Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/fe6363-6ed5-467d-b96e-8e0bdff237f8/1/ocCU222J2GBmr2-VZx62T0Fdl9g.roa
File: ocCU222J2GBmr2-VZx62T0Fdl9g.roa (raw, json)
Hash identifier: khOtL2xdWfBjBHUDin39BSw3O6E9SmCmcNtO8Su3J4c=
Subject key identifier: A1:C0:94:DB:6D:89:D8:60:66:AF:6F:95:67:1E:B6:4F:41:5D:97:D8
Certificate issuer: /CN=4d62781ca1436d96d6775ba20c5cf2c75dfd13e9
Certificate serial: 018571D7DC73633BED93353E82F330045782
Authority key identifier: 4D:62:78:1C:A1:43:6D:96:D6:77:5B:A2:0C:5C:F2:C7:5D:FD:13:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TWJ4HKFDbZbWd1uiDFzyx139E-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/fe6363-6ed5-467d-b96e-8e0bdff237f8/1/ocCU222J2GBmr2-VZx62T0Fdl9g.roa
Signing time: Mon 02 Jan 2023 09:37:30 +0000
ROA not before: Mon 02 Jan 2023 09:37:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43122
IP address blocks: 194.110.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:dc:73:63:3b:ed:93:35:3e:82:f3:30:04:57:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d62781ca1436d96d6775ba20c5cf2c75dfd13e9
Validity
Not Before: Jan 2 09:37:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a1c094db6d89d86066af6f95671eb64f415d97d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0a:3d:e3:3a:d5:ae:0a:20:7c:55:dd:ad:f3:
fa:88:ad:c6:89:71:ef:8f:de:7a:18:1e:5e:84:f9:
91:25:74:06:90:fc:e6:46:bc:31:c4:5a:ca:04:9f:
80:62:7a:c0:8c:73:ae:91:dd:0d:59:74:8b:31:78:
1a:a4:52:7e:3c:fe:73:6f:b5:02:6d:e0:26:2f:2e:
0c:8c:80:49:f2:ac:50:cb:b6:b7:a0:42:e9:a8:1d:
f5:94:f2:fd:32:9c:be:43:64:44:8c:29:99:93:48:
10:7f:90:08:d3:03:6a:6f:90:af:3b:3d:ac:d3:8e:
e7:bb:c6:02:14:01:e1:41:59:33:07:f0:9b:e6:fc:
88:45:9e:2f:df:a0:ad:ef:ab:11:d4:b5:31:65:d6:
97:b5:37:b6:56:ee:90:03:5c:0f:f4:cd:5f:43:bc:
58:3e:24:5f:27:57:6b:2c:19:7c:44:e1:17:56:97:
1d:e4:ec:aa:9a:cb:b7:c4:f5:58:eb:8f:63:d4:a2:
c3:a5:3b:5c:da:2b:a1:da:9a:3b:cd:1c:d0:1f:5a:
15:d3:ac:6d:13:a1:5e:0e:97:89:e4:7f:86:ed:50:
78:8c:cf:75:17:9e:28:09:33:51:13:38:b8:d8:fc:
0b:67:cb:7b:8c:92:93:23:3b:63:00:bf:17:8e:74:
ef:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C0:94:DB:6D:89:D8:60:66:AF:6F:95:67:1E:B6:4F:41:5D:97:D8
X509v3 Authority Key Identifier:
keyid:4D:62:78:1C:A1:43:6D:96:D6:77:5B:A2:0C:5C:F2:C7:5D:FD:13:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TWJ4HKFDbZbWd1uiDFzyx139E-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/fe6363-6ed5-467d-b96e-8e0bdff237f8/1/ocCU222J2GBmr2-VZx62T0Fdl9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/fe6363-6ed5-467d-b96e-8e0bdff237f8/1/TWJ4HKFDbZbWd1uiDFzyx139E-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.128.0/24
Signature Algorithm: sha256WithRSAEncryption
34:9d:06:4a:73:ff:0e:f4:6d:6d:cd:82:a8:b1:c9:95:4b:cd:
c9:db:72:59:9f:a1:eb:b9:c8:d2:4d:58:94:cb:a5:84:45:80:
27:de:4d:42:08:c8:81:6c:52:75:35:a6:9f:62:fc:b5:97:05:
df:3d:ce:eb:be:88:49:70:e2:5f:cd:9a:97:ac:c1:3f:70:1e:
3f:26:6c:99:f3:db:99:d6:b4:3a:81:65:59:91:d0:cd:bb:62:
bd:d4:fb:60:2e:51:9e:55:c8:d9:18:c8:3f:98:e1:5f:c9:c0:
79:7f:c4:5e:b8:01:eb:b3:7b:24:15:67:a5:fd:f8:67:0f:c8:
b2:f6:94:f8:c8:d6:67:cf:03:67:b9:2b:3e:f1:77:da:6c:74:
15:bb:4d:46:bb:06:0e:94:42:1c:d1:b3:eb:21:97:fc:1f:bd:
9c:ee:b0:39:23:ab:9a:4f:35:e8:de:fd:19:f6:df:b8:3f:a0:
de:df:df:f9:d3:80:31:b9:ff:bd:80:24:87:60:b0:da:9f:60:
41:de:07:5a:5b:94:d5:6e:db:32:86:99:d3:a0:b1:20:03:26:
85:a0:bf:f5:2c:c5:2c:56:8f:b6:d6:92:c1:9f:1f:55:92:76:
23:04:72:13:1b:1a:91:ad:b7:f8:96:cb:b5:d4:dd:37:0a:d2:
ac:f1:b2:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:41 2024 by rpki-client on console-ams.rpki-client.org