Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/2b179c-2d2d-4423-b6d6-b0837a7d4641/1/PJSXaFU_rKokYOtTwuGg9l58JHE.roa
File: PJSXaFU_rKokYOtTwuGg9l58JHE.roa (raw, json)
Hash identifier: UmHloFBbYQDW6aVyFqGsHlRVHwPJvttq4REVZOAsyMo=
Subject key identifier: 3C:94:97:68:55:3F:AC:AA:24:60:EB:53:C2:E1:A0:F6:5E:7C:24:71
Certificate issuer: /CN=3f56a63331552ef91d8a0005a338ec982df37c8b
Certificate serial: 018C1ABB2DC58193472D06E8188E205871CA
Authority key identifier: 3F:56:A6:33:31:55:2E:F9:1D:8A:00:05:A3:38:EC:98:2D:F3:7C:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P1amMzFVLvkdigAFozjsmC3zfIs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/2b179c-2d2d-4423-b6d6-b0837a7d4641/1/PJSXaFU_rKokYOtTwuGg9l58JHE.roa
Signing time: Wed 29 Nov 2023 10:58:43 +0000
ROA not before: Wed 29 Nov 2023 10:58:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198575
IP address blocks: 194.146.66.0/24 maxlen: 24
194.146.66.0/23 maxlen: 23
194.146.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:bb:2d:c5:81:93:47:2d:06:e8:18:8e:20:58:71:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f56a63331552ef91d8a0005a338ec982df37c8b
Validity
Not Before: Nov 29 10:58:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c949768553facaa2460eb53c2e1a0f65e7c2471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:27:d8:7e:83:c2:6b:57:5d:3f:58:74:47:b6:
9e:cc:2c:92:9f:9b:93:37:43:29:b2:ea:34:df:ca:
2e:cc:62:74:8e:53:69:5f:d5:2e:24:00:d1:97:c6:
7b:ed:1d:6e:04:5f:a6:58:1d:bd:2b:f2:f2:98:16:
72:15:59:65:f6:00:06:36:94:7c:63:86:00:5e:db:
0b:54:32:b6:54:70:c3:ad:cc:27:f1:4f:d3:a6:e9:
87:9d:11:7c:d2:ea:f1:9b:33:9e:f6:ad:91:b8:5a:
29:ec:e2:f0:10:a5:06:ff:00:46:27:99:92:3a:3a:
f1:29:37:d6:77:70:47:bc:c1:ce:da:6b:99:53:e4:
d1:b3:78:a2:ba:bd:0c:e5:40:3b:17:f4:0a:c9:91:
cd:09:99:49:e4:06:27:3f:20:62:1a:ed:20:73:c7:
14:65:4c:3a:be:41:e1:b0:7f:7d:5c:f2:7f:28:69:
d6:97:4d:48:19:d5:8f:b8:f4:23:a8:c3:4f:9c:a2:
0d:60:2c:4c:b3:a6:76:7d:28:d9:69:46:22:24:52:
f2:f4:3d:60:51:65:67:59:b4:d4:49:1d:ca:6d:ac:
97:54:cd:6e:2d:60:31:e1:f2:aa:25:76:a2:e9:7a:
6b:14:45:9c:d4:c6:4a:08:8d:e4:73:45:8a:d8:18:
3e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:94:97:68:55:3F:AC:AA:24:60:EB:53:C2:E1:A0:F6:5E:7C:24:71
X509v3 Authority Key Identifier:
keyid:3F:56:A6:33:31:55:2E:F9:1D:8A:00:05:A3:38:EC:98:2D:F3:7C:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P1amMzFVLvkdigAFozjsmC3zfIs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2b179c-2d2d-4423-b6d6-b0837a7d4641/1/PJSXaFU_rKokYOtTwuGg9l58JHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/2b179c-2d2d-4423-b6d6-b0837a7d4641/1/P1amMzFVLvkdigAFozjsmC3zfIs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.66.0/23
Signature Algorithm: sha256WithRSAEncryption
19:39:eb:94:7c:32:a6:4d:ba:c6:a0:c0:64:97:de:c4:d1:0f:
fb:db:df:c8:15:9d:d6:a0:2d:7c:13:30:f7:96:11:6c:2c:b6:
f1:44:e9:56:e6:34:46:2b:75:b1:5a:f3:c8:99:35:e3:5e:aa:
f9:17:91:41:33:6c:c6:c1:ba:3a:b2:01:61:e8:0f:31:d6:7f:
de:86:4b:bd:53:16:a5:71:c8:d5:4c:82:4d:a3:4b:f6:b1:ed:
8d:50:b6:24:70:22:d8:73:fe:97:40:70:36:2c:e9:a1:3c:2d:
60:fd:95:6e:d5:74:9a:1a:91:6d:cd:c0:12:c7:9a:65:1c:35:
5c:89:c8:1a:4f:11:3f:37:60:ef:92:5d:b4:14:f2:05:d0:84:
d7:c7:4c:26:d3:d3:31:3f:55:2a:71:33:3e:b9:76:a3:23:d4:
67:1d:92:9d:10:7d:70:67:e1:39:72:55:7d:67:a8:b3:3e:70:
ce:ff:24:b3:1b:22:b5:a1:17:55:60:d3:47:b3:b6:3f:47:5e:
f2:e3:e1:7a:88:d9:93:35:c8:45:ef:24:28:45:c3:33:12:8a:
04:f7:9c:81:f8:04:fc:24:ed:0b:15:b4:90:10:a9:b4:79:54:
cb:cb:71:14:d8:a7:dc:13:9a:1c:2e:12:8d:6b:2b:11:dc:41:
d7:1a:d1:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:46 2024 by rpki-client on console-fra.rpki-client.org