Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/3zsdWgqF6rT44SUDyWy7hdGIIAU.roa
File: 3zsdWgqF6rT44SUDyWy7hdGIIAU.roa (raw, json)
Hash identifier: 7uufeJ5/TSUYNoOb94i/Ri7s1VmqPfGwJHsuok2qXos=
Subject key identifier: DF:3B:1D:5A:0A:85:EA:B4:F8:E1:25:03:C9:6C:BB:85:D1:88:20:05
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 01891B8902EF5CEB5150F7223C222AEAC942
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/3zsdWgqF6rT44SUDyWy7hdGIIAU.roa
Signing time: Mon 03 Jul 2023 11:35:11 +0000
ROA not before: Mon 03 Jul 2023 11:35:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206150
IP address blocks: 194.50.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jul 2023 11:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:89:02:ef:5c:eb:51:50:f7:22:3c:22:2a:ea:c9:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Jul 3 11:35:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df3b1d5a0a85eab4f8e12503c96cbb85d1882005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:49:fc:2d:6f:8d:1d:07:13:1d:bb:6d:d6:6d:
53:1c:89:a5:f5:fa:27:0a:81:d3:46:94:76:86:96:
f5:d3:89:57:41:d4:43:42:47:6d:3f:f4:85:65:de:
fb:cf:97:6c:fc:18:31:a6:04:20:d6:4d:c2:d6:20:
d6:a8:10:40:4d:95:0c:ab:a0:4b:04:2d:44:10:4e:
83:9f:f3:62:2a:f2:3a:55:a9:56:ab:fc:66:53:20:
1a:fb:7b:d2:86:f7:19:f7:5f:44:40:ba:d2:a8:db:
5b:8e:04:65:de:e7:fb:3d:76:bc:1c:6b:ee:63:62:
07:45:5e:25:70:cf:36:36:9b:a3:f1:f4:7b:c9:d3:
66:a7:db:43:e7:72:2a:22:90:d3:66:44:16:74:d1:
6c:14:0b:c4:8d:db:68:89:f6:40:6b:06:6e:8b:5c:
c2:e2:56:9c:ed:b1:0d:67:c8:65:20:be:ca:82:8e:
3c:5f:47:6d:f9:27:04:0a:95:6b:0a:a0:9e:f5:c0:
a4:88:08:6a:32:c3:b5:78:6e:96:19:6e:00:8d:1c:
d0:5f:4a:56:59:96:9b:c0:26:f0:18:3d:dc:29:9d:
cb:87:85:05:a0:30:ee:46:59:cc:a1:a8:0b:c0:87:
12:f2:e4:93:64:0d:9b:04:01:c6:ef:6b:c2:1a:d1:
ad:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:3B:1D:5A:0A:85:EA:B4:F8:E1:25:03:C9:6C:BB:85:D1:88:20:05
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/3zsdWgqF6rT44SUDyWy7hdGIIAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:cd:c2:fd:90:ae:c3:0e:e6:a9:20:19:bd:05:dc:13:dc:c5:
7f:d1:42:34:42:40:5a:1b:fa:70:40:7a:07:5b:a3:c0:55:f5:
d2:69:18:66:42:d2:37:c4:8f:fc:72:e7:b5:d7:8d:00:f4:9e:
c1:8c:6d:76:04:bc:88:7b:b2:13:00:ea:96:ea:f1:3a:09:a0:
42:ce:25:92:08:72:f2:39:dc:b2:4e:4f:17:ba:f3:4f:1a:07:
f3:43:6c:13:cb:ac:0d:50:f0:6a:c5:a7:68:4a:6b:d6:7d:d7:
af:48:f5:bc:c4:b3:0c:fe:33:f5:60:df:92:e2:1b:c6:a9:b0:
db:27:82:06:d1:d6:a1:d1:f3:57:7b:e7:54:e5:c3:e4:b0:0f:
dd:78:68:2a:d6:1d:6d:f3:46:8e:e8:61:fe:bb:2b:7a:4d:ce:
e5:99:ee:bc:a2:bd:0d:63:e5:79:bd:c9:6e:41:76:95:85:ef:
fc:91:ad:25:a3:e3:d0:4a:54:e3:77:02:2a:bb:f5:43:38:67:
e9:ee:16:7e:e1:ce:f0:15:2b:4d:46:17:29:10:1a:06:7c:c9:
82:9a:f0:c6:26:bf:22:ff:69:d8:2a:99:63:7c:19:63:01:2e:
9a:85:89:51:5e:08:4e:e4:06:8c:2d:50:76:51:9e:23:59:48:
26:72:b5:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org