Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/DNCyZYd9oUmpqX25Ronczl3kMu0.roa
File: DNCyZYd9oUmpqX25Ronczl3kMu0.roa (raw, json)
Hash identifier: ngUpHTWB81JrLVIq1Q+GPaPSV9L3wcuejoN4y7jE03g=
Subject key identifier: 0C:D0:B2:65:87:7D:A1:49:A9:A9:7D:B9:46:89:DC:CE:5D:E4:32:ED
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0186F31BBEFD210EF12EE73CC4D855AC9749
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/DNCyZYd9oUmpqX25Ronczl3kMu0.roa
Signing time: Sat 18 Mar 2023 05:05:27 +0000
ROA not before: Sat 18 Mar 2023 05:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208167
IP address blocks: 194.28.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:f3:1b:be:fd:21:0e:f1:2e:e7:3c:c4:d8:55:ac:97:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Mar 18 05:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cd0b265877da149a9a97db94689dcce5de432ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b9:ea:de:57:0f:86:e0:25:ae:65:32:df:f4:
a6:b9:05:e8:bb:8e:30:2a:52:30:18:dc:d7:4c:20:
e2:f6:69:56:b7:66:3f:c7:34:05:31:d8:b6:7d:d8:
8a:4c:b4:24:ef:86:1f:1d:91:29:03:b4:10:67:55:
f3:2d:63:99:79:95:36:8b:47:e9:f0:d6:cc:b6:25:
c4:de:9f:f4:08:7d:68:df:9b:2c:83:db:dd:13:48:
ae:fc:bd:58:f8:f4:cc:9a:d9:fa:46:d9:a4:42:c8:
b4:45:7d:c1:2e:21:91:3d:8f:ff:a3:15:c4:53:17:
02:48:15:e9:9c:97:c2:e0:c5:d6:17:9c:7a:f4:4c:
7e:b5:69:74:c5:d6:f1:f3:1a:b4:a0:d5:99:28:52:
dc:ea:db:fd:71:72:35:52:bb:f8:54:41:dd:1a:93:
6e:21:d8:c7:64:8f:83:5b:65:70:05:2d:b1:98:2d:
84:f1:93:51:26:72:bb:ee:5a:4a:a2:1b:1d:83:78:
c8:6f:15:25:d5:dd:18:1c:df:7e:0f:5e:44:36:71:
29:3e:ab:64:00:a7:8e:65:55:da:3b:60:58:cf:61:
4e:bd:8b:2c:c6:08:b9:b7:62:d2:df:7f:20:b9:7e:
16:e6:86:22:23:01:eb:86:07:33:ae:64:56:34:53:
7c:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:D0:B2:65:87:7D:A1:49:A9:A9:7D:B9:46:89:DC:CE:5D:E4:32:ED
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/DNCyZYd9oUmpqX25Ronczl3kMu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.227.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:7b:8a:65:0c:95:8d:e6:d7:12:bc:80:b1:48:29:57:d8:31:
82:54:4b:25:3a:15:05:9e:dc:94:4b:4e:ac:35:88:36:2b:40:
d2:28:b4:04:51:64:2f:96:15:c9:4a:b1:43:14:31:1e:d0:43:
16:ce:0d:2b:55:04:49:36:e9:e6:60:5d:5d:f7:b1:1b:d1:52:
5e:6e:c4:7b:8f:7d:06:7f:29:86:6e:c9:ca:37:9c:2b:de:97:
72:d4:72:8a:e0:1c:25:e8:88:40:e3:26:4c:35:f0:7f:37:b5:
5d:92:ab:b7:29:fe:6d:34:72:ac:41:c5:82:e7:13:8b:88:76:
1f:98:91:cb:31:2a:60:af:ac:1b:2f:62:65:46:80:16:5d:8b:
46:cc:9b:87:18:d3:6a:d6:15:15:09:d0:fd:a2:4f:b7:e7:a6:
73:40:af:fc:38:21:c8:1d:50:cd:48:a8:fd:48:05:7f:3a:e0:
4c:6e:e4:04:e2:84:10:10:28:54:a7:79:11:58:b6:6e:69:1a:
56:c5:25:a3:d9:ff:ac:7e:7f:93:93:4b:a3:c1:28:df:b5:7c:
f7:0f:1f:ac:d4:65:22:9b:eb:c2:5d:7f:33:17:86:fa:0c:46:
da:fc:53:be:30:bf:2f:8e:24:5a:2a:2f:2e:0f:7b:4d:a5:97:
7b:5d:8f:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org