Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/l1aILdh7SfP3P2eAmwBklkbh-s0.roa
File: l1aILdh7SfP3P2eAmwBklkbh-s0.roa (raw, json)
Hash identifier: txlcM3dWzZjXHqGbEuR48zW03rKSfexPpPW+LwKqfGE=
Subject key identifier: 97:56:88:2D:D8:7B:49:F3:F7:3F:67:80:9B:00:64:96:46:E1:FA:CD
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C910736BFA1DF91D3B881AEA3A7824BB6
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/l1aILdh7SfP3P2eAmwBklkbh-s0.roa
Signing time: Fri 22 Dec 2023 10:16:58 +0000
ROA not before: Fri 22 Dec 2023 10:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198584
IP address blocks: 194.120.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:07:36:bf:a1:df:91:d3:b8:81:ae:a3:a7:82:4b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 22 10:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9756882dd87b49f3f73f67809b00649646e1facd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:68:1c:55:8b:bd:a3:09:91:6d:84:65:59:c3:
e0:98:d5:5e:db:2c:2d:f3:3e:3f:18:83:5b:f2:08:
28:84:1f:a8:34:20:54:df:4f:a2:e2:f7:12:06:29:
fc:68:38:7d:9d:cb:bc:f1:a6:5e:6e:cb:6e:f6:67:
7e:1a:58:d2:bd:15:a6:0a:2c:30:6b:62:b5:d6:21:
08:dd:46:d0:14:8e:06:58:bd:3b:74:07:52:d9:a2:
d5:df:84:ff:f2:b6:0f:96:5b:f9:eb:74:64:3a:79:
12:e2:a1:21:01:c2:2c:2a:3e:03:50:7e:3a:78:cf:
33:55:7f:70:1e:3a:f5:2a:db:09:e5:ff:36:c5:44:
3c:35:c3:99:a6:72:81:f0:8a:18:8a:5e:fc:c4:2d:
16:e9:07:82:c7:a3:38:eb:a1:6a:ad:b1:34:21:f5:
6f:ac:b6:d9:cf:d7:c8:17:ce:6b:12:e0:25:8c:2a:
ec:ba:43:8a:69:5e:f6:6c:82:aa:81:5e:1d:fa:fb:
25:74:3b:06:28:2a:2e:13:41:f8:5f:3b:f7:97:16:
f3:5d:d3:70:f4:e3:15:2d:55:39:29:87:f8:78:6e:
96:e9:4c:ae:bc:85:90:79:91:f8:c6:95:9a:3d:b9:
a8:b5:3a:8d:a3:df:29:5d:f4:6b:a4:3f:64:d6:dd:
83:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:56:88:2D:D8:7B:49:F3:F7:3F:67:80:9B:00:64:96:46:E1:FA:CD
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/l1aILdh7SfP3P2eAmwBklkbh-s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.230.0/24
Signature Algorithm: sha256WithRSAEncryption
88:69:fa:8e:27:55:21:7a:3b:dd:a6:93:25:40:fb:2d:7c:fc:
a9:40:92:26:7a:a3:48:ec:87:bd:f5:0a:fb:6b:e0:ac:aa:97:
9f:eb:7f:7c:aa:28:0d:61:84:6b:0e:21:16:13:ad:d2:30:a8:
52:bf:f0:4b:cf:5e:8f:c4:46:be:49:eb:94:e5:06:a4:4d:dc:
17:99:3d:3a:6f:20:d1:ca:04:61:da:70:d2:d1:21:f0:93:b6:
0b:c6:9a:87:7a:bd:e0:b2:0c:02:fc:82:92:4f:78:cf:de:22:
9c:dc:ac:ed:be:a2:02:cf:4d:ca:d1:06:3d:58:1c:90:4f:bc:
05:0d:54:70:3a:1b:36:bf:af:9b:1f:ff:51:46:95:16:1c:4e:
37:5d:85:91:51:f2:fc:b0:02:03:8c:e7:8b:81:ae:b1:6e:8b:
ca:1a:2f:91:88:fe:3c:7a:4f:3f:1f:cc:d6:3f:34:90:da:e2:
90:cf:cc:ce:5e:5c:5a:2d:ed:42:8a:c5:cc:0e:ba:69:03:20:
42:05:4d:3b:13:1e:ef:7a:a3:19:04:ce:53:7a:05:87:91:e7:
f1:42:be:0b:f8:3f:95:4d:a8:d3:e4:12:c9:42:fd:bf:50:30:
ff:ac:af:b6:0e:40:cc:6b:46:08:ca:8d:e5:a7:3d:7b:be:2b:
34:14:8d:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org