Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/1C1EuA4pUqmnwBt9krdCPjy1hQo.roa
File: 1C1EuA4pUqmnwBt9krdCPjy1hQo.roa (raw, json)
Hash identifier: Olbbi9joaT+AYGvyo8n3HezUaSoamdRfplFUjjPv3wI=
Subject key identifier: D4:2D:44:B8:0E:29:52:A9:A7:C0:1B:7D:92:B7:42:3E:3C:B5:85:0A
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 01856B530DE2B62687F8BB45F8FDDE5E466F
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/1C1EuA4pUqmnwBt9krdCPjy1hQo.roa
Signing time: Sun 01 Jan 2023 03:14:43 +0000
ROA not before: Sun 01 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 144.98.144.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:0d:e2:b6:26:87:f8:bb:45:f8:fd:de:5e:46:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: Jan 1 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d42d44b80e2952a9a7c01b7d92b7423e3cb5850a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:1c:6f:67:fb:55:7e:e9:52:fa:8c:5a:81:5d:
12:18:cf:40:b8:d3:fb:17:c6:85:70:9c:2f:34:78:
1f:0b:b3:8a:29:91:85:83:41:43:3f:8a:9e:22:66:
f1:99:0b:e1:86:26:af:e9:d7:63:45:2b:cd:17:bc:
40:8b:06:a6:fd:67:58:98:e7:f7:fb:83:f9:bf:79:
73:06:1e:84:ce:ac:49:40:87:f1:25:0b:00:39:ae:
3f:8b:e6:66:68:67:43:cf:ec:27:f9:ce:ce:d9:37:
dc:fe:22:db:fa:cc:36:19:96:04:c3:b1:c2:31:f8:
a5:fa:dd:ae:b5:c4:30:6a:ba:23:56:68:f5:89:a2:
92:65:85:3b:18:00:33:d4:af:ad:07:06:e0:8e:16:
f3:6e:6d:94:74:82:f7:1b:b8:8c:c4:65:6a:43:c4:
0e:ca:b9:90:47:e8:7b:43:89:a9:0c:73:ce:9e:24:
7b:84:c3:d0:8b:ca:f5:66:d7:50:ef:39:c0:84:42:
3c:b0:2f:3d:88:e3:cc:f7:40:ef:f9:f4:8c:f1:07:
24:a7:e2:ab:15:8f:1d:21:dd:f1:ff:de:af:cb:92:
01:29:0c:d9:bf:25:aa:a3:c9:21:71:91:29:82:a8:
96:7b:10:0b:51:ba:c7:84:5c:24:09:52:4e:be:07:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2D:44:B8:0E:29:52:A9:A7:C0:1B:7D:92:B7:42:3E:3C:B5:85:0A
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/1C1EuA4pUqmnwBt9krdCPjy1hQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.98.144.0/24
Signature Algorithm: sha256WithRSAEncryption
20:5c:4c:03:a5:3a:df:68:35:83:61:38:f1:60:38:e8:12:4a:
a5:5c:b3:0f:20:84:b2:aa:87:ce:99:f4:38:84:88:f3:6b:d3:
b3:33:41:20:88:d3:12:d5:80:76:70:13:ba:bd:15:15:21:04:
d2:d6:8c:14:5d:44:a1:f4:3f:b4:32:a0:51:00:c6:56:73:c3:
d2:80:dd:76:72:67:f1:3f:f7:9b:11:46:4e:a4:2b:17:61:e6:
c0:8f:fb:b6:d2:4d:f7:6b:a6:cf:6b:c6:da:58:c0:07:42:ce:
19:e4:92:66:1e:e4:bd:44:74:0a:26:e8:1b:01:77:16:7f:24:
e6:5c:99:df:71:78:fd:32:e2:72:aa:bf:4e:0e:74:1d:82:4e:
9d:eb:7d:02:36:e5:71:54:4e:06:33:3a:d1:95:17:21:a2:b0:
e5:bd:1b:c5:cb:55:b5:22:4c:41:8f:b2:f0:f4:6b:70:88:d9:
a8:2b:24:af:46:37:78:9e:cf:23:92:a5:da:79:e6:48:60:60:
58:00:33:87:4b:89:19:ce:e7:fc:20:98:de:bc:ab:24:a4:68:
f7:05:64:ed:cf:3d:e1:f8:5e:f5:cc:93:db:27:01:fc:ef:5d:
98:96:7b:b2:bc:ee:4b:90:ed:ec:18:4d:56:93:40:95:31:b9:
05:2a:2a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:45 2024 by rpki-client on console-fra.rpki-client.org