Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/e6b238-5355-40f0-be87-497fd6506ae5/1/l1DoBTyeXnMOmGDxTAlLppqNv0w.roa
File: l1DoBTyeXnMOmGDxTAlLppqNv0w.roa (raw, json)
Hash identifier: K7yHPZyvDQyfmXi+wbgGqxvK3+R0X5f6wS3/ZwC8jk4=
Subject key identifier: 97:50:E8:05:3C:9E:5E:73:0E:98:60:F1:4C:09:4B:A6:9A:8D:BF:4C
Certificate issuer: /CN=4a13b7758676de2ef127cc7750ee76c5a8341d78
Certificate serial: 018571B0AE81685CEA3736079C5FDDA91D13
Authority key identifier: 4A:13:B7:75:86:76:DE:2E:F1:27:CC:77:50:EE:76:C5:A8:34:1D:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ShO3dYZ23i7xJ8x3UO52xag0HXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/e6b238-5355-40f0-be87-497fd6506ae5/1/l1DoBTyeXnMOmGDxTAlLppqNv0w.roa
Signing time: Mon 02 Jan 2023 08:54:42 +0000
ROA not before: Mon 02 Jan 2023 08:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 786
IP address blocks: 194.26.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ae:81:68:5c:ea:37:36:07:9c:5f:dd:a9:1d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a13b7758676de2ef127cc7750ee76c5a8341d78
Validity
Not Before: Jan 2 08:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9750e8053c9e5e730e9860f14c094ba69a8dbf4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7f:65:03:2d:c8:b5:4b:77:0b:07:2a:50:98:
2e:06:eb:4f:94:b6:2d:00:ab:25:f1:25:22:ca:6e:
57:d5:cc:21:f3:17:b3:ed:12:51:f4:6c:62:5d:c7:
35:00:b8:bc:d8:4a:1b:96:78:73:c6:3a:e0:4c:60:
a9:d6:cb:d1:2d:63:5d:28:a8:fe:62:60:b2:dc:5c:
27:a9:ae:54:df:29:53:4e:1d:56:8e:3f:31:be:f3:
1e:6c:d9:fa:08:57:20:d8:5c:0f:c0:34:4f:dc:f8:
aa:75:a2:63:f6:fd:2a:81:bf:e6:b3:fe:97:be:10:
59:db:5a:08:33:09:43:fb:01:10:df:b1:b3:cc:11:
be:f9:84:79:08:b6:26:fc:7b:98:15:b0:d1:0d:6f:
8d:97:5a:52:0a:68:55:bc:7d:ed:b4:71:48:fc:28:
11:95:29:0b:d1:19:29:4d:20:98:62:82:dd:c9:0d:
28:93:b6:37:17:e4:b6:ee:62:94:5b:cf:e0:ae:3f:
cc:ed:a4:e0:7f:b1:2b:a8:22:d6:8b:37:8b:a0:44:
35:b4:5f:40:38:85:1a:d9:b7:4d:ba:28:9d:b9:83:
d8:5b:6a:5a:c5:49:3a:fe:ba:a1:2e:b0:f6:26:0d:
cb:3e:b6:7f:9d:f9:f2:c0:fc:b1:e1:e9:71:2b:cb:
84:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:50:E8:05:3C:9E:5E:73:0E:98:60:F1:4C:09:4B:A6:9A:8D:BF:4C
X509v3 Authority Key Identifier:
keyid:4A:13:B7:75:86:76:DE:2E:F1:27:CC:77:50:EE:76:C5:A8:34:1D:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ShO3dYZ23i7xJ8x3UO52xag0HXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/e6b238-5355-40f0-be87-497fd6506ae5/1/l1DoBTyeXnMOmGDxTAlLppqNv0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/e6b238-5355-40f0-be87-497fd6506ae5/1/ShO3dYZ23i7xJ8x3UO52xag0HXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.0.0/24
Signature Algorithm: sha256WithRSAEncryption
38:66:db:d4:13:e8:29:75:1b:00:35:8b:7c:af:fc:a1:42:d6:
bc:13:1e:5a:3d:8a:d4:4d:e9:43:4f:bf:5b:67:0c:44:8c:86:
9f:fb:a3:fe:dd:53:8c:c8:4e:4e:22:34:76:94:6d:bf:99:84:
fb:71:3b:20:b9:52:3a:2c:ad:fd:33:b4:17:3c:d3:07:aa:6e:
5b:ad:6f:8a:fa:f1:3a:bf:8f:95:b7:c9:7d:8a:9b:9a:69:7a:
a8:0a:53:6f:4c:26:0c:2b:cf:1f:cf:33:bc:2a:0f:a1:52:fa:
72:2d:b4:bd:ae:19:e0:1a:4d:77:e3:81:5f:f9:c3:4f:24:8b:
2c:71:04:aa:1d:7f:6b:99:ac:81:38:e5:4a:cd:aa:d1:8b:97:
34:2e:e2:97:9a:e5:ae:b2:74:9a:60:97:55:63:3a:dd:7e:97:
ac:47:e2:cf:61:15:92:80:18:51:f5:6b:55:e3:8a:cc:94:4f:
48:46:42:d8:6b:1e:42:5d:70:68:a6:32:d5:04:f4:89:e3:7e:
54:68:37:d3:24:19:53:43:30:4c:52:cb:50:e9:6f:2d:75:fc:
c7:5f:ba:b1:f1:e0:e5:dc:fb:e2:da:00:49:72:1d:eb:d9:8f:
4a:b2:1c:21:c1:34:0b:b5:e8:e5:5b:a4:7e:90:a3:36:3d:8f:
b1:db:01:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:49 2024 by rpki-client on console-fra.rpki-client.org