Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/sSJk7XYVM6Xf3z7eaFSpE1ndhA8.roa
File: sSJk7XYVM6Xf3z7eaFSpE1ndhA8.roa (raw, json)
Hash identifier: BIwVgtvHlIY/Zz4IaJt3a3ihGYI2B4Bl5kr8z6iqwGE=
Subject key identifier: B1:22:64:ED:76:15:33:A5:DF:DF:3E:DE:68:54:A9:13:59:DD:84:0F
Certificate issuer: /CN=a3742347c73e7b3d500f60fb650b82a01c21f749
Certificate serial: 018570302C058E2DCF6AC4AC6187E9BD1CC6
Authority key identifier: A3:74:23:47:C7:3E:7B:3D:50:0F:60:FB:65:0B:82:A0:1C:21:F7:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/sSJk7XYVM6Xf3z7eaFSpE1ndhA8.roa
Signing time: Mon 02 Jan 2023 01:54:43 +0000
ROA not before: Mon 02 Jan 2023 01:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205376
IP address blocks: 194.45.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:2c:05:8e:2d:cf:6a:c4:ac:61:87:e9:bd:1c:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3742347c73e7b3d500f60fb650b82a01c21f749
Validity
Not Before: Jan 2 01:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b12264ed761533a5dfdf3ede6854a91359dd840f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ad:b3:7f:ae:f4:ef:b9:d5:11:81:8c:f9:1c:
3c:f8:5b:be:a3:37:d2:c1:a0:03:36:e9:aa:a1:15:
f2:2c:cd:77:f1:0e:25:45:64:90:12:3d:79:d2:d1:
53:84:92:0d:37:67:4f:5d:6c:f2:df:67:87:3c:7c:
9a:14:7d:2e:c4:52:db:7b:09:75:87:ca:ee:ec:26:
b3:63:f6:eb:cb:ad:09:dd:15:e6:20:44:54:ce:59:
14:6f:9c:0b:64:95:ae:a0:dc:66:2e:7f:86:d3:43:
7c:7e:38:ef:e0:d3:17:93:fa:56:b9:d7:78:7f:09:
ee:3b:a7:82:a2:af:39:54:d8:c9:09:51:98:88:ef:
ee:c5:65:06:a8:94:46:7c:51:35:39:cc:63:07:6e:
84:c8:1a:42:66:a5:6f:ad:0f:5f:ad:c6:dc:05:6d:
f6:b5:8f:b7:ad:04:f9:20:93:80:60:f1:93:ed:7a:
ee:09:19:46:a0:1f:62:a6:dd:7b:7a:4c:7b:20:58:
d3:12:4f:81:9f:af:13:73:50:00:e5:d7:5c:5f:f1:
7b:d4:b2:e0:6b:52:34:8c:24:cd:1e:7b:28:e8:31:
c4:aa:7e:f4:36:ae:f9:e4:17:2b:3f:8e:45:0f:04:
ad:66:c0:d3:cf:aa:a1:3a:88:5b:74:cc:13:27:71:
d4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:22:64:ED:76:15:33:A5:DF:DF:3E:DE:68:54:A9:13:59:DD:84:0F
X509v3 Authority Key Identifier:
keyid:A3:74:23:47:C7:3E:7B:3D:50:0F:60:FB:65:0B:82:A0:1C:21:F7:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/sSJk7XYVM6Xf3z7eaFSpE1ndhA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.71.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a0:62:40:49:b1:0e:99:8a:1e:c5:f6:07:9f:c4:da:ce:af:
3d:44:fe:92:17:e8:20:15:01:9f:66:21:59:6f:42:f9:bb:d4:
4d:42:2d:58:30:98:33:a4:5d:50:ca:bb:ec:ad:ad:e0:ed:bc:
33:ef:2f:50:01:e9:75:78:9b:61:10:06:84:cc:e5:07:db:59:
06:97:ea:2e:04:5d:d1:f3:3b:fc:13:94:3e:3d:0e:da:15:60:
0e:dd:34:a9:70:c7:ea:3c:db:d1:f8:c0:e9:77:8e:13:f1:fb:
8e:9e:12:17:27:7d:5d:81:52:49:63:48:1a:92:56:1c:11:0a:
4f:cf:48:34:85:56:9b:db:1f:49:99:8d:cb:fa:35:e9:b3:9f:
23:15:20:64:0a:8c:6d:26:4b:15:bc:7e:6e:22:a7:b6:7a:1b:
6d:52:96:45:6d:f6:9c:99:ab:35:79:a3:30:fb:35:72:45:cb:
34:35:78:9d:40:fd:29:20:ef:a5:5c:52:a6:26:da:1f:be:43:
71:73:5d:19:6a:0a:67:88:e7:da:4d:b2:99:f4:16:1a:65:b3:
ca:b3:d4:ed:c2:40:55:f3:82:55:34:5f:38:9f:c5:59:82:fe:
b5:23:1c:f9:ff:b9:1e:b5:27:b5:ed:00:a7:be:de:36:3b:4e:
ac:4e:a8:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:44 2024 by rpki-client on console-ams.rpki-client.org