Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8f5cbd-f539-4fff-b42f-4745d7cd93f1/1/AFsYCWThKQuNrMCz5GOGghkB09o.roa
File: AFsYCWThKQuNrMCz5GOGghkB09o.roa (raw, json)
Hash identifier: 2m77H9Y46JZZAJFBkt8J3RQB+uHOCV1QUxsn6T/Q+D8=
Subject key identifier: 00:5B:18:09:64:E1:29:0B:8D:AC:C0:B3:E4:63:86:82:19:01:D3:DA
Certificate issuer: /CN=f9951ba56329323b4c60f620d6a7391e707b5556
Certificate serial: 01856CB81B97F98E53DBE7A58B3BEF409337
Authority key identifier: F9:95:1B:A5:63:29:32:3B:4C:60:F6:20:D6:A7:39:1E:70:7B:55:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ZUbpWMpMjtMYPYg1qc5HnB7VVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8f5cbd-f539-4fff-b42f-4745d7cd93f1/1/AFsYCWThKQuNrMCz5GOGghkB09o.roa
Signing time: Sun 01 Jan 2023 09:44:42 +0000
ROA not before: Sun 01 Jan 2023 09:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31017
IP address blocks: 194.102.194.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:1b:97:f9:8e:53:db:e7:a5:8b:3b:ef:40:93:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9951ba56329323b4c60f620d6a7391e707b5556
Validity
Not Before: Jan 1 09:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=005b180964e1290b8dacc0b3e46386821901d3da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9d:78:c6:67:f2:5d:a9:7c:8c:ad:c1:b2:cb:
e7:6b:e8:7a:15:c4:7b:24:7a:4c:f9:d2:89:7a:91:
91:79:d5:08:41:5e:a2:19:71:1d:17:d8:ea:51:b5:
72:08:37:a1:93:2d:1e:3b:e6:c6:2b:e3:1f:42:43:
32:15:be:e6:b5:2f:3d:3e:ae:f2:4b:87:28:02:64:
54:21:a4:71:a8:6f:ce:0b:c6:67:b3:f3:a0:bd:a8:
ad:97:58:f6:aa:71:06:64:ed:f6:1f:af:cb:5e:5b:
07:59:71:2b:b8:05:38:da:40:0f:75:e2:21:5c:0b:
d5:d4:15:10:c2:40:de:76:59:6d:26:d1:3a:7e:f7:
1e:5d:ec:f3:05:86:9e:8e:5e:b0:28:75:03:d0:84:
53:17:59:97:7b:bb:52:d0:64:fe:15:47:7e:ee:2b:
4f:d6:02:c6:05:19:8e:5e:f2:fb:7b:5c:c2:05:bd:
33:e9:23:08:ee:73:1a:c4:53:27:9f:46:01:49:2b:
17:25:92:dc:99:c6:36:cf:c9:0e:27:0e:32:88:98:
14:2e:37:c3:b3:bb:ff:8f:70:84:81:2e:8e:4b:f3:
e4:3e:c4:ae:c4:68:30:95:1a:cf:f3:3b:a2:a8:c1:
dc:43:a8:9e:a5:f0:cc:81:2c:8e:79:de:fd:11:d5:
1e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5B:18:09:64:E1:29:0B:8D:AC:C0:B3:E4:63:86:82:19:01:D3:DA
X509v3 Authority Key Identifier:
keyid:F9:95:1B:A5:63:29:32:3B:4C:60:F6:20:D6:A7:39:1E:70:7B:55:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ZUbpWMpMjtMYPYg1qc5HnB7VVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8f5cbd-f539-4fff-b42f-4745d7cd93f1/1/AFsYCWThKQuNrMCz5GOGghkB09o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8f5cbd-f539-4fff-b42f-4745d7cd93f1/1/1-ZUbpWMpMjtMYPYg1qc5HnB7VVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.194.0/24
Signature Algorithm: sha256WithRSAEncryption
52:26:3e:d4:f7:9e:a3:22:78:16:54:54:0b:46:03:8a:b6:52:
17:03:31:b0:85:4c:a9:f0:55:70:5e:b7:cf:2f:d2:1f:1a:61:
d8:f0:92:7e:f8:5c:d2:d6:c6:21:15:49:97:f2:06:78:fd:b2:
f6:a2:ba:c9:de:6c:0f:f8:46:19:cd:42:49:c0:c3:0a:3c:4b:
da:8a:a3:1c:68:84:65:d7:64:29:4d:90:b0:12:cc:69:fd:f3:
01:d2:15:c3:0d:e4:f4:88:f2:b2:92:4b:de:c8:d8:ab:c9:c5:
2c:21:be:d4:bf:d9:f2:e5:ad:d3:d3:ca:07:0d:1a:a5:f5:2b:
90:26:52:99:f3:69:a9:79:c9:02:8b:7f:91:07:21:22:61:38:
c8:e7:77:cb:c3:d0:f0:6f:94:52:99:74:1a:38:92:6e:f6:a1:
2d:7d:72:07:70:b4:ac:4e:b8:cb:56:08:cd:e7:4e:8d:1a:e1:
be:03:de:1b:5c:de:f4:82:ac:c3:dd:f4:0a:3b:0f:43:e0:71:
e5:a3:97:cd:9b:ff:0f:63:40:52:37:c9:6d:94:5b:1b:f4:af:
c8:e8:0a:a3:26:f1:69:2f:d2:95:55:00:5e:c2:ae:f7:9a:82:
3f:8c:70:60:d5:12:5e:88:35:3d:67:73:25:0f:a6:f3:8b:60:
8d:d2:f3:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:26 2024 by rpki-client on console-fra.rpki-client.org