Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/JHsnw524wr0zcW40GJfwqlcoPyE.roa
File: JHsnw524wr0zcW40GJfwqlcoPyE.roa (raw, json)
Hash identifier: 7RhPs6nIg/hcaUnlw4e01N5I7W4nOr+29X7M8U9xbE4=
Subject key identifier: 24:7B:27:C3:9D:B8:C2:BD:33:71:6E:34:18:97:F0:AA:57:28:3F:21
Certificate issuer: /CN=eecc4cf37241ced1467c918aa276d388b0a82ed5
Certificate serial: 01856D8AB3704F40EB98198BCE58308283DF
Authority key identifier: EE:CC:4C:F3:72:41:CE:D1:46:7C:91:8A:A2:76:D3:88:B0:A8:2E:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sxM83JBztFGfJGKonbTiLCoLtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/JHsnw524wr0zcW40GJfwqlcoPyE.roa
Signing time: Sun 01 Jan 2023 13:34:44 +0000
ROA not before: Sun 01 Jan 2023 13:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42351
IP address blocks: 94.101.200.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:b3:70:4f:40:eb:98:19:8b:ce:58:30:82:83:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eecc4cf37241ced1467c918aa276d388b0a82ed5
Validity
Not Before: Jan 1 13:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=247b27c39db8c2bd33716e341897f0aa57283f21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:49:91:c7:33:c6:27:08:7a:9f:0a:7f:53:93:
da:01:d1:81:27:d5:97:cc:0f:e7:cf:ce:05:b2:96:
6c:76:47:3a:20:5d:ba:56:a6:b6:ee:d4:67:28:a2:
ae:70:7d:79:58:a6:1a:df:8b:ca:77:61:45:be:c5:
71:30:29:5a:b2:a5:70:e5:d6:da:28:18:8d:dd:3e:
c2:b9:2a:bb:c3:66:69:3e:fc:8a:e5:bc:ae:b0:68:
3d:2e:fc:a5:5f:36:23:da:2d:b8:7b:3e:25:86:ff:
e4:7d:1a:07:05:3e:91:7b:89:78:f1:80:6d:cc:6e:
c6:c3:a3:ab:b1:c9:7f:0e:00:5a:a2:ca:fc:fd:8e:
e6:68:a0:b9:89:4b:b4:e3:b9:6f:19:07:1e:f4:e9:
64:90:1f:c0:be:05:57:81:b9:c9:c9:ed:41:7d:02:
a9:7d:cc:11:4e:2a:fb:1f:b6:da:a0:97:cb:28:3f:
0b:34:8e:60:0f:e4:eb:5a:c3:14:82:94:ef:06:ad:
cc:b0:59:aa:75:70:fd:64:c9:ef:17:32:5d:ce:16:
79:98:c4:6d:05:c3:86:02:fa:57:4c:8b:0c:2d:54:
89:cd:66:20:34:52:18:42:6b:da:e8:fe:90:f0:a1:
5c:8c:76:9a:27:5e:67:27:f1:4e:39:1a:16:2b:40:
f0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:7B:27:C3:9D:B8:C2:BD:33:71:6E:34:18:97:F0:AA:57:28:3F:21
X509v3 Authority Key Identifier:
keyid:EE:CC:4C:F3:72:41:CE:D1:46:7C:91:8A:A2:76:D3:88:B0:A8:2E:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sxM83JBztFGfJGKonbTiLCoLtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/JHsnw524wr0zcW40GJfwqlcoPyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/cf7d93-a076-49ff-9baf-5a37af43904c/1/7sxM83JBztFGfJGKonbTiLCoLtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.101.200.0/21
Signature Algorithm: sha256WithRSAEncryption
89:57:d9:db:ab:e1:f2:47:e2:a2:7b:3c:c1:03:96:9a:a7:27:
fa:1c:55:17:d3:4f:bb:f8:2b:5a:ff:8d:05:6c:4b:3e:fe:41:
4a:70:34:e4:f9:a9:ba:5c:5c:aa:99:3d:cc:74:9d:fc:b9:e9:
a3:2e:44:c3:35:a8:97:b0:a2:f1:6a:cf:c3:0a:f3:b7:29:80:
4c:ca:aa:da:d3:c8:23:28:6a:71:54:e8:40:a0:4a:e2:d0:d4:
35:42:74:20:bb:c8:45:57:8e:0d:a3:66:5e:88:dc:4e:7f:65:
a0:73:4e:47:79:1c:d4:33:d8:81:9a:16:6f:ca:b2:c6:d4:77:
76:ef:71:f5:39:3c:47:38:3b:13:6b:7c:f7:bf:72:ef:92:ac:
fc:29:84:fa:f9:9e:6b:89:e5:d1:5d:a7:25:97:07:81:c8:3d:
0c:68:29:e8:60:ae:d5:fe:39:5a:0b:8f:61:4d:5c:73:bb:5e:
c1:9d:0b:cd:4a:ba:cf:08:82:e0:c3:ca:65:11:3a:54:55:49:
3e:c2:bc:86:e7:01:3a:37:5f:ad:bc:f8:42:45:e7:11:fd:1e:
bd:95:c0:8f:6d:61:de:7f:8a:2a:8a:c7:2e:44:dd:57:c0:69:
a4:0a:5c:a8:bc:01:73:d6:f6:77:22:f2:62:93:33:e8:d3:c3:
d0:a5:e8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:37 2024 by rpki-client on console-fra.rpki-client.org