Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/52RaRY4eZg44WmKTOE98wWlQOR0.roa
File: 52RaRY4eZg44WmKTOE98wWlQOR0.roa (raw, json)
Hash identifier: ert3s0T5elYjZJGxItcckGYDx9LGpIUBCDud+vapByg=
Subject key identifier: E7:64:5A:45:8E:1E:66:0E:38:5A:62:93:38:4F:7C:C1:69:50:39:1D
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF8334742F256A91538C5226E28242
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/52RaRY4eZg44WmKTOE98wWlQOR0.roa
Signing time: Sun 01 Jan 2023 15:24:51 +0000
ROA not before: Sun 01 Jan 2023 15:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211655
IP address blocks: 192.102.225.0/24 maxlen: 24
2001:7f9::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:83:34:74:2f:25:6a:91:53:8c:52:26:e2:82:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7645a458e1e660e385a6293384f7cc16950391d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ca:13:19:d4:6c:53:e6:fb:34:1e:00:28:d3:
04:7a:15:5f:3f:17:2a:a2:ca:3f:16:34:6a:35:66:
13:4d:14:00:37:1a:b8:95:3c:d6:f1:49:95:85:d8:
36:ec:43:a6:03:16:6c:84:88:39:af:25:93:cd:ff:
54:bd:4f:0d:49:ac:9f:3a:9e:a1:06:59:81:aa:05:
08:4a:af:63:26:72:42:0a:7e:b5:bf:c5:a1:88:90:
28:b8:f0:f4:1e:4f:37:6c:e0:0f:f1:7c:f9:55:5d:
37:b8:e8:29:73:fe:bb:47:ae:7b:81:f6:7c:f4:f6:
79:56:21:99:ad:df:23:d9:61:81:2d:14:7c:66:e0:
5f:67:13:97:45:dd:7a:58:87:85:c6:9b:7c:6e:02:
f0:6e:b0:76:a5:fa:f1:c2:f3:3f:ec:ee:af:48:92:
4e:f8:28:fe:47:73:24:a8:bb:f0:12:36:6a:1f:30:
36:63:c6:ec:5c:48:71:b7:00:1b:7f:22:de:4d:2a:
42:8a:53:84:e6:25:2f:31:ee:e5:af:76:f9:ca:ca:
2a:5c:7c:13:37:c9:b9:a2:cf:4a:84:15:32:30:08:
8b:62:d5:f1:d6:27:52:9d:e2:cc:2e:40:da:98:0c:
c0:b1:c4:b2:60:c9:8f:86:7f:c5:b3:a5:91:ed:23:
d8:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:64:5A:45:8E:1E:66:0E:38:5A:62:93:38:4F:7C:C1:69:50:39:1D
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/52RaRY4eZg44WmKTOE98wWlQOR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.102.225.0/24
IPv6:
2001:7f9::/48
Signature Algorithm: sha256WithRSAEncryption
77:f2:bd:37:36:a2:bb:df:18:e5:6f:ca:0e:b7:dc:3f:97:8a:
fb:20:57:a6:e0:d5:4f:0f:63:18:48:ea:60:3b:89:10:7a:dd:
db:49:ac:4f:a0:4d:04:61:f2:71:02:77:24:ea:5a:61:69:6d:
45:eb:cb:e8:7e:14:81:3c:b2:34:e5:25:a8:f9:c0:1d:ec:82:
6b:c4:a5:6b:35:ef:d5:18:9f:37:39:e9:5e:cf:e8:3d:83:8f:
ef:de:02:5d:cb:e5:cd:39:79:3d:9e:a2:57:e2:62:21:b7:7a:
11:4b:41:15:4a:bc:25:3c:3d:7d:81:87:e8:4e:46:8e:bd:a1:
20:ae:74:13:18:ca:bd:d3:b0:fd:30:b4:34:0e:96:0c:d4:a0:
95:b4:ac:50:e9:af:22:a5:20:fb:6f:0f:6a:ee:28:bd:70:3b:
06:e1:97:50:6b:39:22:2c:09:b6:0d:a9:69:54:5c:23:f4:3d:
a7:36:b1:e0:45:a3:fd:82:de:30:89:86:41:80:8c:5e:d9:77:
33:fa:3d:41:04:d8:69:c4:a5:54:bd:5b:b8:01:58:65:f4:b3:
b3:d1:0a:85:b7:e9:47:30:9d:b0:cb:81:43:ba:01:b4:ea:c8:
5a:54:7a:41:c0:be:d2:e3:45:85:da:6c:f5:a9:ad:78:45:f9:
25:bc:8b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org