Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/1-W2Xc4FE3RBoPrAD1B6AKNyCEZo.roa
File: 1-W2Xc4FE3RBoPrAD1B6AKNyCEZo.roa (raw, json)
Hash identifier: VEq+dKih7FllHTcrciQKVSFp40zAS00i+n+kzKdgazQ=
Subject key identifier: F9:6D:97:73:81:44:DD:10:68:3E:B0:03:D4:1E:80:28:DC:82:11:9A
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018A2C567BB169994A99CB0B5BBC00EF9C43
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/1-W2Xc4FE3RBoPrAD1B6AKNyCEZo.roa
Signing time: Fri 25 Aug 2023 10:56:19 +0000
ROA not before: Fri 25 Aug 2023 10:56:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216459
IP address blocks: 194.156.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:56:7b:b1:69:99:4a:99:cb:0b:5b:bc:00:ef:9c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 25 10:56:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f96d97738144dd10683eb003d41e8028dc82119a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fd:9e:47:0a:a5:1c:be:36:cd:2d:ef:7b:70:
84:e6:68:3a:07:a4:8f:c4:3e:fd:6d:bd:43:f6:f7:
5a:d2:95:60:c2:51:41:ce:65:18:39:91:8c:1a:c9:
6c:77:e7:e3:fc:bb:b5:d2:e9:19:c0:27:16:fc:e4:
e9:13:42:b7:a3:73:e4:4a:7b:c4:38:49:b0:03:4d:
45:ce:80:24:0d:6e:13:52:01:20:48:3e:f1:b6:0b:
2a:1f:32:38:c3:2b:ca:bb:cf:da:6a:c8:81:a8:99:
32:55:f9:6b:c0:63:a4:6c:8b:79:fe:94:0b:dc:77:
44:e5:63:10:fd:b4:25:28:e3:f6:df:f3:b7:2b:e7:
2b:53:5a:30:29:e7:68:35:d5:ec:1a:1e:ff:4f:28:
5a:cb:23:c6:e8:83:af:e9:2c:c1:57:c7:4d:6f:9c:
f8:cf:2e:88:dc:c3:39:09:9f:ba:4c:32:69:df:9e:
a0:29:55:f7:61:c2:45:64:8f:1e:f5:b0:fe:05:40:
a8:39:c9:4e:25:6c:dc:62:ad:f5:54:34:35:2d:cb:
82:9e:db:44:90:ed:a2:6b:ff:29:31:f8:bc:4a:50:
23:8a:b2:d3:87:12:e8:59:74:f1:40:7d:0c:72:bd:
93:1b:9f:0d:70:72:56:12:d1:55:98:87:8d:99:9a:
1d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:6D:97:73:81:44:DD:10:68:3E:B0:03:D4:1E:80:28:DC:82:11:9A
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/1-W2Xc4FE3RBoPrAD1B6AKNyCEZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.176.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f2:59:b0:36:f2:6b:0e:bc:fc:af:94:da:b3:33:63:40:48:
19:71:68:eb:57:63:c5:99:d7:01:51:34:24:d9:ae:ea:8c:e5:
47:3b:f2:08:37:0e:de:2a:28:85:ab:1d:b7:2e:9b:53:21:b4:
e2:98:fb:c4:43:63:c5:d4:91:af:33:17:69:c9:63:2a:17:7d:
49:6e:12:b8:06:98:69:5f:5d:1b:09:5d:4a:e4:45:f4:ed:b8:
b2:b8:27:1a:36:24:56:bb:41:5f:cf:2e:87:9e:b8:61:00:26:
75:39:22:1a:85:27:af:00:5a:c4:d6:f9:52:c6:67:c5:92:8e:
ec:02:d5:4c:12:0b:00:7d:a3:51:ed:c4:9c:44:6d:33:ef:a4:
e8:32:aa:87:be:79:fe:83:66:71:e2:28:86:d1:79:45:4e:d5:
a5:21:67:da:1e:ab:94:c0:97:db:a2:4f:be:5e:84:85:f8:e3:
80:c0:a5:2c:03:a4:ad:34:2b:d1:34:77:65:1c:3e:41:b2:45:
68:10:37:52:5a:67:c5:ea:c4:67:a9:c0:99:4a:68:9d:27:84:
40:c7:93:98:0c:0a:c2:9a:55:01:94:a2:23:52:81:16:e0:98:
0b:91:a1:da:a9:bd:99:87:ac:ba:90:45:63:dc:cd:6a:93:ba:
87:56:3d:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org