Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1--o4ZCOMz5ngSMxXCXMYKhpnJhc.roa
File: 1--o4ZCOMz5ngSMxXCXMYKhpnJhc.roa (raw, json)
Hash identifier: /2cexdXaCGexwCBfuaLXNE8t5/GC9o/tVWRQmvUTLAA=
Subject key identifier: FB:EA:38:64:23:8C:CF:99:E0:48:CC:57:09:73:18:2A:1A:67:26:17
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018616CD295735BCBC276CC376F8D4FE8F59
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1--o4ZCOMz5ngSMxXCXMYKhpnJhc.roa
Signing time: Fri 03 Feb 2023 10:23:09 +0000
ROA not before: Fri 03 Feb 2023 10:23:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200063
IP address blocks: 194.15.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:16:cd:29:57:35:bc:bc:27:6c:c3:76:f8:d4:fe:8f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Feb 3 10:23:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fbea3864238ccf99e048cc570973182a1a672617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0a:48:84:02:80:e0:89:29:40:ac:1e:75:14:
1b:87:42:9d:0f:20:d8:5b:61:14:98:08:35:0e:51:
c9:d7:48:a2:f5:58:ce:0f:03:30:e8:5e:c3:69:e4:
6e:10:8d:0a:c7:5a:7f:a1:97:2f:c7:fa:59:42:9e:
a4:40:73:4c:d3:35:44:5a:b8:d5:8a:99:d5:e2:f8:
70:e8:d9:18:37:81:16:3e:10:dc:69:67:90:52:c3:
10:5a:a5:79:28:40:c5:07:d9:4b:ae:9a:2c:70:c0:
8d:bb:60:0d:55:ce:44:43:0d:bd:ba:3e:09:8c:57:
f8:52:16:95:45:87:93:0b:2a:d2:14:59:4f:71:53:
f0:56:7e:79:c0:01:4e:07:45:d4:06:0d:2f:48:c3:
c5:80:c8:60:4e:10:b7:f3:e1:a5:e5:9a:be:e4:22:
79:14:4a:c2:17:83:6b:bd:f1:ca:5b:e5:8e:c3:d9:
f0:f7:ac:5f:1b:df:80:9d:0c:35:63:d5:1c:b2:bb:
22:c5:e3:8e:39:cd:c7:78:bf:51:ce:06:b9:4b:ba:
00:3f:28:1f:33:cd:d5:09:3c:40:7f:41:f9:c6:f0:
5f:bf:a2:3e:c4:51:50:f9:7a:93:66:25:93:b1:4c:
35:d2:a8:45:11:0a:aa:4f:c9:18:f6:99:b0:9d:c7:
e4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:EA:38:64:23:8C:CF:99:E0:48:CC:57:09:73:18:2A:1A:67:26:17
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/1--o4ZCOMz5ngSMxXCXMYKhpnJhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.53.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7d:ef:46:70:6e:34:89:4f:80:fc:fa:81:08:92:12:e7:9c:
8a:ec:c9:ac:52:df:58:11:e1:cf:da:c9:2d:a6:97:5d:1f:3b:
04:ee:cf:28:03:50:1d:58:51:5c:5a:ba:16:65:6f:ab:84:17:
7c:92:69:a9:14:0e:85:f7:03:1b:56:8e:2e:43:84:08:f7:6d:
e7:fc:1e:68:0f:5d:c1:6a:df:5d:16:b8:05:33:3e:27:ae:31:
d6:74:65:c1:fe:e2:2d:ef:55:11:ee:f2:90:54:a2:72:05:ef:
94:23:9d:09:4c:0f:51:26:c5:47:c0:00:eb:76:ea:eb:7c:3e:
59:a9:3b:7e:1a:13:ca:9e:96:ed:62:b0:45:ac:df:f7:23:5d:
d9:4f:70:e1:57:49:fd:26:72:56:48:31:85:c2:6f:65:dc:1f:
59:ce:f5:34:8d:07:48:77:ca:ee:79:bb:04:bf:7b:52:f7:78:
ea:51:13:c6:c8:e7:58:d9:ff:6a:12:ad:52:02:d9:22:d2:e7:
b1:15:bc:15:29:af:46:81:05:92:fe:d9:d2:b5:a4:bb:69:db:
80:eb:55:04:a3:01:3f:6e:99:31:ac:2a:af:61:f7:b2:82:1d:
06:41:93:36:b6:11:ba:2c:ee:16:bf:90:21:32:f9:c3:99:94:
58:d8:09:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org