Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/1KHjnHxTDL2RfCA5OzYVLVC7j8Y.roa
File: 1KHjnHxTDL2RfCA5OzYVLVC7j8Y.roa (raw, json)
Hash identifier: 6PIwulyzmwel0jM3Ydqc0USDu0oLdiuPGBonoPyGi4s=
Subject key identifier: D4:A1:E3:9C:7C:53:0C:BD:91:7C:20:39:3B:36:15:2D:50:BB:8F:C6
Certificate issuer: /CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Certificate serial: 018CC349407B0A1AB4286A582470EBF86A9D
Authority key identifier: 3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/1KHjnHxTDL2RfCA5OzYVLVC7j8Y.roa
Signing time: Mon 01 Jan 2024 04:30:06 +0000
ROA not before: Mon 01 Jan 2024 04:30:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 193.0.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 00:37:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:40:7b:0a:1a:b4:28:6a:58:24:70:eb:f8:6a:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Validity
Not Before: Jan 1 04:30:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d4a1e39c7c530cbd917c20393b36152d50bb8fc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:78:df:99:98:3d:47:a8:2c:bb:5e:01:72:15:
4d:20:4a:28:4a:35:ed:b0:7b:81:57:11:bf:26:92:
9c:e9:d3:e7:08:61:bb:f9:ce:a6:1c:2a:af:64:1d:
7a:02:fc:94:f0:db:84:10:a7:3f:e6:a6:7e:21:64:
30:49:6a:a5:a5:0a:b7:8d:b1:1d:5b:01:98:d8:60:
6d:2c:f0:6e:37:14:53:f6:87:77:b8:ba:1e:88:1f:
00:0b:78:f9:19:ff:49:8d:c9:e9:63:a8:91:11:70:
5f:d4:b3:0b:38:1f:18:73:0a:d9:13:e1:a0:51:ba:
cd:04:61:0d:14:e4:7b:65:6e:c7:55:82:e0:d2:00:
5b:73:1d:6b:5c:40:96:ff:2b:49:ae:09:f1:84:98:
15:bf:0c:06:4f:3a:9a:39:5e:8f:ee:19:93:97:0b:
be:f0:fd:72:68:7f:16:3a:93:26:81:e8:fc:98:ad:
0f:68:c5:80:3a:b2:db:66:da:1b:32:be:c3:aa:9b:
c6:a3:ae:d0:3b:bf:55:8b:2f:57:84:1b:2b:50:79:
20:66:58:73:85:57:4e:35:ce:83:22:fc:98:e2:20:
8a:bb:10:88:49:c8:21:01:a0:85:d9:9c:ee:a6:56:
ca:9c:9f:5e:86:bc:16:55:18:6d:90:71:29:b2:05:
06:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A1:E3:9C:7C:53:0C:BD:91:7C:20:39:3B:36:15:2D:50:BB:8F:C6
X509v3 Authority Key Identifier:
keyid:3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/1KHjnHxTDL2RfCA5OzYVLVC7j8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.181.0/24
Signature Algorithm: sha256WithRSAEncryption
23:d7:2d:7c:a8:1d:1d:53:3d:8e:78:20:13:5d:17:57:66:3b:
21:f6:48:d1:f6:82:19:e8:76:ef:2e:c8:2f:43:dd:18:5c:ac:
1f:af:16:00:24:60:59:7d:c9:5a:dc:d7:46:c7:d5:c3:47:74:
e4:4c:53:a6:f1:83:85:e1:c8:d9:e4:55:3b:97:be:29:0c:f6:
6e:68:bf:5e:c1:08:40:2f:fe:f1:1b:d2:b0:de:76:cc:b8:a7:
c9:83:16:b1:fa:33:af:bb:b2:9d:e6:a3:db:5a:45:97:93:4e:
be:fb:00:69:f1:2e:6f:8f:5c:e8:c1:a6:fa:ad:4b:f9:74:9b:
bd:4c:09:56:a5:1c:b8:a6:e0:65:5c:e4:10:84:ae:3a:f7:41:
85:ba:7c:d6:70:3b:ac:06:c0:f0:be:24:c5:f1:b6:38:5d:6c:
8b:33:a2:fe:43:98:6c:a9:66:83:98:c1:1f:5d:c2:99:cd:1f:
33:6b:0d:1f:65:96:11:48:3e:f3:fc:f0:fe:4a:61:f3:16:83:
68:21:69:06:00:68:d4:0d:ed:58:65:62:15:72:de:38:9e:72:
db:c3:c5:a5:d1:1e:7e:62:a9:d8:59:6f:44:c9:e5:be:4e:71:
63:d7:c4:c4:f8:f2:0f:e3:e9:b4:2b:95:dc:fb:d6:9a:d4:e9:
c5:0a:87:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 02:08:02 2024 by rpki-client on console-ams.rpki-client.org