Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/czST8YcGESLq3qELSuZ88N3Ygx8.roa
File: czST8YcGESLq3qELSuZ88N3Ygx8.roa (raw, json)
Hash identifier: ejFQdTnCTcZhSco8IXSp6BZKpRaHz3dbj0nd04a9xaY=
Subject key identifier: 73:34:93:F1:87:06:11:22:EA:DE:A1:0B:4A:E6:7C:F0:DD:D8:83:1F
Certificate issuer: /CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d
Certificate serial: 0188C3D68CCE2C36B57E21CC109FEF4F9ED6
Authority key identifier: 87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/czST8YcGESLq3qELSuZ88N3Ygx8.roa
Signing time: Fri 16 Jun 2023 10:53:17 +0000
ROA not before: Fri 16 Jun 2023 10:53:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41198
IP address blocks: 194.140.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c3:d6:8c:ce:2c:36:b5:7e:21:cc:10:9f:ef:4f:9e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d
Validity
Not Before: Jun 16 10:53:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=733493f187061122eadea10b4ae67cf0ddd8831f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:62:ff:b5:89:d9:25:65:c3:d4:fc:1f:60:cc:
78:23:45:16:70:e6:75:7e:2c:4c:1a:7b:94:f8:2f:
60:31:6c:f1:b6:b8:f8:18:4f:06:69:db:49:e8:29:
48:bb:f2:20:34:32:96:90:89:ef:02:1f:e3:da:8c:
56:94:6d:62:38:39:ac:d9:fb:34:56:b3:52:ff:a5:
1a:e4:27:16:cc:e7:b6:cc:de:25:40:e4:d1:b3:33:
a3:6c:a0:bb:23:13:13:05:0b:2b:ab:b9:c9:0c:e8:
26:e7:d8:74:c9:f5:88:09:45:5b:ef:cd:90:e8:9a:
59:ff:75:06:fe:dc:db:8f:d1:1f:e1:93:d7:d9:71:
c3:f1:af:88:7d:ec:2d:9f:b3:51:33:8f:91:fc:56:
fb:a2:a3:de:5d:bb:41:cc:e3:0e:ef:72:0c:38:21:
08:5c:fa:ef:4a:90:b7:91:3e:3f:2b:80:ba:34:32:
ed:35:a5:82:97:c2:bc:89:55:02:18:0c:d2:4b:8b:
65:5c:06:8a:1a:ff:d3:42:fd:bc:50:1d:70:0d:5f:
ca:94:a2:21:bd:18:83:50:3d:a1:02:67:7f:37:b9:
75:43:ad:14:96:88:7e:c4:76:bf:88:44:d2:23:ef:
b6:4a:37:98:eb:9c:1d:13:b6:0f:73:4c:d2:00:36:
9a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:34:93:F1:87:06:11:22:EA:DE:A1:0B:4A:E6:7C:F0:DD:D8:83:1F
X509v3 Authority Key Identifier:
keyid:87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/czST8YcGESLq3qELSuZ88N3Ygx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.140.254.0/24
Signature Algorithm: sha256WithRSAEncryption
36:85:ba:a9:16:00:b0:78:9a:d0:6b:e0:b2:1a:46:b8:56:7a:
13:22:ab:1e:b6:c0:e9:2a:f0:5b:da:e2:bc:af:48:5d:4b:43:
54:be:03:37:a5:84:5e:f1:07:90:3e:c6:dd:88:ac:a5:16:a6:
fb:52:3b:d3:8a:a4:38:0c:04:10:6c:27:8d:32:d9:03:39:a1:
e4:bc:ca:af:4d:82:e9:7e:ce:c8:2a:7d:77:45:13:f7:56:3f:
a0:2c:84:39:14:42:77:69:bd:ab:46:a9:34:9a:bb:21:6d:70:
fa:a1:93:ac:d3:ab:12:91:a3:88:69:e9:5a:90:43:b4:e9:6d:
85:d7:ae:ec:c5:26:9b:e4:25:60:fb:44:b3:8a:bc:e5:fb:29:
d6:92:7d:ba:d9:75:ac:97:e6:9b:b4:10:cd:eb:98:7c:6c:05:
90:9e:e4:9d:42:66:1b:09:83:13:76:8e:17:2b:ed:a2:01:14:
08:1f:70:95:0c:69:6c:d5:f0:b8:ce:a4:55:2d:b4:37:b6:d9:
c0:d9:e3:5c:1a:39:cd:b8:05:32:9b:4a:27:15:71:d3:c3:c9:
f7:6b:7c:f1:f4:8d:c1:3d:18:68:cd:b0:98:99:2d:95:91:06:
b7:0e:9a:9f:e7:90:31:18:38:55:de:a1:ed:6e:76:49:48:4c:
5c:cd:a8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:25 2024 by rpki-client on console-ams.rpki-client.org