Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/lnB-qgrlT12xw8RiJHnNoQ3vm1c.roa
File: lnB-qgrlT12xw8RiJHnNoQ3vm1c.roa (raw, json)
Hash identifier: RYzZY/Hz4xHUwcRe6iTklX7Nxo4RbD8D5pFva0LSbp8=
Subject key identifier: 96:70:7E:AA:0A:E5:4F:5D:B1:C3:C4:62:24:79:CD:A1:0D:EF:9B:57
Certificate issuer: /CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Certificate serial: 01856CF86AFE962FB589B33939104E707CC4
Authority key identifier: 4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/lnB-qgrlT12xw8RiJHnNoQ3vm1c.roa
Signing time: Sun 01 Jan 2023 10:54:57 +0000
ROA not before: Sun 01 Jan 2023 10:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47377
IP address blocks: 194.62.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:6a:fe:96:2f:b5:89:b3:39:39:10:4e:70:7c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c403bc60b4a13c3daa3411ac923c6372d423eb8
Validity
Not Before: Jan 1 10:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96707eaa0ae54f5db1c3c4622479cda10def9b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5f:13:74:08:db:61:93:6e:a9:a6:6d:7e:6c:
93:43:f2:f0:e1:31:ab:38:87:16:74:ad:57:36:d7:
f7:40:f8:85:30:e2:36:18:73:17:ff:53:e1:63:ba:
73:9b:18:1e:09:ef:6c:43:29:7d:f0:04:50:ee:83:
6a:66:99:0e:7a:49:90:18:36:65:48:d8:f0:f3:d4:
78:e3:b1:51:9a:2d:4f:ac:3c:44:84:bd:9e:d2:72:
66:f4:d1:41:9a:bd:6d:ec:ff:94:5e:29:cf:df:2c:
23:c7:26:7d:77:7d:5f:91:b0:48:d6:d9:c2:4e:00:
95:af:8c:d7:8b:c9:45:21:a7:09:de:ec:74:1e:f6:
d9:96:da:d7:e1:76:a5:5d:b8:06:57:b2:38:e6:5c:
a7:93:60:8b:2d:08:eb:28:94:e9:66:81:4b:ab:a8:
63:42:0c:e6:13:75:ac:9e:c1:13:f5:af:0c:21:cd:
22:19:2a:3b:f3:19:b2:6a:b4:45:d6:5e:bb:9d:56:
e8:23:c4:a7:06:25:7e:2c:d5:c3:03:17:07:c5:94:
ea:07:9e:f6:a4:bf:86:0a:3d:01:36:b1:17:a8:54:
0d:e7:81:44:05:28:40:0a:c7:3a:e3:c3:c5:24:ad:
a7:ad:68:39:91:9a:67:fb:cb:d0:96:b1:c7:1b:e5:
48:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:70:7E:AA:0A:E5:4F:5D:B1:C3:C4:62:24:79:CD:A1:0D:EF:9B:57
X509v3 Authority Key Identifier:
keyid:4C:40:3B:C6:0B:4A:13:C3:DA:A3:41:1A:C9:23:C6:37:2D:42:3E:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TEA7xgtKE8Pao0EaySPGNy1CPrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/lnB-qgrlT12xw8RiJHnNoQ3vm1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/08b9c4-0afd-4876-9ef7-2e84b8d18e4e/1/TEA7xgtKE8Pao0EaySPGNy1CPrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.72.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:4d:7e:1e:5a:a4:dc:bc:2e:8a:59:eb:a3:21:1a:99:ea:ca:
ba:71:6f:96:70:2d:11:67:8e:e8:b4:50:a9:2d:d0:c7:70:aa:
d2:b8:4f:61:ae:6f:ab:40:cf:48:6d:aa:ea:5c:71:d8:53:06:
97:41:b4:69:5c:ba:f3:28:55:64:b8:78:21:f0:67:b6:1b:da:
9e:06:73:ce:73:81:34:ac:d2:0a:1c:14:b4:21:01:e0:df:4b:
9c:ca:fd:80:af:93:b0:62:97:3d:7e:09:7e:1e:73:f2:14:d6:
5b:1a:c9:92:ba:33:29:e8:43:2c:9f:0b:37:f0:88:1a:a5:56:
31:57:21:a3:41:31:d8:73:c6:b9:c1:20:16:14:17:21:e2:23:
6b:46:fa:0c:bd:ac:d8:6b:f0:de:7d:d8:0f:cc:ad:33:7a:61:
db:02:1c:9a:b4:c0:94:b0:54:9b:42:8c:e1:a7:7b:f9:d6:bf:
f6:1c:6b:2f:00:fc:d3:d7:11:c3:27:52:04:72:66:ab:7a:70:
8a:f3:1d:6d:5f:fd:47:52:ed:58:b5:ff:70:67:cb:7e:0e:ea:
41:57:3d:e3:23:0b:d0:26:13:f8:4d:34:b8:07:0a:5e:3c:02:
ae:8b:34:a1:ee:69:79:0a:99:fc:68:7c:6e:e3:96:71:4c:a4:
ad:af:9f:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:55 2024 by rpki-client on console-ams.rpki-client.org