Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/prkStIQNtLTG6tDJpkwlw4IF6_M.roa
File: prkStIQNtLTG6tDJpkwlw4IF6_M.roa (raw, json)
Hash identifier: qtitW8+v6ICVaXdQXUal+i7YiCfxULZEGanS3vaIeF0=
Subject key identifier: A6:B9:12:B4:84:0D:B4:B4:C6:EA:D0:C9:A6:4C:25:C3:82:05:EB:F3
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E890A2CBE4D60DD308CDF02EE75F7
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/prkStIQNtLTG6tDJpkwlw4IF6_M.roa
Signing time: Mon 02 Jan 2023 08:34:53 +0000
ROA not before: Mon 02 Jan 2023 08:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60040
IP address blocks: 194.226.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 15:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:89:0a:2c:be:4d:60:dd:30:8c:df:02:ee:75:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6b912b4840db4b4c6ead0c9a64c25c38205ebf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ad:1d:41:2a:4d:94:c3:92:7b:d6:4b:41:ea:
d5:18:fe:fe:ae:5f:30:f7:f7:da:67:95:63:d0:cc:
14:79:fc:8e:04:52:1a:9a:1e:8d:4f:4b:15:5e:8f:
c9:7b:e3:bd:d1:44:fa:39:b9:2d:ad:4c:81:67:bc:
ee:f0:5c:18:5e:74:9d:1a:ff:76:65:b8:f7:07:e2:
c3:03:5b:2c:92:e3:27:4b:0a:72:69:6d:f3:4f:ca:
43:98:d4:96:40:62:cc:a0:1c:85:ca:a8:a9:70:60:
ca:79:14:5c:31:6c:ce:75:6b:be:68:24:cd:68:dd:
be:fd:5e:9d:0d:9f:58:9e:3c:36:3e:eb:3e:25:d7:
c9:e8:60:95:64:2f:02:75:d0:8c:96:e1:7c:76:a7:
70:5b:9e:85:22:36:d8:7b:45:da:d9:c7:87:66:ea:
20:4a:a0:5d:af:22:09:1f:e7:4d:3b:cd:58:d6:9d:
b9:9b:bd:f2:90:7c:7f:65:3a:12:b2:73:8a:49:3e:
94:9c:2f:53:67:69:23:1e:7d:e7:82:d3:06:c9:4c:
2b:82:1d:51:0f:94:e7:e0:7b:1a:82:1d:b0:b7:dc:
16:ed:4e:bd:1a:36:41:92:92:65:28:51:8a:74:9d:
c6:e8:43:2a:d7:9a:37:76:ef:cc:74:b4:44:19:71:
65:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:B9:12:B4:84:0D:B4:B4:C6:EA:D0:C9:A6:4C:25:C3:82:05:EB:F3
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/prkStIQNtLTG6tDJpkwlw4IF6_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.174.0/24
Signature Algorithm: sha256WithRSAEncryption
57:6b:e9:9c:c7:72:54:04:70:5d:24:26:a3:68:fe:aa:27:24:
3b:61:94:c6:4c:c8:01:d8:f6:30:8b:e5:7b:7c:fc:2a:02:97:
b1:3b:2d:d5:56:70:00:81:c7:b1:70:a0:61:f6:6b:12:f7:75:
04:5c:c8:19:6a:34:37:ea:5a:96:85:45:04:4a:ff:90:83:85:
6c:bb:a6:13:b4:c6:b2:00:ae:0e:ee:00:f7:78:56:51:45:0e:
41:af:d4:b7:e4:0e:42:86:ae:a6:ea:74:92:15:79:3a:08:24:
45:5a:97:8f:7b:ac:32:1a:53:4a:24:14:14:3f:61:25:b8:d7:
23:9a:a5:c2:31:49:88:28:44:9a:d7:2d:7c:7a:0a:b3:a2:74:
88:41:15:0e:6e:28:47:b4:29:41:2c:90:a7:98:45:95:42:3c:
2b:97:13:b4:60:e8:b6:44:90:a0:fc:0a:4f:a5:3b:80:f2:4a:
3b:93:1f:71:e1:b0:81:f2:5d:1c:44:b7:f1:fb:e8:0d:d0:b7:
18:60:e7:16:10:32:14:f7:98:46:cb:39:c5:db:9d:a3:5e:5a:
ac:27:3f:91:0d:34:f0:d8:63:dd:fc:f6:4d:6f:ec:19:ea:6e:
51:c2:22:70:11:b9:1d:ec:9f:5b:7a:7c:1c:ae:bd:91:65:de:
5a:ca:11:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org