Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AwwOtS0Nt7caEd1B9gfwHcKTerM.roa
File: AwwOtS0Nt7caEd1B9gfwHcKTerM.roa (raw, json)
Hash identifier: 77VE2YIsojehGst1wTy/91DBafvSCeTyHA0KSs3hwD0=
Subject key identifier: 03:0C:0E:B5:2D:0D:B7:B7:1A:11:DD:41:F6:07:F0:1D:C2:93:7A:B3
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01913A72C1BDAE3C0E0D2E87BB3FF7BE68F1
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AwwOtS0Nt7caEd1B9gfwHcKTerM.roa
Signing time: Sat 10 Aug 2024 04:01:24 +0000
ROA not before: Sat 10 Aug 2024 04:01:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 192.145.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 05:38:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3a:72:c1:bd:ae:3c:0e:0d:2e:87:bb:3f:f7:be:68:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 10 04:01:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=030c0eb52d0db7b71a11dd41f607f01dc2937ab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7c:71:85:a9:df:87:95:18:2e:86:d4:d4:97:
51:00:dc:3f:af:a3:31:96:e0:27:df:1f:65:ef:09:
5f:2a:12:4d:e1:f8:38:83:92:10:3a:3f:1f:77:90:
eb:fc:d7:ba:a6:92:b2:96:30:f9:22:22:35:c7:6a:
a9:04:cf:2b:69:3f:dd:fa:3c:19:d7:83:61:c5:39:
a5:e7:fb:c6:f0:67:de:e3:b7:ff:fb:ca:2b:3b:a9:
bc:af:49:45:e1:a2:55:f3:10:29:ce:03:53:7e:2b:
74:92:cb:90:19:e7:6b:8e:70:a4:21:05:f2:f8:af:
97:3e:bb:db:30:00:dd:50:64:11:7d:fe:ce:3e:56:
fd:61:33:66:a6:17:0a:3b:50:ac:3a:3f:a6:ec:07:
8b:f9:d7:0a:e1:8c:2c:28:f5:69:42:99:68:7a:57:
ff:1d:a7:e3:08:62:e8:fe:2a:c6:f5:38:ac:ad:82:
3d:e3:f7:5d:d2:25:22:c1:a0:58:33:8c:76:15:23:
69:a3:bf:c7:eb:d6:e5:d7:4a:b3:3f:65:f0:8c:df:
b6:3e:17:e6:73:b3:a2:c2:b0:0a:ea:6d:c7:91:f8:
9d:17:6b:e9:74:e8:64:d7:bd:03:13:73:c6:72:26:
77:49:3d:6e:9e:7d:87:5b:aa:21:2d:66:83:c8:1e:
53:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0C:0E:B5:2D:0D:B7:B7:1A:11:DD:41:F6:07:F0:1D:C2:93:7A:B3
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/AwwOtS0Nt7caEd1B9gfwHcKTerM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:05:68:4d:7e:73:f3:13:b5:8e:08:37:bf:19:99:cf:ac:05:
97:f8:f8:79:9e:53:ff:cb:98:d8:42:06:3d:2e:28:54:a1:d1:
b1:5b:4c:eb:1f:f9:a3:71:fb:7c:e6:26:fb:61:8f:10:35:d1:
65:64:8a:fc:48:fb:9d:fb:34:03:4f:2a:6f:80:2a:7f:6d:21:
ed:46:34:24:73:7b:e8:21:3d:fe:70:aa:7a:c3:4f:0a:a4:0a:
2c:7d:66:ec:ba:f3:0d:83:5b:53:94:80:4d:7e:18:e7:7a:ea:
e1:e3:c0:ea:77:ea:eb:76:21:68:bb:94:6d:56:c7:22:30:ae:
fd:35:ee:b1:92:cf:8c:46:74:12:e4:3f:cc:05:38:17:1b:98:
cd:f0:d4:3d:aa:70:e9:ab:a2:6a:16:3d:5a:28:da:55:b5:1e:
19:9f:24:19:f1:1c:fe:c4:d5:27:96:90:a6:c4:92:b8:99:51:
27:5c:a3:1e:bc:a2:7e:33:3f:f0:c2:a1:d2:1a:b8:36:a0:9e:
25:59:ff:e8:6e:39:10:29:5c:8e:80:3a:32:a4:e1:aa:d0:8b:
ef:a4:18:a4:8a:3d:a9:49:0a:8f:34:c1:0a:38:19:48:9d:62:
b3:95:35:ec:87:d4:93:fa:27:e1:b1:a4:95:c2:60:3f:42:84:
33:4f:3c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 07:38:26 2024 by rpki-client on console-fra.rpki-client.org