Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/2cc3ce-ec81-45ed-86e6-9ada2378a9a0/1/UnClOhhmhuQFanHosJ6pXODzPFk.roa
File: UnClOhhmhuQFanHosJ6pXODzPFk.roa (raw, json)
Hash identifier: +OerncJApFVKd2qEDdpS1Hr5vzQh/LLq68c484sXvU8=
Subject key identifier: 52:70:A5:3A:18:66:86:E4:05:6A:71:E8:B0:9E:A9:5C:E0:F3:3C:59
Certificate issuer: /CN=d5be07670c2c9a2ae0278131aa29cf3ce7a5aaa3
Certificate serial: 018572A7FA44987A6AB5E73EF848CB3D181F
Authority key identifier: D5:BE:07:67:0C:2C:9A:2A:E0:27:81:31:AA:29:CF:3C:E7:A5:AA:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1b4HZwwsmirgJ4ExqinPPOelqqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/2cc3ce-ec81-45ed-86e6-9ada2378a9a0/1/UnClOhhmhuQFanHosJ6pXODzPFk.roa
Signing time: Mon 02 Jan 2023 13:24:48 +0000
ROA not before: Mon 02 Jan 2023 13:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51749
IP address blocks: 194.110.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:fa:44:98:7a:6a:b5:e7:3e:f8:48:cb:3d:18:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5be07670c2c9a2ae0278131aa29cf3ce7a5aaa3
Validity
Not Before: Jan 2 13:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5270a53a186686e4056a71e8b09ea95ce0f33c59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6e:04:cc:86:c1:40:2a:e6:25:53:d7:e5:b8:
de:0c:48:69:a6:91:08:86:d9:7e:d8:18:a3:f9:e8:
71:69:3f:78:77:74:c7:a8:8b:74:a1:a3:08:52:03:
b8:a0:57:e7:f4:35:d9:8c:9a:3a:31:20:96:ed:5d:
1f:34:85:f9:05:ff:99:93:8d:6b:63:5c:8d:81:6e:
c1:07:9e:cf:97:94:52:40:c7:e2:3a:b2:77:b6:4d:
a8:80:18:3d:3d:5e:a4:0b:42:95:a8:00:1c:59:60:
90:29:b1:a2:b9:92:e1:d2:d9:40:90:59:38:30:2d:
8e:90:eb:96:b8:40:c3:1a:6c:ed:cb:ef:10:9e:e6:
87:05:b2:f3:17:9c:f8:84:4d:89:d3:bb:4e:88:f6:
77:b2:8b:98:d3:09:4e:88:93:9c:49:ff:d0:d8:23:
93:81:d9:f5:c7:84:eb:ae:05:1f:36:33:c4:af:bd:
4b:68:8c:dc:6e:c5:37:8c:21:7a:e7:59:cc:ea:86:
25:e3:4e:a1:8c:2b:32:34:5d:24:c9:09:77:65:bf:
0b:72:24:bf:45:e9:44:5d:9f:f0:17:45:5b:b9:75:
71:4f:09:48:36:ba:6f:14:a6:0d:ff:ca:c0:c4:d5:
5b:a8:83:98:d2:ec:d7:6b:cf:6c:3c:cf:10:2f:44:
b8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:70:A5:3A:18:66:86:E4:05:6A:71:E8:B0:9E:A9:5C:E0:F3:3C:59
X509v3 Authority Key Identifier:
keyid:D5:BE:07:67:0C:2C:9A:2A:E0:27:81:31:AA:29:CF:3C:E7:A5:AA:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b4HZwwsmirgJ4ExqinPPOelqqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cc3ce-ec81-45ed-86e6-9ada2378a9a0/1/UnClOhhmhuQFanHosJ6pXODzPFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/2cc3ce-ec81-45ed-86e6-9ada2378a9a0/1/1b4HZwwsmirgJ4ExqinPPOelqqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.221.0/24
Signature Algorithm: sha256WithRSAEncryption
14:0f:2c:d9:70:a5:76:74:f1:87:0d:90:84:ef:d7:44:6a:d7:
c1:56:60:9f:8a:9e:97:90:80:7d:8d:7e:8e:0e:3f:07:09:3e:
1d:d8:78:7c:e8:51:89:f2:6c:05:90:c9:10:7b:5e:12:c7:05:
f8:7b:ce:c5:7f:ed:19:68:01:9b:21:2b:cb:ee:11:e0:c6:76:
15:fc:d7:ef:3d:43:93:2b:db:53:de:af:ab:e7:30:f1:62:46:
d0:e3:1a:a9:de:62:08:73:03:93:e1:7b:9e:4a:74:68:d8:e2:
c3:ae:8e:77:47:27:be:38:7e:35:13:eb:bd:7d:98:7f:6d:61:
6b:97:96:22:64:54:3b:a4:23:be:9d:8b:25:96:54:af:e1:7c:
ca:a4:ec:f4:3c:52:11:40:4d:1a:b2:53:40:eb:dd:72:44:08:
7e:7c:82:51:49:94:d9:00:f8:bf:6c:e4:f3:45:67:6d:44:b5:
c1:a1:03:e6:0d:6b:19:0b:22:7e:7a:9d:1c:a9:95:da:98:f8:
1c:f0:4c:e8:5a:42:f9:cc:b6:f6:38:04:2b:ef:67:24:a9:ea:
c8:8a:40:ff:d5:3c:a5:9e:57:9b:16:c9:53:2a:bc:c5:c5:80:
17:ec:41:42:cd:3b:3d:44:05:46:9c:8b:59:db:43:b5:72:3f:
8e:51:c9:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 13 09:59:27 2023 by rpki-client on console-ams.rpki-client.org