Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/rwNvm_q9qKbZEO-2tNpIKwEblvI.roa
File: rwNvm_q9qKbZEO-2tNpIKwEblvI.roa (raw, json)
Hash identifier: 8sOzqxFAWSWGSf+D+X1NX0wzCmk0SRyogrGslIXKPF8=
Subject key identifier: AF:03:6F:9B:FA:BD:A8:A6:D9:10:EF:B6:B4:DA:48:2B:01:1B:96:F2
Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial: 01856E38A2296B34DB26146A7AEDD5B3331C
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/rwNvm_q9qKbZEO-2tNpIKwEblvI.roa
Signing time: Sun 01 Jan 2023 16:44:43 +0000
ROA not before: Sun 01 Jan 2023 16:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60298
IP address blocks: 194.183.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:38:a2:29:6b:34:db:26:14:6a:7a:ed:d5:b3:33:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
Validity
Not Before: Jan 1 16:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af036f9bfabda8a6d910efb6b4da482b011b96f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:87:67:49:b8:43:e6:8a:f6:28:fd:0c:14:7b:
03:51:20:3d:66:7f:2b:fa:d5:5d:d8:4d:ad:bc:97:
d3:39:ee:e8:a7:3c:e8:c4:81:51:6b:9a:d7:c3:5d:
28:fe:f7:4f:a6:db:f1:cd:8c:09:93:52:2c:a4:2d:
83:b2:78:d3:8b:e9:6d:1a:cc:48:37:51:e4:d4:35:
c6:2f:35:9b:24:b6:38:2f:0b:18:57:00:70:2a:f1:
f9:c1:42:75:f2:e1:e0:51:6c:b2:dd:b9:6b:59:1b:
0e:ad:5a:db:93:43:3b:72:17:5e:1e:fd:dd:cc:39:
e9:f1:f5:96:1c:54:58:02:c8:2c:5e:db:33:da:65:
a8:8b:10:e3:78:c8:58:d2:ff:69:ea:79:1e:83:7e:
10:47:a4:5a:81:51:8c:c0:77:36:f9:a4:0f:78:3e:
5d:cd:1c:14:d7:13:52:0c:53:55:5e:d7:9a:94:9d:
8b:c3:da:c1:39:13:e2:a0:e1:ad:86:f1:c1:5f:29:
9a:04:3d:79:b7:20:cd:ea:ca:a1:b8:e2:d9:a0:fd:
45:5f:e9:dd:ce:45:4e:13:7d:e3:e4:26:78:e3:9f:
e7:e6:07:e2:8b:4c:41:88:53:a1:0f:9c:8d:13:4d:
c8:87:07:01:ee:90:7f:2b:74:65:05:65:f9:a3:e8:
03:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:03:6F:9B:FA:BD:A8:A6:D9:10:EF:B6:B4:DA:48:2B:01:1B:96:F2
X509v3 Authority Key Identifier:
keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/rwNvm_q9qKbZEO-2tNpIKwEblvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.190.0/24
Signature Algorithm: sha256WithRSAEncryption
be:09:4d:e8:94:b9:cd:34:83:cb:ac:68:4f:b6:6c:c5:93:fc:
98:c4:33:f4:bb:9b:30:e9:00:f3:ca:6a:6a:e8:86:ce:6f:b7:
64:27:8d:c8:4e:97:20:31:b0:12:17:a9:9d:c8:c8:b1:56:e0:
e5:c8:83:1f:c5:9f:1c:cb:30:d4:5d:1b:ad:ee:e2:4f:a8:86:
1a:e2:ec:ad:6e:30:2d:9b:cd:e6:1c:5d:f1:bd:16:7f:b8:94:
e8:48:73:14:db:8c:d7:a1:86:14:eb:34:98:7a:55:eb:39:50:
52:54:2c:81:2c:f3:16:dd:dc:75:67:8c:69:d4:da:8d:80:73:
86:87:f7:33:94:5e:94:70:e0:23:2a:ad:fb:51:e3:54:8e:e5:
2e:ec:6a:2d:e6:01:03:5c:1a:e2:a2:62:ad:eb:bb:13:42:88:
1f:5e:a1:c0:de:7a:6b:2a:bb:e0:de:1a:b9:6e:18:b6:41:68:
04:a5:96:63:0b:a3:8d:d0:cd:68:15:6f:ee:4c:9e:19:0d:e4:
d4:60:78:48:8b:57:4a:34:07:72:00:74:f7:3b:6d:0e:78:cc:
d6:53:fc:62:a5:7b:ff:06:02:5d:f3:94:c7:24:54:ef:07:1f:
1d:b3:59:ef:5b:46:24:b5:07:f3:0d:be:d6:6f:59:83:47:c3:
42:c2:ec:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:35 2024 by rpki-client on console-fra.rpki-client.org