Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/x1o8LpDjE63INWO2sJIr1eFNLNM.roa
File: x1o8LpDjE63INWO2sJIr1eFNLNM.roa (raw, json)
Hash identifier: p15AXG9p6+OEm1I1BdKlOLBu3+VvCOQRuC6KNlMX/Kw=
Subject key identifier: C7:5A:3C:2E:90:E3:13:AD:C8:35:63:B6:B0:92:2B:D5:E1:4D:2C:D3
Certificate issuer: /CN=3b9a251e5d1d3babe4c579c91eb3e0ac37f7bf2a
Certificate serial: 01856FA70757D199F386C40E9C2C64A68275
Authority key identifier: 3B:9A:25:1E:5D:1D:3B:AB:E4:C5:79:C9:1E:B3:E0:AC:37:F7:BF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5olHl0dO6vkxXnJHrPgrDf3vyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/x1o8LpDjE63INWO2sJIr1eFNLNM.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205020
IP address blocks: 94.142.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:07:57:d1:99:f3:86:c4:0e:9c:2c:64:a6:82:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b9a251e5d1d3babe4c579c91eb3e0ac37f7bf2a
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c75a3c2e90e313adc83563b6b0922bd5e14d2cd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:60:aa:13:57:d6:dd:18:b0:bf:b1:85:75:22:
42:0d:9f:e1:dd:bf:9d:61:75:52:f9:94:e2:b1:ef:
3e:58:04:16:d1:7a:4d:24:02:f6:34:54:f9:32:e7:
b5:42:a9:b2:00:6a:06:9e:83:06:ef:56:a9:0a:94:
fc:d2:27:d1:37:56:50:1d:67:ba:48:5f:7c:73:66:
47:7c:eb:fa:99:7b:ea:e2:ae:cc:e2:f6:be:08:7a:
bf:a0:b1:b7:2c:64:22:83:4d:01:5d:8a:69:ef:c5:
ec:9e:fd:98:dd:16:12:e6:15:d4:b0:ae:89:50:07:
33:63:5d:db:db:5b:01:e8:08:b5:9f:84:60:db:61:
32:55:da:36:83:44:92:e8:4d:38:19:3f:72:0c:65:
3d:42:6f:d7:63:d1:63:71:e6:22:aa:06:e6:54:a3:
a6:03:c0:e4:23:b0:24:f8:7b:2e:d2:cb:b1:9a:59:
d1:bd:85:cd:dd:2c:5b:7e:d6:9b:2a:08:a1:12:d9:
ae:45:37:fc:6d:0f:9f:7d:dc:2c:d4:45:3f:86:c6:
62:ed:08:e9:e0:fc:77:ef:75:5a:0b:98:15:4d:1a:
ea:e3:f3:32:d3:60:ef:26:7e:41:d9:ba:f6:d1:bd:
24:f0:95:42:26:0c:58:bf:43:62:c7:e2:6e:71:5b:
90:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5A:3C:2E:90:E3:13:AD:C8:35:63:B6:B0:92:2B:D5:E1:4D:2C:D3
X509v3 Authority Key Identifier:
keyid:3B:9A:25:1E:5D:1D:3B:AB:E4:C5:79:C9:1E:B3:E0:AC:37:F7:BF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5olHl0dO6vkxXnJHrPgrDf3vyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/x1o8LpDjE63INWO2sJIr1eFNLNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/O5olHl0dO6vkxXnJHrPgrDf3vyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.252.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:1e:54:c1:38:01:3a:48:25:4a:48:74:28:7d:07:2e:f9:c0:
1d:20:89:59:54:3d:15:75:aa:5c:99:90:bf:e4:fc:c4:00:2f:
a4:10:56:0e:ea:ec:c2:f5:c4:62:ce:15:af:83:39:99:ef:ab:
23:47:75:8a:eb:d8:ba:7a:98:51:52:89:67:01:14:51:b9:07:
7c:f3:c8:59:0e:6d:ef:fb:b8:f6:58:b5:6b:1e:5e:e7:85:26:
ef:4b:ca:38:e1:be:ce:8a:d1:43:bc:e0:a0:c5:0c:cd:dd:c5:
a5:8c:45:f3:20:59:42:02:be:e4:35:2c:e8:39:02:c5:77:33:
d2:83:a9:0e:d1:1f:b4:e0:f1:ee:c9:a4:ca:b7:67:97:aa:bc:
d2:49:45:4a:04:06:21:23:62:2d:b1:56:90:58:de:c9:0c:c8:
d0:3b:97:80:1c:2a:54:19:4d:83:1d:70:61:83:5d:59:cc:c8:
f6:0f:bf:7c:a5:c7:6e:ed:ae:b8:27:97:dd:ec:b5:48:6b:5d:
cc:84:55:63:c7:d7:15:e3:dd:2a:ad:90:5d:56:10:24:87:f4:
00:6a:ff:e0:42:00:7d:c8:bf:fd:1c:f8:0c:8d:14:79:5a:bd:
be:73:8c:81:d9:c6:7a:a4:e2:0a:8f:d4:b7:54:57:ce:63:0c:
13:4e:c6:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org