Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/rcTd90xQQkpuYrX4bQ4aQuN_M_0.roa
File: rcTd90xQQkpuYrX4bQ4aQuN_M_0.roa (raw, json)
Hash identifier: +6TSzBWM7GOn8vtuQs3u+FOk2d9EESPlFt5+nbcF1Iw=
Subject key identifier: AD:C4:DD:F7:4C:50:42:4A:6E:62:B5:F8:6D:0E:1A:42:E3:7F:33:FD
Certificate issuer: /CN=430e4026ca964cf3512940b26b11e64871c47944
Certificate serial: 01857246C6DA21C317E2D694F277BBF0A74C
Authority key identifier: 43:0E:40:26:CA:96:4C:F3:51:29:40:B2:6B:11:E6:48:71:C4:79:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qw5AJsqWTPNRKUCyaxHmSHHEeUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/rcTd90xQQkpuYrX4bQ4aQuN_M_0.roa
Signing time: Mon 02 Jan 2023 11:38:39 +0000
ROA not before: Mon 02 Jan 2023 11:38:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41332
IP address blocks: 194.8.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 Nov 2023 19:28:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c6:da:21:c3:17:e2:d6:94:f2:77:bb:f0:a7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430e4026ca964cf3512940b26b11e64871c47944
Validity
Not Before: Jan 2 11:38:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adc4ddf74c50424a6e62b5f86d0e1a42e37f33fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e0:cb:5e:fc:c7:53:ed:2d:9d:0a:75:d4:e8:
ca:8e:9f:5b:8b:8d:ad:1a:84:23:14:e2:c5:e8:56:
bc:0b:37:6a:5b:af:ac:52:93:17:0a:f8:8a:5f:3b:
64:12:1d:e5:d3:50:01:76:7f:c8:34:33:ad:13:17:
b4:2a:64:0a:43:8a:d7:20:97:b2:0a:be:43:0b:83:
0f:18:c3:b4:7f:7b:37:1b:68:67:94:70:20:7d:b5:
6d:31:e8:e1:a6:cb:9e:e0:3c:a0:a5:4d:5d:b2:8a:
ea:a3:62:4e:10:c8:b8:f9:64:12:8d:6e:c3:50:b8:
38:35:e6:c0:b5:20:98:83:b9:e3:77:1e:0e:9d:df:
f8:f0:6d:0f:c6:0b:a2:07:fc:5d:c7:79:89:68:c8:
a8:4b:10:3c:06:97:a4:e3:cf:7f:b5:ea:3d:98:0f:
5c:ee:f7:c5:7d:96:82:38:28:e1:92:aa:dc:c0:da:
83:38:db:aa:37:af:ff:bf:bb:7f:03:52:65:4d:4e:
01:27:97:51:6d:03:9f:c2:71:23:4a:9a:f8:b8:dd:
03:98:a9:a9:84:c2:8a:fb:d1:3f:ff:f5:33:e6:6d:
29:02:d2:05:ec:96:88:e4:89:d3:6c:af:4e:7c:3a:
e0:58:ef:42:c4:9d:cf:d4:3c:48:67:03:b1:f0:69:
91:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C4:DD:F7:4C:50:42:4A:6E:62:B5:F8:6D:0E:1A:42:E3:7F:33:FD
X509v3 Authority Key Identifier:
keyid:43:0E:40:26:CA:96:4C:F3:51:29:40:B2:6B:11:E6:48:71:C4:79:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw5AJsqWTPNRKUCyaxHmSHHEeUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/rcTd90xQQkpuYrX4bQ4aQuN_M_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/Qw5AJsqWTPNRKUCyaxHmSHHEeUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.75.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:6a:b7:e2:1d:87:bf:88:a0:22:97:59:0c:f8:6d:8b:48:6f:
2a:a6:dc:ef:78:f0:57:d3:bc:1f:55:5e:1d:33:7b:41:6b:79:
c2:03:d3:48:c5:f8:99:99:aa:3e:ce:4e:39:77:b3:d5:04:90:
86:ad:51:96:84:02:1e:f2:28:57:ea:19:be:64:9e:b8:64:5a:
1e:92:b2:82:cc:75:3d:f3:c9:58:b0:d7:c3:a0:c1:b4:86:49:
27:9c:df:e2:62:9e:aa:a7:eb:e1:d1:ca:20:6b:43:67:13:f9:
6b:57:ac:e2:34:60:66:50:f4:6b:b8:a6:23:2f:ab:2a:6c:c0:
ee:5a:14:be:33:26:a4:0c:33:a4:a3:1b:6a:85:cb:23:72:b8:
0b:7a:2f:79:45:f4:d9:12:16:80:80:d9:eb:81:58:92:69:00:
d9:96:c1:3e:c2:35:7d:d6:8f:56:65:79:f8:5f:ce:ae:cc:09:
71:db:58:b8:7a:0a:0a:07:ca:58:d8:c7:44:6e:fb:7e:15:3d:
de:09:9e:92:d7:d9:c4:b5:80:43:e5:ad:33:4e:01:de:7d:ff:
8b:6d:ee:75:8a:cf:7f:b8:1c:ef:08:eb:9e:bf:97:62:fb:f4:
4f:e6:22:a7:47:df:b6:fb:d9:14:ab:d1:ce:1b:fa:1e:65:92:
41:fc:38:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org