Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Iv80-di4CsTBraQJae6p9jh3w6A.roa
File: Iv80-di4CsTBraQJae6p9jh3w6A.roa (raw, json)
Hash identifier: 51O4wP8FJWQLlwlgjYjz72Yt7zNuod5irPEBDBK3yA4=
Subject key identifier: 22:FF:34:F9:D8:B8:0A:C4:C1:AD:A4:09:69:EE:A9:F6:38:77:C3:A0
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 0185714C103F60B1837ED26ED33AD64810CF
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Iv80-di4CsTBraQJae6p9jh3w6A.roa
Signing time: Mon 02 Jan 2023 07:04:48 +0000
ROA not before: Mon 02 Jan 2023 07:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200094
IP address blocks: 94.240.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:10:3f:60:b1:83:7e:d2:6e:d3:3a:d6:48:10:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Jan 2 07:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22ff34f9d8b80ac4c1ada40969eea9f63877c3a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:93:cf:c1:71:8a:f7:df:be:98:d4:f1:9f:1e:
60:e6:ce:92:8e:56:63:b4:8b:2c:01:b1:ae:f2:81:
bc:f0:7d:31:6a:ea:ca:aa:1c:9f:35:d7:57:a3:fc:
dc:b1:91:3a:ef:20:b9:21:ad:4b:49:79:17:23:29:
d0:eb:e3:1d:b2:1d:04:38:45:70:35:76:95:d2:2f:
6e:62:85:63:c8:0a:3d:ab:e4:f4:a6:7a:87:51:e3:
c5:34:47:a1:9c:66:65:54:ca:65:cf:b9:34:77:bb:
d8:f0:37:47:4e:0c:fd:a5:f0:12:49:ee:2a:83:af:
d2:30:be:f0:17:be:26:de:26:2f:f9:94:89:96:af:
48:1c:d2:58:43:61:cd:7c:0a:9f:da:00:65:7c:29:
48:43:ee:e7:f5:80:20:7f:b3:a2:29:0a:9c:43:23:
b1:2b:65:cc:e7:60:81:9a:a2:f8:5f:f1:95:dd:4d:
80:26:e9:be:b8:9e:ce:c2:56:fc:43:db:58:43:a3:
d5:63:3a:56:e3:37:30:ee:5b:f7:c7:7d:da:9a:97:
3a:1b:a3:25:3e:30:09:16:17:bd:52:02:27:78:20:
16:85:3e:b1:a8:21:06:42:d0:03:d0:4e:60:66:85:
58:fd:38:e7:1f:b2:44:ea:14:fa:65:85:85:46:2c:
50:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FF:34:F9:D8:B8:0A:C4:C1:AD:A4:09:69:EE:A9:F6:38:77:C3:A0
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Iv80-di4CsTBraQJae6p9jh3w6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.46.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:53:0f:d6:4a:5a:f8:2c:47:c5:0d:5f:60:da:e2:e3:9b:36:
e3:1d:1d:d4:85:ca:c4:ba:82:6f:5f:79:d4:f0:3c:8f:e2:95:
a5:ad:b7:6d:b1:e6:71:9a:49:f8:d2:7d:69:ae:df:79:b8:d6:
f7:6a:ac:23:f8:c7:74:1d:e1:a7:d9:93:50:49:cd:60:b3:22:
d6:9d:83:cb:ff:d6:02:2c:83:51:ae:22:f1:b3:38:9f:98:88:
83:78:f8:36:17:ba:57:34:58:39:f7:6d:d7:21:37:e3:af:db:
33:00:8d:71:07:ba:3a:c0:c0:ad:26:ec:f1:4e:13:54:0f:ce:
2e:d2:27:fd:6c:45:e1:8d:c1:6b:a3:d2:d9:81:ae:52:20:1d:
eb:78:81:fa:3e:11:76:73:73:e9:a9:11:db:56:ef:8a:b7:b6:
c8:6d:e5:af:e0:7d:8a:53:c2:31:ac:51:b6:07:f4:0e:d6:c9:
ae:c2:e6:47:c3:23:1a:0f:b8:2d:da:cc:77:2d:fb:2c:32:aa:
c4:93:e8:fb:c6:c8:91:47:1e:8f:5a:f3:3e:96:4f:0e:62:e4:
3c:e0:28:66:96:58:f5:d6:26:f7:d9:be:6d:c2:89:10:2b:26:
2a:30:6f:d8:a0:26:6e:f4:df:b8:bb:f8:53:fc:d9:16:5a:fd:
3e:ec:5f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org