Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/RXk1fwxJSAvVFK1j_l_oAGDxNAI.roa
File: RXk1fwxJSAvVFK1j_l_oAGDxNAI.roa (raw, json)
Hash identifier: bpiecJtR1cFe5PQlgccEdY1ftnK2kZuGB14ylwc/j/o=
Subject key identifier: 45:79:35:7F:0C:49:48:0B:D5:14:AD:63:FE:5F:E8:00:60:F1:34:02
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 0188427CF364659244966A354629D006DF86
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/RXk1fwxJSAvVFK1j_l_oAGDxNAI.roa
Signing time: Mon 22 May 2023 08:04:24 +0000
ROA not before: Mon 22 May 2023 08:04:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199238
IP address blocks: 94.240.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:42:7c:f3:64:65:92:44:96:6a:35:46:29:d0:06:df:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: May 22 08:04:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4579357f0c49480bd514ad63fe5fe80060f13402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9d:a3:08:fb:59:f5:e3:35:29:9d:93:02:7d:
6a:33:6a:f7:9c:fd:71:8c:92:9b:37:03:96:b5:ac:
f6:e8:53:a0:bc:b1:7b:0a:97:14:3d:ad:6f:ed:2c:
e3:91:c1:b0:70:2f:d1:bf:8b:bc:12:0e:65:69:50:
88:ab:8e:31:6e:2e:60:32:58:92:56:ec:42:82:2b:
9a:4b:45:d8:94:92:ed:7b:2d:93:27:c1:a5:7e:46:
a8:d9:8b:8a:37:8b:3a:83:1f:73:14:30:69:22:2c:
ff:11:cd:1e:c7:0d:7b:57:df:f1:de:08:1f:51:c2:
9f:60:da:06:c5:9a:66:7c:cb:01:c3:6f:a4:4f:d1:
0f:9b:5a:4c:68:da:c1:a1:4e:8b:3a:7a:92:cd:ef:
38:a4:1d:8c:f1:1c:a6:23:b1:69:9a:0c:94:8b:c3:
f8:c7:74:25:78:3f:6b:fc:f3:f4:cd:63:f1:9b:68:
7f:81:eb:2e:b1:57:db:9b:ae:d8:05:28:a1:58:28:
42:ee:66:cd:bc:54:67:07:fb:43:73:f7:48:6d:04:
e0:54:d1:e6:9f:e6:80:9b:49:f3:5f:b9:db:f7:48:
e0:8a:12:ee:df:e7:9c:09:df:a1:56:39:ac:3b:de:
4d:37:de:1c:4c:6c:f0:4d:ed:c3:a1:a4:b0:28:31:
c0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:79:35:7F:0C:49:48:0B:D5:14:AD:63:FE:5F:E8:00:60:F1:34:02
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/RXk1fwxJSAvVFK1j_l_oAGDxNAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.22.0/24
Signature Algorithm: sha256WithRSAEncryption
39:ac:e8:cd:34:8f:4c:1d:1c:b7:a4:14:ff:19:19:7a:d7:a9:
1e:43:44:61:a4:52:a7:0d:a7:9d:67:cd:85:12:09:e4:4a:34:
fa:28:62:d0:77:de:e6:81:0e:0b:a4:18:41:ab:87:b5:99:f3:
10:12:24:4a:a8:f1:3a:db:84:2b:c8:0e:49:26:15:29:b8:f3:
95:2b:ae:27:c3:03:7f:70:5e:4c:d8:e4:e5:95:18:62:0c:67:
ba:91:1a:69:5d:bb:33:63:ac:ce:e6:96:85:66:f1:54:44:80:
53:f7:65:95:94:33:18:2b:0e:d6:32:2a:2c:b3:3e:25:4d:d0:
93:eb:ad:18:d1:c3:9c:1d:8b:f6:c9:44:16:06:a7:c6:af:3b:
4e:5e:17:91:35:f3:93:3a:ad:26:d4:38:5c:08:f6:0c:d9:f7:
a2:40:c2:01:d1:3f:b9:51:40:e2:da:37:6b:ca:00:c8:5a:08:
77:eb:44:3f:6a:a6:85:c2:62:d7:90:ea:dd:31:3b:41:d6:da:
5d:60:0c:26:0f:ff:08:51:27:58:45:7e:72:64:ed:83:1f:a2:
52:9f:80:ea:97:96:aa:06:6c:d1:6f:1e:09:18:1a:57:65:27:
83:a1:2a:27:c1:cf:3d:d0:2b:cd:2a:2e:ae:92:5b:86:ab:b8:
7c:e1:1f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:18 2024 by rpki-client on console-fra.rpki-client.org