Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/0KPlXLV26kJuGtad2GbIeV0B5FU.roa
File: 0KPlXLV26kJuGtad2GbIeV0B5FU.roa (raw, json)
Hash identifier: Rf4v4HfsJcvL7vqmMQTqIa+/UYMi3kye9+A9DKclnjk=
Subject key identifier: D0:A3:E5:5C:B5:76:EA:42:6E:1A:D6:9D:D8:66:C8:79:5D:01:E4:55
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018570676759D1F0F3A52ECCD9DEE178C80A
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/0KPlXLV26kJuGtad2GbIeV0B5FU.roa
Signing time: Mon 02 Jan 2023 02:55:02 +0000
ROA not before: Mon 02 Jan 2023 02:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 194.39.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:67:59:d1:f0:f3:a5:2e:cc:d9:de:e1:78:c8:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 2 02:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0a3e55cb576ea426e1ad69dd866c8795d01e455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cb:04:e7:55:fe:8c:ea:14:1b:24:dc:e5:e4:
35:9f:ad:99:1b:74:a3:d6:89:8e:0f:92:e2:33:b9:
1a:52:93:e2:5f:6b:70:03:e9:af:e5:b1:a8:48:20:
23:db:58:6c:ce:ad:52:51:1c:2b:5b:c0:23:3f:3d:
18:37:2a:3c:e6:1e:f2:d5:d1:78:ca:3f:83:51:8d:
79:cb:ba:47:4c:a7:81:88:a0:29:cf:f1:c1:4d:28:
5f:ce:0b:7a:95:a9:45:da:a1:e3:ef:cf:56:1b:07:
34:df:4e:fd:74:2a:d6:80:10:9f:55:72:dc:29:15:
4d:d1:1f:4f:8d:c0:65:84:2a:cf:b4:55:96:30:4c:
66:50:7d:a1:63:53:81:5b:82:6e:cc:2e:e6:d9:13:
d6:56:b8:ac:bb:cc:6f:97:62:4d:5b:c6:ad:d7:96:
31:80:2b:11:c2:9c:7c:34:b4:d8:66:7b:c0:9c:0c:
ba:19:cb:54:4b:c5:63:29:e2:b6:7a:19:c2:23:c6:
39:62:86:cc:b8:18:59:7a:ab:bb:10:77:6e:9a:cd:
9a:a7:8d:88:74:6a:8b:13:61:5a:af:89:2b:09:bd:
32:c8:8b:16:9a:53:00:59:bf:3c:9c:e8:7f:e4:a8:
ed:2b:8e:da:c0:30:49:8c:99:81:a1:87:87:c2:42:
9e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A3:E5:5C:B5:76:EA:42:6E:1A:D6:9D:D8:66:C8:79:5D:01:E4:55
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/0KPlXLV26kJuGtad2GbIeV0B5FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.216.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f3:ea:a8:8b:1e:80:fa:61:6c:1e:6a:6e:e2:1e:6f:7b:c1:
c7:d9:27:2f:70:44:3e:28:6d:41:f1:82:16:6b:ec:58:f2:ed:
7c:84:cc:31:1a:22:5a:8a:3e:fe:02:df:2e:2c:62:58:bc:fc:
d7:20:54:e1:4b:82:6f:b2:52:a2:c5:05:d1:7b:43:23:a1:6f:
aa:f8:9d:3e:97:be:9c:be:26:27:81:58:65:b5:2b:3e:6e:d9:
73:44:ef:8b:7b:82:8c:46:91:d5:9c:e2:de:9f:71:3f:2a:c0:
60:97:87:f4:49:34:59:fc:bb:a9:29:4e:ee:a3:e8:29:bd:ee:
e9:91:77:da:9e:a8:c0:68:62:88:6d:9e:4e:81:ae:c7:66:00:
f2:67:b2:26:0b:a4:d5:c4:71:0c:af:be:e0:18:7c:ff:90:a1:
46:c0:bb:78:89:43:b0:2c:32:4b:12:28:dc:3c:6b:de:a5:e3:
f4:6e:06:59:e9:94:85:95:db:90:c9:21:7b:85:29:5d:8e:bf:
dc:0d:ec:42:02:52:cc:2a:7f:20:18:5a:a0:23:b1:0a:2c:3d:
77:4c:96:44:4d:61:08:f7:94:8a:b1:77:de:38:ce:c9:cd:d3:
e0:c9:3f:03:3b:25:13:5c:48:af:e8:c8:b0:3a:98:8e:a1:97:
6a:a1:87:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org