Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/2kPz4akuMR9RVMyGTR6tEGz5DC0.roa
File: 2kPz4akuMR9RVMyGTR6tEGz5DC0.roa (raw, json)
Hash identifier: P/99m06UbvI63BP9dngPswMI+FZzPeU8JvT8qb4+ClA=
Subject key identifier: DA:43:F3:E1:A9:2E:31:1F:51:54:CC:86:4D:1E:AD:10:6C:F9:0C:2D
Certificate issuer: /CN=0e931a7cf2da94ccd4a2afce23f392d4061d56f9
Certificate serial: 018571833D49A11C8721C6E3B5B844BCC8B5
Authority key identifier: 0E:93:1A:7C:F2:DA:94:CC:D4:A2:AF:CE:23:F3:92:D4:06:1D:56:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpMafPLalMzUoq_OI_OS1AYdVvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/2kPz4akuMR9RVMyGTR6tEGz5DC0.roa
Signing time: Mon 02 Jan 2023 08:05:04 +0000
ROA not before: Mon 02 Jan 2023 08:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58273
IP address blocks: 194.31.184.0/22 maxlen: 24
2a09:1880::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:3d:49:a1:1c:87:21:c6:e3:b5:b8:44:bc:c8:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e931a7cf2da94ccd4a2afce23f392d4061d56f9
Validity
Not Before: Jan 2 08:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da43f3e1a92e311f5154cc864d1ead106cf90c2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:01:0e:cb:63:d7:77:14:aa:19:90:36:35:2f:
32:a7:34:06:79:3d:b1:f5:62:c8:c7:87:b5:ab:e4:
0d:c1:53:90:2b:d9:3e:fd:e0:04:c3:ab:60:bc:1f:
b5:fe:38:aa:92:65:20:ea:cb:73:42:3a:db:4e:d4:
d6:32:39:ba:70:13:cc:0d:bd:31:3c:54:bc:76:c5:
3d:58:99:8a:db:09:49:e4:f2:b3:53:3e:ad:3f:32:
d2:71:87:91:53:11:97:49:c5:6f:b0:0a:2d:a6:7c:
37:d7:b6:cc:f5:80:90:d7:c5:af:28:57:1a:a3:2e:
93:ef:15:4d:2e:8d:3d:e3:9e:36:02:5d:21:ff:a2:
c6:58:85:64:c5:cf:69:ec:b5:5a:98:65:99:5f:7f:
13:3f:84:50:8a:8a:d1:f7:64:be:de:b3:a6:c6:07:
b3:6e:91:71:6d:08:d7:26:76:8c:2f:e7:6c:37:5f:
6e:65:aa:22:52:1b:ee:eb:52:36:c2:e7:82:3d:ab:
4d:92:c1:02:94:79:c1:81:2d:42:b7:24:8f:10:f9:
20:56:ac:48:96:3a:76:e4:80:b4:59:6f:11:ad:6e:
62:ee:29:d2:7b:cd:bd:8e:6d:8b:6e:47:24:45:4e:
97:82:fd:5b:34:f6:17:a5:57:da:8f:b4:b8:1f:52:
41:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:43:F3:E1:A9:2E:31:1F:51:54:CC:86:4D:1E:AD:10:6C:F9:0C:2D
X509v3 Authority Key Identifier:
keyid:0E:93:1A:7C:F2:DA:94:CC:D4:A2:AF:CE:23:F3:92:D4:06:1D:56:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpMafPLalMzUoq_OI_OS1AYdVvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/2kPz4akuMR9RVMyGTR6tEGz5DC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/DpMafPLalMzUoq_OI_OS1AYdVvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.184.0/22
IPv6:
2a09:1880::/29
Signature Algorithm: sha256WithRSAEncryption
a9:c0:51:64:fd:3c:4d:3a:5c:e7:1c:0c:0e:57:75:9b:2f:24:
a8:f0:fd:b8:58:4e:72:9e:b8:a2:83:d3:be:cd:15:d4:87:55:
68:cb:fe:fd:d3:fa:9f:2d:81:08:9b:d4:7e:30:09:10:49:98:
75:63:24:45:80:22:e8:75:6d:ac:97:5c:18:48:29:da:a7:a8:
82:64:4c:99:bb:48:03:ce:04:c5:2c:dd:5e:2d:f4:c2:3d:1e:
3c:1b:a4:03:9d:00:29:54:3e:dc:29:10:10:2b:25:23:da:fc:
87:7e:12:9b:50:7d:f6:59:3d:3b:d2:10:c7:b4:21:2a:bd:48:
ef:c8:6a:61:e1:a2:ba:c7:17:2f:bf:59:46:96:13:05:21:93:
1c:c4:94:39:7a:b9:89:da:90:85:f1:df:95:c7:3c:a8:fb:a7:
22:e9:8e:c4:b3:92:51:fc:d6:86:b4:c6:a3:42:fe:91:1e:ec:
5b:07:ea:fc:a4:a8:87:ac:61:62:c9:ba:c2:fc:e0:42:ba:34:
01:ac:72:b6:7d:8c:a5:8b:4d:5f:e5:6b:b0:b4:ad:8d:22:a3:
e4:01:31:4f:5e:4d:dc:0a:8e:6f:07:af:ba:8a:67:cc:86:80:
09:52:a8:73:fb:04:e9:e0:0f:51:61:ec:63:26:ff:60:1b:c9:
51:ba:1d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org