Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/PyKseDAgZHe4mNlRuBoHSV8wOJ0.roa
File: PyKseDAgZHe4mNlRuBoHSV8wOJ0.roa (raw, json)
Hash identifier: MEM7vfl53xYCekRcUpYnmQeTQcPOUWjjLlkKiWVshuc=
Subject key identifier: 3F:22:AC:78:30:20:64:77:B8:98:D9:51:B8:1A:07:49:5F:30:38:9D
Certificate issuer: /CN=fc44297e9271c6edf064915f6180ae12690dda8b
Certificate serial: 01856E66722AEDF5CDDF7024B5D97BA8CD04
Authority key identifier: FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/PyKseDAgZHe4mNlRuBoHSV8wOJ0.roa
Signing time: Sun 01 Jan 2023 17:34:45 +0000
ROA not before: Sun 01 Jan 2023 17:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24655
IP address blocks: 194.30.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:72:2a:ed:f5:cd:df:70:24:b5:d9:7b:a8:cd:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc44297e9271c6edf064915f6180ae12690dda8b
Validity
Not Before: Jan 1 17:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f22ac7830206477b898d951b81a07495f30389d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:80:5a:18:8f:fe:ce:88:8a:21:bb:8b:bd:3e:
4b:e3:b2:c8:c8:8b:a7:df:db:7c:8a:cf:f7:38:d7:
67:9c:fe:96:d9:dc:1c:9c:6a:95:df:15:09:3f:2d:
55:20:17:be:ac:0b:a0:0e:ae:f2:97:c3:c0:32:c8:
57:0b:57:ce:91:ad:25:2c:ff:c2:0d:52:e0:8e:a5:
7d:d3:79:69:55:c4:4f:89:97:f2:e7:53:b6:f8:9e:
21:d5:42:c8:52:64:7e:c9:17:4d:fa:f5:45:32:46:
d3:fe:80:3c:93:99:ee:39:f9:20:06:d4:c9:87:48:
5a:08:8a:80:a3:82:07:ac:a4:df:78:14:5f:35:e5:
73:eb:8b:a5:52:2c:6d:2d:aa:31:69:83:48:d0:c9:
04:e0:ec:f6:bc:c8:1c:ac:69:be:f9:c9:6a:42:55:
ae:b6:19:10:30:9f:d5:47:41:4d:e2:a2:15:69:4f:
8c:93:ff:17:ca:25:83:6f:55:de:34:3a:a3:5b:75:
50:cf:ac:29:52:93:97:83:48:19:b9:7f:10:68:40:
5a:16:4a:bc:72:a5:70:1f:fa:8b:18:14:a7:6c:ed:
0f:e2:0f:4c:a1:4c:1b:e6:bb:b1:5e:fe:4d:47:21:
c7:b3:4e:12:dc:19:c0:9c:1c:3c:2c:b7:88:48:13:
b4:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:22:AC:78:30:20:64:77:B8:98:D9:51:B8:1A:07:49:5F:30:38:9D
X509v3 Authority Key Identifier:
keyid:FC:44:29:7E:92:71:C6:ED:F0:64:91:5F:61:80:AE:12:69:0D:DA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_EQpfpJxxu3wZJFfYYCuEmkN2os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/PyKseDAgZHe4mNlRuBoHSV8wOJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/7cb179-ad2c-4824-a1e5-ae07f32e4102/1/_EQpfpJxxu3wZJFfYYCuEmkN2os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.142.0/24
Signature Algorithm: sha256WithRSAEncryption
97:d4:c4:94:9c:59:aa:4e:37:34:dc:57:1d:20:7a:6d:a8:f8:
cf:fa:fe:aa:97:08:48:bc:e5:a1:b8:f0:79:2f:22:5e:bf:01:
3b:21:9e:d9:52:f0:fc:df:9c:b7:76:3c:a6:32:8c:ca:5d:6f:
16:c7:ee:39:ec:4f:55:6c:57:1d:55:92:e4:22:b2:d2:23:83:
12:e0:07:32:5e:23:cd:28:1e:04:4e:a9:9e:f3:b2:36:b7:c4:
67:39:7b:b3:f3:2e:b9:b6:b0:6f:64:ca:b6:2f:28:60:31:df:
a9:06:49:cd:dd:ad:d0:20:d1:d8:1e:89:19:46:ed:bc:11:8b:
69:0f:d3:cb:c6:0f:8c:03:b4:b0:2c:d9:cb:45:1b:83:ca:15:
75:ab:31:89:f5:d3:2e:dd:e1:1d:46:13:b4:4b:72:92:2e:80:
0e:0d:a5:8d:06:89:a3:dd:34:8a:67:25:ac:8d:aa:04:df:81:
ef:75:76:e2:95:e6:51:23:d6:72:a4:ea:e5:04:f6:81:4d:51:
14:40:3e:24:e7:e7:90:4e:f6:8e:b6:38:48:58:f5:f0:80:9e:
d0:55:79:14:f0:a1:56:d3:fa:34:69:38:01:fc:4b:8d:2f:47:
60:ec:a6:78:ff:c7:01:d0:6b:0d:f2:bc:a1:a8:b9:82:9b:2f:
59:1c:4c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:54 2024 by rpki-client on console-ams.rpki-client.org