Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/0947f2-22ca-47cb-89ad-3e50a5f01998/1/1uY7qauFE0SS70RotoHdsdDQG0Y.roa
File: 1uY7qauFE0SS70RotoHdsdDQG0Y.roa (raw, json)
Hash identifier: UkYVr8yZwZUiAYJ+wRoaKrsCuzmdLi49dvOCSH8oJlg=
Subject key identifier: D6:E6:3B:A9:AB:85:13:44:92:EF:44:68:B6:81:DD:B1:D0:D0:1B:46
Certificate issuer: /CN=7fd18a6a49910cc331dc91114ae59b7185d5f30d
Certificate serial: 01856EA6A3C7BC849A98500444AD37EC4F4B
Authority key identifier: 7F:D1:8A:6A:49:91:0C:C3:31:DC:91:11:4A:E5:9B:71:85:D5:F3:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f9GKakmRDMMx3JERSuWbcYXV8w0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/0947f2-22ca-47cb-89ad-3e50a5f01998/1/1uY7qauFE0SS70RotoHdsdDQG0Y.roa
Signing time: Sun 01 Jan 2023 18:44:52 +0000
ROA not before: Sun 01 Jan 2023 18:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58043
IP address blocks: 194.76.244.0/24 maxlen: 25
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:a3:c7:bc:84:9a:98:50:04:44:ad:37:ec:4f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fd18a6a49910cc331dc91114ae59b7185d5f30d
Validity
Not Before: Jan 1 18:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6e63ba9ab85134492ef4468b681ddb1d0d01b46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:be:eb:98:65:c9:d5:c1:28:d8:d2:5c:60:c7:
1d:90:b8:8f:94:1b:5f:06:e8:ec:a2:38:96:06:22:
2e:94:24:e0:b0:92:5d:2a:98:76:63:dc:bc:9e:c0:
59:94:07:5b:48:3f:d6:e8:b5:61:f5:5d:3a:7a:61:
61:db:4b:ed:63:b7:3b:18:31:60:f2:27:36:64:dd:
75:6c:7d:0c:34:9a:97:19:e5:00:73:21:d7:f4:42:
54:09:ef:00:00:a3:08:07:52:4d:7b:a2:4b:e7:5c:
98:9d:20:b6:42:5b:2c:e4:1c:72:86:fa:cd:dd:c1:
bf:c9:ae:6a:92:4b:ae:76:86:ba:ae:c9:0d:c5:3b:
d2:19:3a:2f:50:fd:81:e4:b3:86:e2:e0:d9:c3:83:
6d:85:79:9d:65:0c:a2:0b:4b:54:4b:80:f6:ca:04:
6b:b2:a8:48:8d:31:7c:da:48:1e:98:3b:79:90:40:
bd:c2:b3:a6:56:82:24:3b:b6:85:62:b6:8b:66:08:
c8:2e:17:31:9e:9a:d3:3a:c4:c3:da:77:d1:4d:c3:
be:91:c5:f3:d0:ec:4e:ee:8e:2a:e5:6d:eb:43:9d:
17:53:6b:ff:cb:90:c0:c1:d7:a2:8f:e5:b6:f4:48:
9c:73:b8:4b:d2:92:21:9f:f4:6c:72:a0:6c:95:8c:
39:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E6:3B:A9:AB:85:13:44:92:EF:44:68:B6:81:DD:B1:D0:D0:1B:46
X509v3 Authority Key Identifier:
keyid:7F:D1:8A:6A:49:91:0C:C3:31:DC:91:11:4A:E5:9B:71:85:D5:F3:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9GKakmRDMMx3JERSuWbcYXV8w0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0947f2-22ca-47cb-89ad-3e50a5f01998/1/1uY7qauFE0SS70RotoHdsdDQG0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/0947f2-22ca-47cb-89ad-3e50a5f01998/1/f9GKakmRDMMx3JERSuWbcYXV8w0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.244.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:76:a8:e8:af:b4:68:eb:09:2f:97:e7:d1:93:6a:6f:52:9b:
4b:b5:dd:17:04:b5:37:4c:1a:ec:95:84:08:f0:b3:62:3b:f3:
1f:2c:fe:ca:63:f3:6c:fa:5a:c9:87:5f:ad:71:78:c6:73:02:
d9:9c:b2:8c:8b:64:19:cb:7a:e7:9c:08:45:24:43:72:3a:3f:
bb:d6:22:48:2b:10:2f:28:2c:17:16:b7:17:db:9e:22:87:cd:
3b:24:0f:32:f0:52:93:5f:98:d3:91:a7:17:95:1e:04:c0:22:
a9:58:fc:0b:96:4a:7c:90:40:08:96:69:39:f6:a1:b5:97:62:
e4:7e:56:5a:f1:d2:4e:5d:f4:e3:a8:0c:23:6f:02:69:19:ca:
59:5d:bf:41:f2:4b:b8:05:4d:e5:05:2e:a8:de:64:b5:0f:0e:
9c:24:4c:c2:cb:29:aa:b4:5c:17:b7:d7:e7:bf:08:a5:54:14:
71:cd:71:39:94:17:0c:41:2c:f9:bf:31:85:4f:d1:f2:5f:2c:
8a:18:48:c0:d5:c6:a8:b2:b9:27:00:1f:4b:a9:3e:51:6d:d8:
d3:f9:4e:ee:46:b9:b0:72:87:2f:68:0a:37:1f:ca:1b:21:1a:
ef:e0:98:cf:7e:e1:c8:bc:f6:17:e9:c0:d2:3a:2f:87:9b:bb:
c8:63:26:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:43 2024 by rpki-client on console-ams.rpki-client.org