Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/kGpgs92aqMEsS0ADJU0uaod7OJc.roa
File: kGpgs92aqMEsS0ADJU0uaod7OJc.roa (raw, json)
Hash identifier: UZqffOA2wFGovMSppli3N4R0UO+1ABvDouzVWmvCrrg=
Subject key identifier: 90:6A:60:B3:DD:9A:A8:C1:2C:4B:40:03:25:4D:2E:6A:87:7B:38:97
Certificate issuer: /CN=a78c03f45908df4c45c3f07d2a4b2c40245d5132
Certificate serial: 01857102E5703787FF2B4ADA8A043C006C06
Authority key identifier: A7:8C:03:F4:59:08:DF:4C:45:C3:F0:7D:2A:4B:2C:40:24:5D:51:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p4wD9FkI30xFw_B9KkssQCRdUTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/kGpgs92aqMEsS0ADJU0uaod7OJc.roa
Signing time: Mon 02 Jan 2023 05:44:53 +0000
ROA not before: Mon 02 Jan 2023 05:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33910
IP address blocks: 194.126.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:e5:70:37:87:ff:2b:4a:da:8a:04:3c:00:6c:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a78c03f45908df4c45c3f07d2a4b2c40245d5132
Validity
Not Before: Jan 2 05:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=906a60b3dd9aa8c12c4b4003254d2e6a877b3897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a6:9c:a9:a6:29:db:7b:d7:16:85:1a:7c:0d:
bc:ea:bc:fa:14:8c:98:8c:38:59:5b:95:37:65:96:
96:e3:ad:ff:cb:f1:8c:30:8d:cc:7d:7b:1f:35:3c:
00:a7:a0:a8:9a:bf:27:e2:0e:a9:e9:64:4f:4f:ed:
86:ac:f5:2f:d7:64:f8:21:f1:eb:e1:66:84:30:ff:
26:e9:70:59:77:fd:d2:24:23:23:4b:b6:c1:93:dc:
32:b6:be:6f:1e:52:b4:03:dc:12:32:89:6b:a6:72:
7d:eb:0e:7f:2c:12:69:d8:a6:6e:1f:00:99:82:6d:
6a:74:6f:4e:ab:52:d0:73:e2:2e:7b:26:5d:ba:74:
3f:7c:a6:77:78:e1:46:88:54:49:06:ac:f8:14:7e:
1f:89:36:95:de:98:5f:ff:31:e0:0b:d4:53:53:02:
33:e1:f6:e3:52:23:85:ef:be:02:73:7c:76:b5:d2:
4b:42:f3:29:da:c6:98:d1:72:d8:ab:80:28:03:b9:
6a:5c:83:04:2c:91:8d:ad:dc:1f:09:4a:0e:3a:a5:
d4:61:84:3b:c7:23:8a:97:e9:cb:bd:b8:b1:88:a9:
24:2f:48:15:00:f1:b1:2d:6f:4d:8e:00:a8:93:9e:
93:23:0d:19:6f:64:77:ce:b1:56:b5:0a:be:1d:68:
b1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:6A:60:B3:DD:9A:A8:C1:2C:4B:40:03:25:4D:2E:6A:87:7B:38:97
X509v3 Authority Key Identifier:
keyid:A7:8C:03:F4:59:08:DF:4C:45:C3:F0:7D:2A:4B:2C:40:24:5D:51:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p4wD9FkI30xFw_B9KkssQCRdUTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/kGpgs92aqMEsS0ADJU0uaod7OJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/p4wD9FkI30xFw_B9KkssQCRdUTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a9:bf:05:19:a7:cb:ef:2a:20:88:9f:a3:59:09:df:62:33:
ba:a9:97:74:d3:df:16:61:f4:70:ae:cf:af:4d:38:c9:88:2b:
ae:56:9f:80:99:84:52:5f:56:15:32:eb:cb:49:0d:ac:d0:f7:
8a:bd:5f:02:ff:2f:d2:f7:a7:fa:96:84:c0:a7:d7:ee:8d:da:
c4:ed:d3:af:82:3e:48:c4:43:1f:04:f8:98:94:86:90:3f:b3:
90:53:df:6e:4d:64:6a:17:a5:2d:22:d4:1a:d8:73:cc:9c:91:
cf:06:bb:25:df:d9:49:15:3b:30:f7:68:5d:77:f2:8d:0c:7d:
a0:e4:a0:86:f3:f5:58:86:1e:96:a6:b8:dd:c2:cb:05:d8:ae:
dd:21:b2:68:cf:f4:40:32:9e:81:68:73:ab:e3:bc:9e:0a:31:
ca:3f:95:5b:ec:3c:2a:b1:20:1a:f3:91:06:b7:50:14:49:c4:
47:7a:a9:3a:20:27:63:2a:21:8a:44:8f:de:0f:45:98:ef:87:
09:d4:28:7f:8b:01:56:61:47:e2:c3:ca:00:6b:b8:a5:1c:1b:
3f:d8:44:cc:26:0e:7d:51:1e:7b:95:58:7c:eb:c8:95:7c:36:
11:db:18:a3:a9:f2:67:45:43:bb:b3:2a:c5:78:2e:38:59:2b:
85:84:20:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:58 2024 by rpki-client on console-ams.rpki-client.org