Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/oHWt3zRLIQqhBsFBR75PArR6WQc.roa
File: oHWt3zRLIQqhBsFBR75PArR6WQc.roa (raw, json)
Hash identifier: 5awitUzFLLWHy2bMrx3beFscL1vPdNc8TZI12uEd37E=
Subject key identifier: A0:75:AD:DF:34:4B:21:0A:A1:06:C1:41:47:BE:4F:02:B4:7A:59:07
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 0185715E70956F207178B4ECDD1F3E8BE631
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/oHWt3zRLIQqhBsFBR75PArR6WQc.roa
Signing time: Mon 02 Jan 2023 07:24:52 +0000
ROA not before: Mon 02 Jan 2023 07:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 194.56.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:70:95:6f:20:71:78:b4:ec:dd:1f:3e:8b:e6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Jan 2 07:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a075addf344b210aa106c14147be4f02b47a5907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c2:21:ff:fe:24:f3:85:04:22:10:06:11:eb:
8b:73:29:6d:6b:03:cc:03:e7:a4:8d:38:d7:93:a7:
d5:e5:60:a9:52:e1:61:22:c2:41:2f:c0:39:fc:4a:
10:a1:b6:23:f1:23:3b:24:ca:73:e3:2a:f8:8f:58:
6c:8f:a7:c4:39:c0:e2:52:79:d9:9e:46:9c:93:92:
bc:70:14:39:48:ad:bf:07:16:13:8e:bf:95:b7:44:
c6:e5:2d:e4:e0:95:04:b8:2f:2c:33:0c:66:ab:88:
e1:f0:2c:21:54:02:0d:25:d1:b2:81:ae:a0:e1:b2:
8e:9f:9a:7b:73:6e:cf:3d:4a:65:5f:90:4b:bc:83:
fd:d5:10:de:2d:d7:42:63:40:00:8a:83:8a:be:d4:
c7:6e:0c:5f:d1:b1:14:90:f5:86:42:3e:86:26:5b:
08:75:67:6a:36:eb:21:5f:e4:03:0d:97:2f:fd:ca:
b9:09:02:ca:31:7f:a6:13:9b:88:ca:5c:69:f3:8f:
e9:78:a2:f3:40:85:9c:01:7c:f9:6b:fb:5e:2a:97:
de:0b:43:7c:3b:20:00:ca:bc:83:22:23:b1:6a:5e:
9b:75:c3:b7:64:62:04:87:02:6d:7b:85:28:15:9b:
77:06:10:60:a2:ee:de:bc:9f:04:d1:a2:05:47:17:
8d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:75:AD:DF:34:4B:21:0A:A1:06:C1:41:47:BE:4F:02:B4:7A:59:07
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/oHWt3zRLIQqhBsFBR75PArR6WQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.8.0/24
Signature Algorithm: sha256WithRSAEncryption
71:42:a3:cc:91:18:13:be:40:8a:1e:ec:96:b4:ac:9d:0a:14:
db:bd:8a:fd:40:c4:f2:4d:c6:e0:84:9e:d3:67:06:d4:c1:a9:
f5:48:53:e4:a5:4c:5c:52:c1:47:83:9f:55:56:99:1f:dc:bc:
15:07:bd:1b:c9:9a:d1:5d:6f:85:6c:ee:82:75:43:14:df:54:
32:6b:0b:56:ba:61:11:1b:f0:74:da:b4:ca:40:e9:45:cb:8d:
01:fb:82:7b:fa:de:53:c9:f2:8c:b6:dc:77:0e:91:21:f0:d6:
3c:79:fd:03:4f:1c:17:93:e5:36:3f:58:92:e5:7f:4f:ff:b2:
a5:45:9c:73:47:74:04:c0:5d:68:c3:23:54:93:55:de:9d:bf:
94:74:af:e4:e1:83:2c:9a:b5:58:6e:b8:81:f9:fc:8a:a8:f5:
10:c1:22:f5:11:b1:99:bf:38:b4:2e:cc:a5:35:34:71:65:76:
30:d0:f0:17:88:e2:da:8d:50:23:d9:2d:b9:25:0d:05:d8:21:
1c:4b:5d:7a:e8:7f:f0:fc:a6:e0:e5:91:44:d0:07:eb:80:2f:
28:57:82:69:d7:75:f2:a3:bf:6f:58:07:9d:78:24:11:c8:5d:
a2:cc:70:a9:3d:87:ec:61:11:d5:3b:b0:66:5c:cc:9c:e5:1f:
c0:85:0d:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:17 2024 by rpki-client on console-ams.rpki-client.org