Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/9W1soxW-JJAEbVZUnkwjGhaw-08.roa
File: 9W1soxW-JJAEbVZUnkwjGhaw-08.roa (raw, json)
Hash identifier: b0jrQ7qihL502Z8iMcN+l5cdFZqIOHaACAa2XevAUbE=
Subject key identifier: F5:6D:6C:A3:15:BE:24:90:04:6D:56:54:9E:4C:23:1A:16:B0:FB:4F
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 01857082B19C045E181001669F1C3CD30574
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/9W1soxW-JJAEbVZUnkwjGhaw-08.roa
Signing time: Mon 02 Jan 2023 03:24:51 +0000
ROA not before: Mon 02 Jan 2023 03:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205191
IP address blocks: 194.140.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:b1:9c:04:5e:18:10:01:66:9f:1c:3c:d3:05:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: Jan 2 03:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f56d6ca315be2490046d56549e4c231a16b0fb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:23:cd:ea:a5:55:d5:7b:5c:fd:d6:c3:8b:9e:
a2:75:84:7f:0d:9e:a0:39:4d:f2:cc:07:24:0c:be:
08:d0:10:36:1a:73:44:49:7c:87:a1:82:00:d7:89:
e3:cb:03:3c:19:48:5d:10:72:86:42:00:7c:ed:1c:
97:5d:1a:79:bb:6b:5e:91:64:86:01:79:94:56:bc:
35:f7:4c:b6:66:2f:ca:13:0f:31:e7:14:ac:08:da:
24:e7:fc:5a:de:50:7c:fc:4b:c6:c3:1c:52:6f:49:
5e:20:f2:b5:bc:8c:fb:d6:6f:6a:7d:c5:ab:2e:2b:
85:fc:5c:54:05:ac:b9:8d:a4:5b:31:eb:f1:e3:7e:
14:da:55:71:27:f6:a5:23:a9:a9:67:99:61:40:42:
47:e2:67:0d:64:53:b5:7f:61:fd:67:40:26:c5:c5:
2e:d1:12:21:af:e9:9c:7b:56:34:7b:3d:a3:b1:f4:
c2:75:51:1d:0f:dd:a1:03:45:b1:ee:18:83:8d:35:
b3:f7:a2:50:c6:aa:9e:f6:7f:4d:d0:71:56:01:9c:
85:fa:2b:3d:97:df:99:f6:bf:83:be:ca:54:5a:ff:
7e:a8:cd:71:78:1f:72:c8:93:9d:c4:9d:07:a0:20:
00:93:6e:1d:b9:47:5d:3d:ab:5f:df:a6:62:f4:5a:
32:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:6D:6C:A3:15:BE:24:90:04:6D:56:54:9E:4C:23:1A:16:B0:FB:4F
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/9W1soxW-JJAEbVZUnkwjGhaw-08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.140.187.0/24
Signature Algorithm: sha256WithRSAEncryption
01:c0:4d:bd:b3:63:35:a3:d3:21:bd:cb:b7:29:22:f6:54:46:
ef:8c:f6:46:13:4e:43:58:09:ba:23:f8:b6:2c:6a:9b:4b:2f:
b1:db:dc:d9:a2:0a:28:1a:24:8e:c6:63:e3:48:60:c5:09:eb:
38:57:fe:81:cb:55:60:a1:32:12:b2:db:10:15:7e:09:8f:6c:
8a:75:9a:34:53:33:1f:4d:c3:9d:cf:95:79:bc:27:01:87:c3:
b5:b7:f3:2d:d8:15:1f:c9:f0:42:0a:c7:45:02:8d:cd:d2:77:
12:ee:98:86:a8:97:8b:92:93:13:b8:2c:66:92:49:18:a5:56:
03:b8:24:d6:88:c6:c8:02:7e:de:ca:46:cd:6a:78:13:96:3c:
f1:ca:f8:d3:73:75:69:52:20:4e:a1:01:30:a1:d7:f5:fe:3b:
2b:b2:4c:6c:db:47:25:66:f1:f1:8c:4f:33:d8:7b:e9:c2:7e:
8d:71:65:03:7b:7c:ba:e1:4a:7e:d2:9b:ea:06:f8:ad:3c:28:
75:6a:4e:16:87:5d:c7:05:31:3d:2a:f1:81:28:ba:9b:1d:c7:
97:a0:d5:0f:15:1e:c1:87:31:12:9f:22:97:c2:a0:2d:cf:f8:
ee:21:2f:fd:54:ff:1b:c2:d7:57:ad:9b:ee:cc:c3:8f:ed:3e:
3e:86:30:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:28:02 2024 by rpki-client on console-fra.rpki-client.org