:3d:b8:04:9b:cc:83:f1:
81:3b:ba:69:86:76:9a:d7:c6:9f:8f:f0:55:59:41:
a1:9b:71:e8:ed:c0:e1:05:8d:57:bb:57:9c:5f:e2:
35:e2:6d:ab:9d:8e:3c:13:86:89:ee:0f:16:a4:7a:
7c:15:d4:32:0a:26:b2:41:49:be:c2:ec:7a:6f:02:
cb:88:5e:c4:35:a2:92:96:de:2f:38:1b:87:65:07:
18:6f:d8:09:de:54:ac:5e:0f:64:ee:18:c5:87:22:
c0:23:4f:06:15:39:5e:80:7d:3c:27:4f:bc:90:c9:
5a:e5:11:ba:63:16:88:44:a0:97:ed:a1:cf:78:a1:
f2:d3:a3:d7:ec:8f:af:70:72:1d:bd:76:59:25:40:
1b:46:e6:71:fb:f2:d9:82:12:ec:19:aa:2b:d3:ee:
9b:ae:d7:9d:fc:b5:d1:53:00:96:ee:37:c8:be:2a:
d6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:55:B7:2A:8E:4F:90:07:39:AE:0E:D4:19:62:74:C8:E2:F8:DE:0E
X509v3 Authority Key Identifier:
keyid:D3:25:63:ED:99:64:E4:26:81:A1:C5:D2:95:B0:C6:14:86:06:E7:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0yVj7Zlk5CaBocXSlbDGFIYG5z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6bf5ed-6fe6-4562-b853-9a4ec10607c5/1/zlW3Ko5PkAc5rg7UGWJ0yOL43g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/6bf5ed-6fe6-4562-b853-9a4ec10607c5/1/0yVj7Zlk5CaBocXSlbDGFIYG5z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.247.0/24
Signature Algorithm: sha256WithRSAEncryption
64:cd:99:f2:5e:7d:59:30:6a:3b:7e:c2:53:6e:37:a4:06:01:
43:ad:59:d2:a7:45:a7:2f:45:f6:24:41:72:e4:cc:7e:3a:54:
cd:3e:03:fd:05:9a:ba:2a:cb:6c:0c:b2:10:3c:c1:23:10:3d:
56:93:30:0b:8e:43:fd:63:9c:e7:35:77:b5:b9:05:f2:4b:a4:
f2:c5:ae:8f:2a:c6:c8:3f:3f:64:19:95:10:0b:43:19:22:cc:
a7:c3:b4:ba:ad:5e:90:9f:dd:59:fe:e2:98:f1:6f:1f:05:92:
63:45:bc:69:9c:a6:10:51:c3:3c:aa:43:09:ef:e9:d3:27:e2:
76:f9:9e:49:e8:26:89:9f:07:a3:d5:b4:cc:51:e7:7e:5a:7c:
65:b5:76:66:36:6b:94:71:c2:a7:00:87:83:2a:ac:f5:17:cf:
56:84:e2:b9:5e:29:71:07:5b:37:cc:73:a6:22:db:09:21:9d:
b2:30:53:d4:59:10:d2:da:70:b2:92:99:68:9b:3c:48:63:d7:
3a:12:68:36:39:7e:2d:e3:20:b2:30:02:01:61:77:c4:bb:22:
4e:bb:91:1c:69:f5:b6:9a:19:50:f3:12:e0:b5:06:62:56:ff:
36:cd:f5:a7:7f:bf:78:70:c7:04:2b:99:ca:2b:c7:de:71:0d:
49:4c:e5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:47 2024 by rpki-client on console-fra.rpki-client.org