Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/y3QvnvC4yCY1aarKPF0eCu4CWf0.roa
File: y3QvnvC4yCY1aarKPF0eCu4CWf0.roa (raw, json)
Hash identifier: oGZQDHFgEdVvIppMlO+zYR+HYcTYGAf2nmhcf1xOCrU=
Subject key identifier: CB:74:2F:9E:F0:B8:C8:26:35:69:AA:CA:3C:5D:1E:0A:EE:02:59:FD
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF7BD1F9488E09EF6C131430D48267
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/y3QvnvC4yCY1aarKPF0eCu4CWf0.roa
Signing time: Sun 01 Jan 2023 15:24:49 +0000
ROA not before: Sun 01 Jan 2023 15:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202600
IP address blocks: 194.181.43.0/24 maxlen: 24
194.181.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:7b:d1:f9:48:8e:09:ef:6c:13:14:30:d4:82:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb742f9ef0b8c8263569aaca3c5d1e0aee0259fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c6:14:58:91:a1:7b:c7:71:28:ac:c5:ff:e2:
87:6d:05:4d:28:2c:8b:5f:5d:e3:de:f9:ed:34:c0:
e6:98:f5:6f:84:7d:c8:e5:1c:9b:c7:65:c3:06:65:
91:01:48:1c:78:43:13:f8:20:68:4c:8e:da:57:7f:
f8:c5:3a:26:4c:89:28:47:5d:4b:cb:fc:1f:23:c8:
f6:99:bb:7d:5c:93:14:72:26:91:68:93:80:76:2f:
da:f5:9c:21:4a:44:4b:a6:7b:ea:18:c2:86:ce:49:
98:89:dc:a8:94:f8:24:6c:36:d0:2a:8c:d4:25:bd:
14:dd:7c:f1:b4:4e:92:46:c6:f7:1b:ac:06:a6:eb:
8c:c9:3c:50:44:ce:da:97:88:54:f3:ba:c7:64:71:
e9:99:01:8f:0d:97:36:20:70:ef:e8:6c:71:36:d5:
ac:ee:e0:1b:cb:f2:5e:cf:9c:d2:e8:dd:62:8a:88:
fc:8c:0c:d7:cb:5e:37:25:9d:5b:ca:71:9e:fe:a9:
3e:58:e2:38:06:d6:1b:dc:56:cf:ac:ae:c0:4f:3a:
1f:ba:56:a9:8a:c4:29:26:18:c1:45:f6:23:98:8e:
91:8d:8c:2c:30:7f:c1:fe:c3:57:0c:d6:97:88:2f:
11:bc:ba:fb:9b:b2:a7:4c:43:19:80:17:0f:61:31:
17:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:74:2F:9E:F0:B8:C8:26:35:69:AA:CA:3C:5D:1E:0A:EE:02:59:FD
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/y3QvnvC4yCY1aarKPF0eCu4CWf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.43.0-194.181.44.255
Signature Algorithm: sha256WithRSAEncryption
39:e0:d7:1f:f4:11:9c:bb:c4:82:ce:64:70:86:f2:12:06:66:
d0:a5:ce:75:3e:ef:ec:75:35:20:cb:fd:5e:b2:67:71:e8:a0:
31:82:6e:21:85:b7:d6:10:d6:db:f9:e2:b5:8e:38:55:43:82:
38:e2:64:35:d0:73:7a:3f:de:86:89:87:76:04:55:6f:e1:ce:
f1:eb:d8:6a:00:31:73:33:ca:e5:ce:26:c3:9e:0d:47:dd:b2:
36:50:f4:44:6e:13:a9:e8:d6:82:13:39:7d:46:42:fc:95:ac:
a4:14:be:a8:7d:c1:c7:27:1d:8c:42:49:3c:f1:b2:ff:3c:56:
14:b5:4b:2e:12:6d:c1:36:7f:63:c0:c2:3d:c4:29:50:9c:1b:
ef:86:72:35:a2:25:b8:02:82:8e:94:80:eb:3b:40:ad:ae:8c:
74:4a:ee:14:00:13:65:2d:16:ee:71:b4:e3:d4:aa:bf:8e:7e:
a9:97:2f:aa:14:61:2b:8b:e6:4d:48:89:e1:6e:d1:39:33:4d:
16:ad:56:0d:3f:c8:93:87:29:6f:70:57:d1:7a:d7:99:94:0c:
90:89:7e:4a:65:a2:2c:f1:cd:d5:c9:23:81:62:a5:1e:e6:bd:
60:0e:9a:a5:19:86:5f:5a:b8:ac:3a:e6:c8:8e:b1:4a:e3:07:
b6:52:71:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org