Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/bS-s34e77zOHNmDOASFtsrCC3IY.roa
File: bS-s34e77zOHNmDOASFtsrCC3IY.roa (raw, json)
Hash identifier: 7S48WWivzgKsj+6m9OkNmL+A0c2ESD39T4aICmiUoKk=
Subject key identifier: 6D:2F:AC:DF:87:BB:EF:33:87:36:60:CE:01:21:6D:B2:B0:82:DC:86
Certificate issuer: /CN=e7c7ec8d780503db7cabcb141d6b991cd029a6a2
Certificate serial: 01856C6F23918F0A49D15242F75DCF0272AC
Authority key identifier: E7:C7:EC:8D:78:05:03:DB:7C:AB:CB:14:1D:6B:99:1C:D0:29:A6:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58fsjXgFA9t8q8sUHWuZHNAppqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/bS-s34e77zOHNmDOASFtsrCC3IY.roa
Signing time: Sun 01 Jan 2023 08:25:00 +0000
ROA not before: Sun 01 Jan 2023 08:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48774
IP address blocks: 194.59.182.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:23:91:8f:0a:49:d1:52:42:f7:5d:cf:02:72:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c7ec8d780503db7cabcb141d6b991cd029a6a2
Validity
Not Before: Jan 1 08:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d2facdf87bbef33873660ce01216db2b082dc86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:8b:e1:d6:e3:05:ad:f2:e9:96:57:d1:eb:8f:
66:be:52:dd:dd:7f:1d:02:4c:78:28:f2:d4:23:dc:
20:45:85:80:78:82:26:dd:26:fe:02:05:91:5c:55:
8c:75:aa:a5:8a:85:97:61:cf:bc:e2:c0:e0:6f:50:
30:87:74:53:b3:27:fe:09:64:f1:fa:4b:dc:72:e3:
69:d3:63:8a:30:26:a3:d7:57:70:cc:68:f5:45:5f:
11:92:95:37:ea:db:ee:e2:88:28:45:26:de:d2:9d:
e9:fa:02:86:7c:0a:4f:8a:9c:fd:7d:02:4a:74:e3:
a9:88:46:93:7a:fa:45:a6:f8:c1:4e:1c:ed:80:20:
d3:9a:22:35:51:f2:ed:3a:bd:c6:e0:dc:32:28:cc:
46:ef:be:e5:9f:92:c3:2f:a6:6c:b2:84:f1:36:05:
c2:02:60:7d:7c:9f:24:b0:27:80:7a:8b:ed:b8:db:
ea:cf:2b:52:6b:c7:14:64:08:9b:7c:d4:dc:2b:6d:
2a:81:ab:12:8e:67:cf:f8:a9:23:1f:a0:98:69:5e:
ac:ec:d9:42:9e:d6:b8:6d:74:13:2d:54:f5:07:cf:
34:ed:73:98:c4:4a:11:54:2f:e1:19:a0:3e:af:15:
a5:22:ba:6f:4f:62:a8:c8:9b:98:84:6e:2a:27:62:
71:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2F:AC:DF:87:BB:EF:33:87:36:60:CE:01:21:6D:B2:B0:82:DC:86
X509v3 Authority Key Identifier:
keyid:E7:C7:EC:8D:78:05:03:DB:7C:AB:CB:14:1D:6B:99:1C:D0:29:A6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58fsjXgFA9t8q8sUHWuZHNAppqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/bS-s34e77zOHNmDOASFtsrCC3IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/674e76-4245-402d-9c51-d2d2aba28e80/1/58fsjXgFA9t8q8sUHWuZHNAppqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.182.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:ba:bf:b6:cc:8e:19:2b:22:ee:bc:4e:b5:5f:ea:c6:47:e4:
5a:c5:1d:0d:26:3a:f0:4c:df:5b:d8:7d:13:77:25:b4:6e:7d:
2f:38:53:a6:f2:fb:b5:9d:35:61:b2:a4:66:46:f7:b8:5e:69:
5c:4a:90:b1:fc:66:8e:cb:04:3b:7b:88:33:a4:6b:55:ea:90:
ca:bf:93:cb:e0:cf:b9:a4:75:c1:60:e3:11:ab:9a:bb:1e:82:
8d:cd:57:f7:ee:fa:e5:9b:cf:92:05:24:bc:87:cf:dc:5e:a2:
8f:48:a4:bb:21:c0:d1:0d:cf:16:4e:be:c9:7a:0d:91:78:50:
e9:c7:f5:37:f5:19:b3:43:6c:9f:06:bc:93:a0:0c:ec:b9:21:
1b:18:76:e9:47:56:e6:df:a2:b9:63:1d:e4:59:c1:d0:d9:e3:
90:02:98:d9:a1:32:6f:7f:e0:a3:6d:10:f7:cf:1c:1e:6f:df:
b9:08:75:91:fb:c2:bd:92:c3:b7:e0:c5:4a:df:43:49:cf:fa:
36:7b:9a:bb:18:65:d6:a5:fe:c9:a9:58:d8:a4:0b:48:8e:67:
1e:d0:f1:9d:0e:99:36:af:c0:36:ea:17:2c:7e:fb:60:be:96:
80:4b:06:28:4d:00:e6:86:f1:ec:af:6c:4b:b1:62:c4:ed:3b:
0d:0f:be:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:31:04 2024 by rpki-client on console-ams.rpki-client.org