Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/eRTwaTx8fjvQvIY0wAJFMK9EGDo.roa
File: eRTwaTx8fjvQvIY0wAJFMK9EGDo.roa (raw, json)
Hash identifier: GwCgGtJeAS2/ulngJQsJ/1cuGqqTnB2Qe7Iw54l98i8=
Subject key identifier: 79:14:F0:69:3C:7C:7E:3B:D0:BC:86:34:C0:02:45:30:AF:44:18:3A
Certificate issuer: /CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Certificate serial: 01856FDDCCEF97456C5963D04434EA1C6B12
Authority key identifier: 92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/eRTwaTx8fjvQvIY0wAJFMK9EGDo.roa
Signing time: Mon 02 Jan 2023 00:24:44 +0000
ROA not before: Mon 02 Jan 2023 00:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43805
IP address blocks: 194.107.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:cc:ef:97:45:6c:59:63:d0:44:34:ea:1c:6b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Validity
Not Before: Jan 2 00:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7914f0693c7c7e3bd0bc8634c0024530af44183a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:7d:21:69:55:81:f2:d9:74:03:3a:c9:42:81:
20:02:fd:13:1a:92:4a:e9:fd:c8:10:73:ce:58:eb:
d0:e8:75:cf:7f:bf:4d:2c:93:ea:1d:7f:26:c1:94:
96:02:49:81:99:fa:03:4b:0c:ca:bb:a4:a7:32:91:
f7:e6:fa:cd:25:43:c4:fc:69:e5:2f:e5:1d:76:c4:
4c:24:4c:c4:24:37:eb:c0:2e:25:03:f7:7b:35:5c:
28:5b:ac:53:31:52:2b:40:8f:b1:10:76:71:01:c4:
a3:f2:2c:86:7a:50:b3:08:17:7b:a8:82:9d:ef:86:
8b:79:95:e7:5a:0b:58:61:cb:12:fe:94:93:12:89:
58:7e:51:d9:0f:9b:92:4c:50:24:42:0c:e4:7a:59:
f8:8f:07:27:38:9a:34:fb:e6:11:fa:ab:fa:5b:ff:
09:07:28:ce:f5:b6:79:aa:46:7b:e5:37:a1:09:94:
c8:25:ad:5f:3d:b5:de:37:22:33:08:02:4b:f7:b2:
8e:ea:56:43:bb:2c:28:ba:9b:45:8f:13:00:f6:c1:
36:8e:f7:65:78:fa:a0:f7:44:c4:8d:a2:c4:9d:b3:
9b:01:5e:84:98:55:3e:b7:2f:e9:c0:2a:6b:fa:99:
44:04:aa:47:2a:df:a2:80:bc:61:38:f1:68:1b:cd:
79:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:14:F0:69:3C:7C:7E:3B:D0:BC:86:34:C0:02:45:30:AF:44:18:3A
X509v3 Authority Key Identifier:
keyid:92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/eRTwaTx8fjvQvIY0wAJFMK9EGDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.23.0/24
Signature Algorithm: sha256WithRSAEncryption
57:93:fd:aa:3e:b5:4d:e6:56:81:4a:cc:b0:ee:5b:8f:b6:b0:
12:25:4d:ef:b4:e0:30:23:1c:e4:0a:e5:48:f0:f9:f5:aa:7a:
30:e9:ae:fb:d1:2d:71:f8:72:d0:ba:36:5c:14:49:0f:95:32:
68:8b:86:84:7e:63:30:9b:91:ed:ed:b5:c9:26:e8:01:bf:ac:
8e:19:93:28:b7:c7:ae:fe:e1:2b:e1:ec:ef:0a:42:bf:4a:75:
80:10:c3:38:bb:10:4c:da:4d:10:3c:4d:c7:b5:86:aa:8b:04:
2d:35:88:56:f2:c7:86:ee:6f:c7:ff:d7:72:dd:65:fe:4e:2d:
75:1a:76:03:c6:65:da:70:f1:36:7b:46:b9:d0:93:b3:59:af:
94:6c:63:bf:73:5e:23:16:e1:39:77:9b:59:d7:15:55:6e:a4:
72:78:a2:9f:9d:c9:09:43:9d:db:c9:a9:e2:77:76:6b:99:ef:
ef:32:41:91:34:ff:c8:8b:96:30:51:b6:de:cd:45:9e:24:65:
9c:fc:e6:3b:33:32:7f:c5:24:00:88:58:a4:25:ed:12:5e:e6:
39:7f:94:8c:ca:7a:69:6f:9d:1d:e4:89:48:25:9a:fd:a2:1d:
ee:9e:ed:dc:c7:15:e0:33:ce:65:10:d4:ff:56:66:f4:82:65:
89:95:ac:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org