Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/WhjMPRgSJ2fKPHCxTfbCIXNVabQ.roa
File: WhjMPRgSJ2fKPHCxTfbCIXNVabQ.roa (raw, json)
Hash identifier: +AordILUct+GEPFn4aYO2dzVoV/7bIUUwtVviyNy+aM=
Subject key identifier: 5A:18:CC:3D:18:12:27:67:CA:3C:70:B1:4D:F6:C2:21:73:55:69:B4
Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial: 01856E38A4A197132DCFD0579C1BDFC9772A
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/WhjMPRgSJ2fKPHCxTfbCIXNVabQ.roa
Signing time: Sun 01 Jan 2023 16:44:43 +0000
ROA not before: Sun 01 Jan 2023 16:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208971
IP address blocks: 194.183.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:a4:a1:97:13:2d:cf:d0:57:9c:1b:df:c9:77:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
Validity
Not Before: Jan 1 16:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a18cc3d18122767ca3c70b14df6c221735569b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:55:ee:61:c9:1e:7a:75:fc:d8:17:6c:ba:f9:
bc:38:52:73:f6:b3:51:6f:1d:1d:b9:48:29:df:de:
01:27:76:50:67:81:69:77:f1:22:e8:19:8b:d2:dc:
d7:f7:2d:ad:a7:60:bb:3c:a0:ea:41:1a:2d:42:26:
5e:30:40:72:3e:8d:61:ae:d0:31:48:e0:18:99:1a:
fe:12:69:bb:65:db:bc:7b:c5:15:cb:ca:fa:66:06:
a9:e7:25:c8:85:6a:3a:27:3b:d7:54:89:2b:84:b5:
49:bf:cf:ed:74:3e:fe:68:97:ef:c1:1b:eb:23:79:
02:8a:bf:80:66:9a:4e:16:c0:63:a6:95:3d:b1:8c:
52:3e:63:72:f4:7e:97:3b:dc:90:b1:d8:45:8d:d3:
d5:36:f4:73:74:c6:e8:68:3f:34:56:01:5d:5c:ea:
1b:77:10:5d:83:4d:bd:c1:ca:15:71:e6:2d:18:e2:
11:b3:68:3b:2f:0c:b0:9a:03:4f:e2:d2:58:fb:fd:
0f:5a:14:ce:38:43:21:3a:87:b1:c1:d9:11:2c:0d:
8d:87:35:b3:b6:51:23:e6:2b:b8:de:67:62:ef:f7:
bb:c5:31:30:c0:86:0b:d0:7f:bc:5c:a4:ba:a1:51:
e7:59:75:f8:a7:0e:60:b0:7b:fa:5b:ac:fc:f0:6f:
38:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:18:CC:3D:18:12:27:67:CA:3C:70:B1:4D:F6:C2:21:73:55:69:B4
X509v3 Authority Key Identifier:
keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/WhjMPRgSJ2fKPHCxTfbCIXNVabQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.162.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:a8:08:d5:ac:87:2a:3b:c9:95:12:05:cb:23:df:54:94:15:
bf:e3:5a:a8:64:83:e4:be:14:50:18:09:58:7c:49:14:19:dc:
0d:60:67:9f:0c:b7:be:4a:24:cb:27:d9:47:98:65:28:d1:83:
94:df:50:76:08:48:27:d7:bd:2c:0e:03:77:04:b6:6a:e1:27:
8c:7c:b5:fd:b3:98:91:ae:56:fc:ee:73:b0:0f:cc:f3:81:2b:
49:5c:8b:38:94:86:7f:74:ed:49:83:76:8c:b0:a7:ef:c6:f2:
c2:a4:d0:8d:fc:85:1b:bd:11:86:9b:17:7f:f1:5c:41:46:2f:
a9:f4:9b:03:4d:ed:9b:6d:6e:29:57:54:29:56:2f:95:4c:2f:
6c:e6:45:fe:fc:92:bd:2e:32:a5:ad:18:3f:e2:aa:8f:dd:7b:
e3:16:c9:0f:7d:06:87:6a:70:3d:11:57:de:0b:47:a8:a4:7a:
c7:f4:0a:9b:90:6b:fc:37:6d:99:30:51:1f:9f:d2:10:37:b1:
51:e1:b9:ca:cb:ca:bc:f0:e4:ae:e4:c0:e0:3d:70:be:23:4d:
21:57:19:79:2f:6f:6f:1b:37:b4:e6:e8:8e:ab:f0:22:40:f5:
4f:4c:bf:52:0c:68:13:53:e7:1b:0c:47:cb:7f:46:c7:5c:8f:
1c:30:d8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:36 2024 by rpki-client on console-ams.rpki-client.org