Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/a32567-780f-4509-b710-97eaf9aa786f/1/tXhWSJ9kMm7N0I9MJLo-MvPH3Ug.roa
File: tXhWSJ9kMm7N0I9MJLo-MvPH3Ug.roa (raw, json)
Hash identifier: xiExadzOdXH523JGVKDIuGdkKGoPePS2FU/ZkSsgDYk=
Subject key identifier: B5:78:56:48:9F:64:32:6E:CD:D0:8F:4C:24:BA:3E:32:F3:C7:DD:48
Certificate issuer: /CN=6d555e6c14b94d756d93a83a502c7f1577f9af49
Certificate serial: 0186A1DBE8DE6942A1DA4768EEAFC7DBFD0B
Authority key identifier: 6D:55:5E:6C:14:B9:4D:75:6D:93:A8:3A:50:2C:7F:15:77:F9:AF:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bVVebBS5TXVtk6g6UCx_FXf5r0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/a32567-780f-4509-b710-97eaf9aa786f/1/tXhWSJ9kMm7N0I9MJLo-MvPH3Ug.roa
Signing time: Thu 02 Mar 2023 10:26:29 +0000
ROA not before: Thu 02 Mar 2023 10:26:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42307
IP address blocks: 194.55.248.0/22 maxlen: 22
2a0c:ccc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 04 Apr 2023 06:25:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a1:db:e8:de:69:42:a1:da:47:68:ee:af:c7:db:fd:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d555e6c14b94d756d93a83a502c7f1577f9af49
Validity
Not Before: Mar 2 10:26:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b57856489f64326ecdd08f4c24ba3e32f3c7dd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:44:49:90:fa:3b:e8:6c:10:02:df:ba:66:f7:
17:59:40:a9:63:8a:5e:c0:aa:fc:cb:09:ee:96:08:
23:48:a9:94:17:07:3c:8c:ae:e5:74:c7:9c:3c:d0:
1a:65:84:67:3e:74:fe:4a:c8:59:ca:fb:38:a3:0e:
db:ef:c9:f3:52:6b:1e:41:25:af:56:65:78:da:99:
8d:b8:8b:24:84:f1:d4:87:35:45:93:9f:10:79:2a:
cb:45:0f:47:b7:84:1e:fb:4a:a1:09:58:5b:b2:5b:
50:81:4b:1f:43:60:2a:91:f0:ef:e4:41:ae:df:7e:
b6:59:85:31:24:5b:fb:e1:12:00:78:f3:77:7e:13:
04:c7:26:84:96:95:a1:1b:37:c7:a0:86:20:b3:96:
1c:f7:f7:c7:83:00:b2:b7:dd:63:3a:d8:eb:af:bb:
13:35:aa:1b:34:70:a7:fc:f0:21:91:b1:b2:b4:bd:
21:a5:7d:e1:b2:87:6a:3e:64:c2:01:54:1a:ef:26:
61:6b:90:c2:8d:f2:d4:55:44:8e:71:1c:dd:d3:05:
d4:99:3e:c5:83:6e:58:d4:bd:57:f9:cd:30:b4:10:
2e:9d:c1:4d:4b:7d:59:6c:f8:fb:71:3e:0e:4e:ce:
be:1d:52:7a:0d:e5:e5:b4:6f:ee:5d:c7:73:2e:7d:
57:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:78:56:48:9F:64:32:6E:CD:D0:8F:4C:24:BA:3E:32:F3:C7:DD:48
X509v3 Authority Key Identifier:
keyid:6D:55:5E:6C:14:B9:4D:75:6D:93:A8:3A:50:2C:7F:15:77:F9:AF:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVVebBS5TXVtk6g6UCx_FXf5r0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/a32567-780f-4509-b710-97eaf9aa786f/1/tXhWSJ9kMm7N0I9MJLo-MvPH3Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/a32567-780f-4509-b710-97eaf9aa786f/1/bVVebBS5TXVtk6g6UCx_FXf5r0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.55.248.0/22
IPv6:
2a0c:ccc0::/29
Signature Algorithm: sha256WithRSAEncryption
a8:c9:f1:1a:34:34:09:a3:fe:34:e5:c6:4a:ac:65:73:a9:82:
96:d8:0b:6b:8a:c5:13:21:44:5b:f1:4a:d7:05:65:1a:f5:2c:
7f:b7:f2:09:2d:94:5c:14:be:b9:33:ab:85:ed:9a:69:49:dc:
fe:9e:b6:39:c4:ad:18:1f:65:82:25:38:b2:22:81:84:6c:57:
1b:1e:80:23:fc:cb:62:26:ff:7f:32:77:24:ac:4b:00:c1:25:
f9:25:16:ec:15:1e:40:eb:83:62:2b:8d:0c:b6:d2:0c:2e:ff:
ba:20:b9:08:f6:c6:2f:72:b3:37:a6:e5:3d:4c:ef:86:1f:0f:
f0:bf:f6:f1:23:93:1d:f2:7d:b9:27:f7:69:0b:39:ee:e8:2a:
a9:c4:c0:9c:c1:13:ba:cc:eb:b2:f0:04:af:ef:05:f3:69:1c:
8a:03:e3:ad:d5:85:9f:09:dd:79:7b:3a:51:61:93:1d:f8:59:
d0:d7:a6:a7:bb:58:65:9e:2d:05:49:af:0e:25:ed:78:e2:7c:
e7:ad:62:09:4e:ad:d7:c7:f0:cf:21:05:d3:f2:14:ef:29:1f:
c6:f3:3e:f5:96:c8:81:37:46:3d:f6:91:6c:d2:3e:0a:d1:8c:
17:53:f8:fa:e8:08:75:97:32:8f:6d:a5:1a:c6:e1:98:ea:be:
0f:49:e1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:31 2024 by rpki-client on console-ams.rpki-client.org