Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/2-8WJJhoeOMUWHzKUWy0wzXuW4w.roa
File: 2-8WJJhoeOMUWHzKUWy0wzXuW4w.roa (raw, json)
Hash identifier: 8ueE9nlLQJ8AJo+xrnleQQiZDFXPmW9bs24IBH44e18=
Subject key identifier: DB:EF:16:24:98:68:78:E3:14:58:7C:CA:51:6C:B4:C3:35:EE:5B:8C
Certificate issuer: /CN=3c2c854011140a10947da7b53bbb350f3c54b33e
Certificate serial: 018CBD194213BA87A5CC98F607E3D7471F41
Authority key identifier: 3C:2C:85:40:11:14:0A:10:94:7D:A7:B5:3B:BB:35:0F:3C:54:B3:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PCyFQBEUChCUfae1O7s1DzxUsz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/2-8WJJhoeOMUWHzKUWy0wzXuW4w.roa
Signing time: Sat 30 Dec 2023 23:39:58 +0000
ROA not before: Sat 30 Dec 2023 23:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59572
IP address blocks: 193.35.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bd:19:42:13:ba:87:a5:cc:98:f6:07:e3:d7:47:1f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c2c854011140a10947da7b53bbb350f3c54b33e
Validity
Not Before: Dec 30 23:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbef1624986878e314587cca516cb4c335ee5b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2a:aa:6e:31:8d:ac:3a:fc:bb:39:53:2d:25:
3a:9b:70:c0:5f:c9:e0:24:f2:f5:24:bc:f6:85:15:
f3:39:71:fe:1c:d6:b8:6c:8a:cb:44:27:67:c3:16:
f0:62:42:eb:b6:5a:b7:3e:e7:df:4e:db:8d:a4:77:
62:a3:4c:87:9d:7b:62:93:6c:0b:cd:50:58:a5:f0:
c1:c1:59:39:1d:f6:1c:73:5d:82:9c:de:79:29:11:
6d:5d:e1:65:49:ff:5c:2c:50:98:e1:50:b9:2f:cc:
64:c3:41:cd:25:57:0c:5a:8f:3e:e4:b5:d5:94:89:
60:cd:b6:80:38:9f:6c:12:a3:c8:be:7c:a5:14:a4:
65:11:e1:3d:1b:c1:1d:01:f7:26:cd:cf:d2:f9:6f:
51:25:0a:e0:f7:0b:0f:33:22:f4:09:d0:42:73:4c:
00:1e:e3:a3:d1:44:51:3f:bd:de:26:be:ab:f0:57:
a3:62:93:94:04:db:13:b5:fb:d0:9e:cf:c2:fc:8e:
d1:44:36:59:5f:22:7c:0a:d7:9c:07:78:d7:4c:b9:
1f:e2:52:a4:b7:4f:8b:8d:eb:38:95:de:b0:3a:13:
27:0c:75:ac:56:09:7e:91:3d:d7:8c:27:7b:da:df:
20:b0:5b:4a:d6:c5:88:b4:e4:99:c2:55:d0:b0:d2:
56:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:EF:16:24:98:68:78:E3:14:58:7C:CA:51:6C:B4:C3:35:EE:5B:8C
X509v3 Authority Key Identifier:
keyid:3C:2C:85:40:11:14:0A:10:94:7D:A7:B5:3B:BB:35:0F:3C:54:B3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PCyFQBEUChCUfae1O7s1DzxUsz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/2-8WJJhoeOMUWHzKUWy0wzXuW4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/PCyFQBEUChCUfae1O7s1DzxUsz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.1.0/24
Signature Algorithm: sha256WithRSAEncryption
46:0a:f2:07:ef:8c:d5:61:c6:38:9d:cc:13:b0:ea:90:0c:1f:
0f:a7:66:b8:26:dc:df:cd:a3:53:78:b2:a3:87:4f:86:2b:7b:
07:52:e8:cd:d4:d4:05:25:fb:7c:99:12:fc:0f:37:31:29:61:
88:62:9c:dd:5a:41:67:91:f9:b1:b8:c5:d9:0b:06:62:72:35:
fa:6f:cc:db:74:28:c3:b3:3c:d8:38:fe:a2:e1:76:95:f5:56:
b4:e9:34:32:41:02:d5:7a:6f:cb:d5:25:d2:9a:30:48:82:44:
3d:7d:62:02:de:05:44:7a:94:7f:f3:17:4a:88:92:34:44:d3:
ba:bb:11:7f:f4:f9:cb:f0:86:76:d9:0d:4b:0d:dd:29:ab:45:
6c:c1:94:af:29:3f:54:f2:32:9e:7a:7a:10:49:3f:64:92:ec:
5d:58:94:c2:53:d9:80:1d:2e:07:ca:53:52:45:55:15:10:6d:
f9:85:5f:eb:c3:81:39:aa:04:7b:8a:d1:04:81:92:b9:86:7e:
ff:75:56:41:ca:22:8b:7e:75:e1:78:2d:7d:58:84:a4:72:c7:
01:3c:1b:6d:8b:c2:90:e9:db:b1:48:f0:b1:80:a2:69:10:06:
de:ad:c9:8d:d9:06:a0:f0:da:67:58:29:05:a7:3e:1e:57:09:
96:c7:e9:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:41 2024 by rpki-client on console-ams.rpki-client.org