Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1-YdliViPiMMr7E-XAYWQqf79WMQ.roa
File: 1-YdliViPiMMr7E-XAYWQqf79WMQ.roa (raw, json)
Hash identifier: GMxflex/gCll9pYckCe2DEkk7VwjkMfJqCUt6g/DyNQ=
Subject key identifier: F9:87:65:89:58:8F:88:C3:2B:EC:4F:97:01:85:90:A9:FE:FD:58:C4
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E781B1997F483845696ABBB8B9750
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1-YdliViPiMMr7E-XAYWQqf79WMQ.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2643
IP address blocks: 194.190.160.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:78:1b:19:97:f4:83:84:56:96:ab:bb:8b:97:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9876589588f88c32bec4f97018590a9fefd58c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:30:2a:08:f6:16:c2:fa:cc:13:91:8d:b1:5b:
b2:8c:f7:f7:27:1c:92:f8:bd:1c:5c:00:0d:76:f1:
86:ec:f6:e6:4a:db:be:42:cf:00:39:f4:55:63:e9:
53:49:9d:81:20:11:07:b8:71:09:12:e0:d6:2f:3f:
62:d3:29:53:b2:5d:8b:7e:28:66:61:52:ab:23:26:
0a:73:69:f3:71:e0:f2:41:87:55:29:ca:9d:93:9b:
60:08:84:6e:c9:c6:b0:f8:c4:49:5f:eb:5f:cc:67:
13:f3:0f:a4:4a:a5:bc:bd:31:f4:ed:4e:f1:a0:43:
14:7e:02:d7:ae:a9:40:b8:37:28:36:81:9c:8d:d7:
8a:7d:ba:89:13:4d:65:b2:63:f0:38:0c:10:48:93:
2f:87:3b:44:26:4f:a2:78:9f:0d:19:d0:3d:5d:27:
4e:ce:f8:4d:eb:86:86:46:7d:6a:a2:fe:8f:1f:a5:
98:db:48:c6:f9:ad:fa:e2:2f:fd:28:f3:4f:8a:82:
e6:9d:5f:70:5f:1d:94:84:82:e7:ee:24:ea:72:08:
4d:02:fe:30:54:e8:86:c3:2f:24:f1:82:d5:83:e9:
5c:39:14:02:c5:69:7d:1e:41:b8:6b:fe:e1:63:f5:
7e:3c:36:a9:3c:2b:ae:c3:02:91:7d:7c:dc:cf:ac:
c3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:87:65:89:58:8F:88:C3:2B:EC:4F:97:01:85:90:A9:FE:FD:58:C4
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1-YdliViPiMMr7E-XAYWQqf79WMQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.160.0/21
Signature Algorithm: sha256WithRSAEncryption
32:c0:71:9e:ea:ba:fe:9a:68:2b:3e:34:45:11:e5:d1:b1:3e:
a5:5c:fe:fd:a6:2b:8c:19:9b:5a:b7:69:7b:57:f9:58:ac:2c:
45:77:31:4a:97:f1:5f:32:a3:98:ea:c7:e1:3e:98:90:d7:8d:
e7:1e:28:64:f6:14:7a:17:ea:9f:a3:3d:52:0b:de:8b:ec:8a:
db:71:c9:8b:01:05:55:0b:dc:7a:2c:25:9a:20:a9:15:ca:d9:
bb:b1:e6:a8:23:36:87:52:f8:b1:ad:26:7c:dd:43:99:db:f2:
f7:35:c1:35:36:2a:95:4e:cf:99:cb:1a:36:3e:aa:7a:94:92:
11:f0:58:e0:b0:c8:f7:20:e6:fe:ad:e2:8b:fd:a9:bd:fd:df:
b4:c8:34:68:8d:99:81:28:63:1f:c9:ec:e3:1d:f5:fd:ed:28:
84:77:2c:d9:84:a8:ef:92:a0:41:26:2f:45:b1:50:7c:99:57:
f8:67:a5:b3:8a:ce:30:89:87:d8:aa:7b:cf:02:c7:e3:3a:d4:
5f:a6:16:07:98:ad:1c:4d:88:f8:38:82:53:0d:54:c1:f4:70:
24:26:87:b0:a3:b7:0b:ff:0f:c0:14:62:b1:b7:83:86:6b:c0:
02:8a:40:de:93:a9:01:6c:69:35:94:54:30:58:ca:c5:ea:4b:
b5:f1:64:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org