Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/Pcj5FIHruVb82mrV_xApD3yGzZE.roa
File: Pcj5FIHruVb82mrV_xApD3yGzZE.roa (raw, json)
Hash identifier: vLqoIhjONbFsy5eIHAvBjshBcK7Wh8fqx1jhCAb6r44=
Subject key identifier: 3D:C8:F9:14:81:EB:B9:56:FC:DA:6A:D5:FF:10:29:0F:7C:86:CD:91
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 01856F14A856D87FE4FC70B628C6985DA313
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/Pcj5FIHruVb82mrV_xApD3yGzZE.roa
Signing time: Sun 01 Jan 2023 20:45:02 +0000
ROA not before: Sun 01 Jan 2023 20:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35533
IP address blocks: 194.187.148.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:a8:56:d8:7f:e4:fc:70:b6:28:c6:98:5d:a3:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Jan 1 20:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3dc8f91481ebb956fcda6ad5ff10290f7c86cd91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:24:9a:15:77:35:c2:a7:a8:ea:e9:d8:2d:6a:
db:f3:46:bf:eb:db:7b:2e:47:ae:da:1e:68:2f:95:
d0:20:53:48:78:85:c7:6e:ef:d6:b9:55:f9:97:ce:
de:ce:6d:e2:ae:d0:ab:c7:f5:b8:4a:1c:e1:2a:da:
d4:e0:47:3a:db:39:98:48:0d:39:6c:52:e9:4c:54:
cf:53:d6:dc:42:9c:b3:ee:19:a6:1b:aa:b9:97:61:
f0:d8:69:e8:0a:13:cd:34:c6:54:14:93:3c:45:e7:
c7:7a:0c:5e:c6:15:87:6b:be:d0:aa:b2:4c:05:45:
22:fd:28:0c:28:7c:d0:a1:9b:02:fa:58:24:d6:bc:
3f:01:a5:a0:8c:ed:ed:58:a5:80:31:0f:22:30:cb:
0a:46:81:08:33:c4:c2:12:d2:e9:fc:fb:db:0a:16:
55:9b:fe:b3:53:a0:a9:c7:01:97:55:57:60:6c:ff:
d4:e8:25:4d:06:e2:b0:10:f9:6c:55:a1:e4:a8:cc:
5e:80:20:37:04:c9:14:7f:b4:f2:08:3a:71:00:cb:
7b:ca:53:01:76:22:a3:6a:4d:34:7e:f3:ab:f9:88:
e8:46:52:fc:80:59:13:ca:d2:22:7f:3e:87:fb:1f:
90:c6:42:e1:eb:d2:48:c6:32:aa:65:79:b7:90:83:
79:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:C8:F9:14:81:EB:B9:56:FC:DA:6A:D5:FF:10:29:0F:7C:86:CD:91
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/Pcj5FIHruVb82mrV_xApD3yGzZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.148.0/22
Signature Algorithm: sha256WithRSAEncryption
16:ce:82:dc:3a:d1:ed:f3:51:41:6e:54:e5:6c:77:5b:b3:66:
ed:4f:1d:38:6d:3f:aa:68:83:51:86:9f:d4:0b:db:6e:0d:65:
f1:b6:f1:b8:38:be:ca:d7:05:89:83:10:4e:bc:ae:89:49:88:
10:1c:22:4f:15:14:c7:17:b3:7b:59:61:61:bb:e5:d5:4d:62:
cb:e4:82:16:82:62:fb:45:42:5d:c7:2d:4a:5e:20:cf:5f:2c:
3d:ed:fe:f3:d2:d5:1e:78:76:9b:35:e3:4b:07:01:68:d0:cc:
a8:af:bf:5c:71:1f:06:09:d1:3f:24:a0:da:76:47:de:e5:3d:
5f:39:48:85:0d:d4:c7:62:68:02:a7:bd:be:36:78:77:e4:31:
16:f3:ae:13:29:af:d4:9d:5c:58:2c:4e:b4:91:04:5a:56:54:
82:5b:35:c4:06:29:01:4a:9b:ed:e6:e6:ec:19:fc:00:13:3d:
d8:c1:bc:76:7d:f7:54:0f:d6:06:4f:b2:59:77:9a:43:8a:4b:
23:1b:b1:bc:f4:92:49:8b:bf:29:3c:85:fd:17:f8:eb:f7:ec:
14:f4:16:e2:2f:bb:0d:d9:3b:74:18:d5:7d:5b:8d:54:23:5c:
92:23:bf:a8:66:e4:b4:91:d8:e4:e9:e9:57:a6:43:14:b7:7f:
9a:83:42:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 17:00:57 2023 by rpki-client on console-ams.rpki-client.org