Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/nQ1VU0jTP0g7IzQTU_IiVgmGs1c.roa
File: nQ1VU0jTP0g7IzQTU_IiVgmGs1c.roa (raw, json)
Hash identifier: 9RUWF8yDjCz9sX9iKqJ8YrvB4pHraDuJPyWI8Dp0poM=
Subject key identifier: 9D:0D:55:53:48:D3:3F:48:3B:23:34:13:53:F2:22:56:09:86:B3:57
Certificate issuer: /CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Certificate serial: 018BB0767D940326384C96ECC82CC45DF9F1
Authority key identifier: C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/nQ1VU0jTP0g7IzQTU_IiVgmGs1c.roa
Signing time: Wed 08 Nov 2023 19:43:57 +0000
ROA not before: Wed 08 Nov 2023 19:43:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212825
IP address blocks: 194.44.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b0:76:7d:94:03:26:38:4c:96:ec:c8:2c:c4:5d:f9:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3fb403a241883e58fced52d39d80eabd52bb36f
Validity
Not Before: Nov 8 19:43:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d0d555348d33f483b23341353f222560986b357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d4:cd:23:d5:0e:2f:19:be:5b:42:8e:1b:c1:
4b:be:1c:f9:88:50:06:0b:6b:e8:6f:3c:e3:bc:a5:
2c:ec:90:d6:20:b5:37:52:73:b7:96:79:d2:4e:5d:
f4:b0:b6:0f:0d:1c:9a:a3:4a:a8:c9:1e:12:12:64:
90:34:78:2c:32:3d:a0:16:0d:85:78:7d:06:b8:e5:
1a:42:28:4c:bc:b0:69:99:d8:c5:7f:86:10:28:41:
18:a8:a5:ea:dd:3f:25:31:89:34:ab:ac:ee:e4:9c:
4b:71:8f:fd:7d:c4:6b:ac:bc:1f:64:c3:7e:50:9a:
a6:8d:8e:24:4f:68:c6:9c:7a:79:97:e2:c8:19:f6:
48:d5:4d:aa:d0:9a:21:18:b9:41:33:2b:3d:fc:9e:
b5:f6:f2:f4:5b:cb:10:b2:4b:3e:8b:0b:36:cb:d1:
ab:fa:9c:67:fc:c8:8d:f8:9a:cb:12:5f:2d:50:a4:
d0:15:4e:d2:ab:82:bb:ec:e4:42:e8:6b:14:fa:31:
66:36:bb:33:34:eb:e0:7d:d3:45:53:51:cc:99:45:
3b:ef:c6:93:0f:17:9c:59:0f:24:c7:11:00:05:7c:
6d:50:69:df:a5:f1:ac:5f:26:27:62:9c:40:7e:fa:
d5:17:5d:3e:dc:df:d1:8c:33:6c:5c:13:d4:be:f3:
0d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0D:55:53:48:D3:3F:48:3B:23:34:13:53:F2:22:56:09:86:B3:57
X509v3 Authority Key Identifier:
keyid:C3:FB:40:3A:24:18:83:E5:8F:CE:D5:2D:39:D8:0E:AB:D5:2B:B3:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w_tAOiQYg-WPztUtOdgOq9Urs28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/nQ1VU0jTP0g7IzQTU_IiVgmGs1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4dc625-7c1c-4dac-899e-a9a779026f0a/1/w_tAOiQYg-WPztUtOdgOq9Urs28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.44.176.0/24
Signature Algorithm: sha256WithRSAEncryption
17:76:a0:80:f5:ce:4d:ac:79:82:03:5e:15:83:31:6e:24:b7:
6e:c7:6a:e1:b1:f0:10:01:5f:4b:de:26:ec:2e:8e:25:88:69:
87:c7:14:4e:22:91:c8:27:f5:68:f0:70:9f:c8:0c:64:6c:fa:
58:67:53:f3:c4:7f:22:c5:ba:83:a0:4e:07:e2:10:73:26:d6:
76:1a:4d:63:d9:3a:21:f4:2b:c0:ba:80:9b:19:40:df:71:99:
e3:34:7f:dc:76:08:06:60:e6:d8:fd:c9:ae:62:40:f1:5a:88:
ba:e1:f9:d8:22:fd:f2:06:18:e9:f5:67:d6:56:0b:cf:94:31:
2e:bd:9f:06:7b:f2:e2:16:ab:e3:4b:ac:f6:d9:41:1e:9a:e0:
00:67:01:37:33:3d:c9:d8:c3:85:e3:f7:bf:c8:07:e5:f8:51:
fb:d9:20:82:dc:6b:22:88:0a:ea:2a:e8:cc:51:67:85:9d:31:
30:d4:25:c0:a2:aa:3b:dd:dc:f7:ad:53:94:dc:85:5f:41:54:
b6:fa:1a:1a:6f:a1:83:02:71:9e:91:72:54:55:76:4f:f6:cb:
97:eb:3f:9f:38:93:71:a1:98:ee:f4:96:08:85:7d:46:e6:da:
82:8b:ee:b1:6a:47:3d:dd:57:8a:36:01:7f:30:db:1b:0d:5e:
0e:c0:98:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org