Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/VmP4YN7NBPV3ltHjiMRZ4mKrMgU.roa
File: VmP4YN7NBPV3ltHjiMRZ4mKrMgU.roa (raw, json)
Hash identifier: KFD3RJsq97X+m47Bzd3SZbvB9euOS3eIvdGK8hBS1z8=
Subject key identifier: 56:63:F8:60:DE:CD:04:F5:77:96:D1:E3:88:C4:59:E2:62:AB:32:05
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 01856FC26221D616DD0C1CCB05D1D8154825
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/VmP4YN7NBPV3ltHjiMRZ4mKrMgU.roa
Signing time: Sun 01 Jan 2023 23:54:48 +0000
ROA not before: Sun 01 Jan 2023 23:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12301
IP address blocks: 194.246.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:62:21:d6:16:dd:0c:1c:cb:05:d1:d8:15:48:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Jan 1 23:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5663f860decd04f57796d1e388c459e262ab3205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:35:a2:c2:e3:91:93:02:9a:03:00:50:ea:43:
c0:e7:ec:a5:97:93:21:43:77:25:01:b4:51:4e:b4:
b6:b8:a1:32:b6:d9:08:07:93:62:5d:65:e2:42:af:
1a:3d:13:54:76:d0:8b:a1:65:1c:c9:df:f9:de:47:
0f:1a:bf:9f:89:3d:0a:1a:41:e0:10:35:92:72:11:
8d:ad:64:3e:1a:fd:c3:79:1b:57:1f:17:55:de:08:
05:41:2b:44:f9:71:d1:16:d7:7e:9b:d2:c0:ab:25:
1c:cb:31:e4:3d:59:6a:7f:83:4f:cb:54:50:8c:9e:
15:43:59:c4:20:be:1f:46:ef:bc:56:a7:40:62:ee:
72:61:8a:56:c7:eb:95:de:fc:3f:95:bb:2a:75:5f:
5a:9a:61:83:64:d2:0f:51:a9:7b:97:ef:48:a0:5a:
c9:6f:0e:05:83:83:67:2c:38:3f:57:a7:75:46:14:
c5:a7:13:de:10:0c:82:b4:2b:f5:c7:4c:e2:9f:c0:
7f:82:87:8c:69:bc:27:29:94:f0:0e:fa:3b:a7:6d:
a7:07:61:36:58:b0:f1:b9:21:af:16:e0:b5:f5:18:
5e:bd:a8:9e:07:51:9b:ea:fb:4b:7e:a8:37:b3:fb:
f3:bc:c1:51:79:08:f2:5d:b9:c3:eb:a4:a6:35:69:
0b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:63:F8:60:DE:CD:04:F5:77:96:D1:E3:88:C4:59:E2:62:AB:32:05
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/VmP4YN7NBPV3ltHjiMRZ4mKrMgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.4.0/24
Signature Algorithm: sha256WithRSAEncryption
25:42:e9:57:ce:f6:06:f2:bc:19:04:2a:9e:5f:2c:5d:1e:c4:
7e:05:7a:98:73:0e:4e:cc:12:53:46:37:29:76:b4:d8:99:ba:
90:45:64:20:4e:9e:3f:37:5e:69:6e:6e:d9:1c:98:f7:57:7f:
20:5e:48:ed:ad:f8:88:cc:27:3b:22:f4:62:a2:d6:98:71:55:
0e:5e:0b:3a:a8:54:70:c9:9d:cf:e9:88:23:78:72:86:53:ac:
8e:df:07:34:a5:38:d8:76:e1:d0:cc:bc:e6:2d:b7:ea:cd:80:
bb:f9:92:5f:24:a7:bc:8a:bb:bf:77:34:77:5c:0f:1a:36:54:
6d:8f:7d:8d:04:13:4e:d7:f9:73:79:e8:5c:fe:43:cd:80:0f:
b0:43:2c:51:e8:80:fd:5e:64:5e:ea:d9:32:3b:7a:7b:10:e1:
d0:aa:82:84:24:c5:29:a9:98:4d:bd:e2:53:3d:7d:53:e3:b8:
ee:65:b1:ac:6f:d8:f0:a8:8b:6a:23:fd:58:cd:ca:19:c4:12:
06:65:ee:f0:c1:2d:9d:aa:55:63:79:f1:be:28:21:07:42:91:
de:b8:eb:77:d7:ef:9d:73:35:a6:29:22:b3:52:6a:51:dd:8c:
5e:a7:7b:72:80:b4:07:91:82:58:39:f0:65:a2:7e:fc:bf:df:
6a:82:ec:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:09 2024 by rpki-client on console.sobornost.net