Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/9bcada-d955-4f2a-9254-f9ec566686b9/1/szxEjxelsnzDb9Up3XlAKkqHMvY.roa
File: szxEjxelsnzDb9Up3XlAKkqHMvY.roa (raw, json)
Hash identifier: I42WKrPKBi27KbQJq+9ubMWiza6BUlFb53A6+4j1q4s=
Subject key identifier: B3:3C:44:8F:17:A5:B2:7C:C3:6F:D5:29:DD:79:40:2A:4A:87:32:F6
Certificate issuer: /CN=c3181a923e9ac3c005eb4c73edc7a1e8325a5b1e
Certificate serial: 01912E5BF72A48EF48C5456F53D5F8ACF3D4
Authority key identifier: C3:18:1A:92:3E:9A:C3:C0:05:EB:4C:73:ED:C7:A1:E8:32:5A:5B:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wxgakj6aw8AF60xz7ceh6DJaWx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/9bcada-d955-4f2a-9254-f9ec566686b9/1/szxEjxelsnzDb9Up3XlAKkqHMvY.roa
Signing time: Wed 07 Aug 2024 19:41:04 +0000
ROA not before: Wed 07 Aug 2024 19:41:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 94.101.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 22:17:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:2e:5b:f7:2a:48:ef:48:c5:45:6f:53:d5:f8:ac:f3:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3181a923e9ac3c005eb4c73edc7a1e8325a5b1e
Validity
Not Before: Aug 7 19:41:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b33c448f17a5b27cc36fd529dd79402a4a8732f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:91:89:dc:77:e5:17:2b:64:f2:54:da:c5:6d:
66:99:80:b3:30:37:66:30:35:cc:ca:87:64:01:73:
41:ce:ab:6b:60:97:bf:59:f8:9a:38:60:7b:0a:8c:
ea:62:f7:25:2a:4a:06:ae:60:9d:1d:34:8e:fe:0e:
ae:8e:78:03:a7:7d:04:74:98:c1:0a:99:d5:e1:c6:
08:03:08:50:36:21:d3:7a:ec:87:08:a4:04:a3:3f:
a0:16:18:5e:6f:72:d6:fb:c7:22:d7:86:70:b8:3a:
7c:35:4b:ee:9d:07:7f:13:a8:3e:48:c7:2b:29:05:
a5:8e:70:cc:aa:b1:1a:37:61:aa:a6:e5:1a:e8:b4:
97:bd:3f:fb:1d:67:93:ab:49:9f:e0:9f:f5:42:46:
11:0f:01:68:0a:4b:90:89:e3:2b:b0:9a:4f:ed:2a:
00:17:b6:cc:ae:66:1f:bd:7c:b2:a2:20:e1:2f:30:
c5:40:3d:6e:96:53:65:c6:86:91:8d:32:64:0d:2d:
38:31:1b:13:eb:55:03:b8:29:53:5d:7d:ca:b1:5f:
13:fa:8e:2e:bf:b1:50:77:4b:6a:c6:b3:3c:ec:f9:
c0:ba:4e:92:1c:9c:fa:28:86:a1:5d:87:34:3f:ed:
82:2b:fe:92:fb:84:82:e7:46:73:cf:8f:2a:cc:05:
6e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3C:44:8F:17:A5:B2:7C:C3:6F:D5:29:DD:79:40:2A:4A:87:32:F6
X509v3 Authority Key Identifier:
keyid:C3:18:1A:92:3E:9A:C3:C0:05:EB:4C:73:ED:C7:A1:E8:32:5A:5B:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wxgakj6aw8AF60xz7ceh6DJaWx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/9bcada-d955-4f2a-9254-f9ec566686b9/1/szxEjxelsnzDb9Up3XlAKkqHMvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/9bcada-d955-4f2a-9254-f9ec566686b9/1/wxgakj6aw8AF60xz7ceh6DJaWx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.101.106.0/24
Signature Algorithm: sha256WithRSAEncryption
28:18:92:5c:9c:d1:60:d9:56:c7:fe:ac:27:8e:02:7d:0a:83:
b4:8d:59:a3:45:80:cd:c9:2c:37:0e:6b:ea:eb:28:7f:4b:33:
a6:7a:95:9a:40:70:3d:61:5b:27:3b:77:ce:cd:64:87:9c:48:
56:63:2d:ab:26:80:1b:ae:b5:47:62:7e:32:7d:16:df:63:8f:
1b:7b:25:e2:4c:d7:0d:d0:fa:94:f0:fa:39:8d:80:7e:d5:22:
99:62:05:f4:b7:ba:a7:e8:c9:f9:47:fe:9b:ae:b0:1f:6a:e7:
08:3d:98:72:a0:d7:4e:dd:ee:85:56:55:ca:64:50:69:fa:c5:
32:b8:70:7e:1b:e5:a8:30:51:2e:86:d5:66:47:68:cc:58:dd:
93:73:c9:91:a7:93:db:19:e2:d7:e9:f9:6e:32:fb:cd:a2:ed:
76:b7:64:ce:3e:c5:9d:b6:a8:2d:8e:17:0e:af:85:1c:3a:c2:
43:ae:c9:24:26:ef:d1:d6:4f:33:0e:1a:57:7c:09:60:40:32:
84:34:99:c4:cb:cf:66:c3:d2:9f:41:8e:e4:11:46:51:08:63:
19:15:0d:82:2d:f9:8c:05:1b:76:33:d0:76:92:e6:2a:18:db:
dc:4c:ef:49:3f:10:2c:d5:dd:38:e1:6b:b3:05:de:81:a7:83:
49:a4:59:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 23:33:37 2024 by rpki-client on console-fra.rpki-client.org