Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/PbAu--m0BJgeveOYehG9MwsB5zo.roa
File: PbAu--m0BJgeveOYehG9MwsB5zo.roa (raw, json)
Hash identifier: 4gVJGJHLAWiqyT+pKLLEFBBBDWmztwra9NOOrt6RvL0=
Subject key identifier: 3D:B0:2E:FB:E9:B4:04:98:1E:BD:E3:98:7A:11:BD:33:0B:01:E7:3A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FE301F756184B36BC834967CE694899BC
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/PbAu--m0BJgeveOYehG9MwsB5zo.roa
Signing time: Tue 04 Jun 2024 11:28:27 +0000
ROA not before: Tue 04 Jun 2024 11:28:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 192.145.28.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 12:57:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e3:01:f7:56:18:4b:36:bc:83:49:67:ce:69:48:99:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 4 11:28:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3db02efbe9b404981ebde3987a11bd330b01e73a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:ce:ab:52:32:91:11:aa:6b:b2:52:36:89:98:
45:43:1d:72:b6:c7:18:83:79:9f:84:db:e9:2e:27:
1d:b9:56:b0:aa:37:7f:0a:24:6e:d1:5e:e1:81:ae:
94:72:e7:cc:53:5b:1f:d2:b0:3a:34:4f:9b:c9:18:
4c:85:e6:cb:bf:a0:bf:dd:bf:50:ac:e6:34:dc:a0:
81:c4:bd:bf:d9:55:32:a4:e8:d2:44:c3:83:48:cb:
4d:18:17:2d:5c:9f:77:cf:13:ba:2a:44:d5:ae:8a:
d1:62:a8:ad:79:3a:34:b9:b6:91:51:95:69:0e:24:
61:5e:5d:bd:31:68:2d:bb:c6:e0:72:c4:8b:21:dd:
98:f4:5c:0a:81:43:88:62:40:72:5e:6b:9c:57:02:
de:56:ff:61:42:ff:36:8c:0d:34:92:1f:c4:65:82:
f9:6c:93:b3:6e:ac:9c:b8:ec:19:3f:5c:41:b8:d5:
be:3d:8e:d2:99:f7:44:1f:66:25:70:7e:c5:82:3e:
4f:60:28:00:cf:25:75:98:fd:40:fc:26:a6:34:94:
b9:8f:45:75:cd:05:6c:2b:03:e4:2d:f2:25:11:0e:
0b:3d:80:82:9c:f4:63:0f:6e:42:54:59:ef:37:39:
d2:f1:24:74:af:b0:0f:c4:be:ee:28:83:0a:7a:c0:
15:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B0:2E:FB:E9:B4:04:98:1E:BD:E3:98:7A:11:BD:33:0B:01:E7:3A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/PbAu--m0BJgeveOYehG9MwsB5zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.28.0/22
Signature Algorithm: sha256WithRSAEncryption
8d:ae:a6:1e:53:f6:45:c3:da:c8:26:12:6b:6e:4e:94:09:ab:
3b:c5:b5:9a:33:db:0a:c1:fa:00:d0:3a:ac:f3:a5:60:24:05:
f7:9d:51:cd:c4:fd:cf:56:d3:3b:85:89:cc:00:35:42:3a:17:
70:91:49:b6:26:25:a3:9c:46:5f:91:39:74:c4:49:bf:1d:11:
44:7d:d6:ea:9d:e0:a5:5e:54:5c:2c:7a:70:77:e4:6a:b3:70:
51:fc:cd:10:30:2a:7c:77:09:7b:c3:37:0e:14:ca:88:ea:80:
8d:ff:f7:55:ee:b9:0c:5c:66:7a:97:9c:7b:50:d4:d5:fc:fe:
5e:c8:c0:00:f1:ea:aa:fb:3e:42:b4:fc:c2:be:84:cb:3a:08:
ce:0c:49:9e:fa:85:ad:b0:98:ee:b8:df:27:31:b8:14:6a:2b:
ea:d2:55:08:d1:11:d5:e6:10:28:7b:01:53:25:a4:cc:ca:24:
0f:8d:96:21:92:8b:dd:b0:98:69:d9:5e:f1:f8:e5:59:28:61:
82:90:b1:a6:5e:df:9d:d2:22:ae:cf:d9:3e:2a:37:73:e9:5b:
db:4f:33:69:1a:53:95:95:45:f8:8e:1f:f4:d5:0c:70:6e:6c:
b1:a7:42:04:88:64:bf:b0:59:91:59:41:7b:ef:1e:d0:2e:2a:
87:25:5f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 14:37:24 2024 by rpki-client on console-fra.rpki-client.org