Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/dl44OoyzChwBP4I1_xTBl7E54zQ.roa
File: dl44OoyzChwBP4I1_xTBl7E54zQ.roa (raw, json)
Hash identifier: irPBVAlR6OeJF0tcqrNLgbmVpNHjhE+7IvjfjK+h/bE=
Subject key identifier: 76:5E:38:3A:8C:B3:0A:1C:01:3F:82:35:FF:14:C1:97:B1:39:E3:34
Certificate issuer: /CN=79ab3bbb1677b2eb04d577cdae30d9570b8dde2e
Certificate serial: 018CC801B3545A7477E70D448B96A6A2B7AC
Authority key identifier: 79:AB:3B:BB:16:77:B2:EB:04:D5:77:CD:AE:30:D9:57:0B:8D:DE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eas7uxZ3susE1XfNrjDZVwuN3i4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/dl44OoyzChwBP4I1_xTBl7E54zQ.roa
Signing time: Tue 02 Jan 2024 02:30:03 +0000
ROA not before: Tue 02 Jan 2024 02:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211440
IP address blocks: 194.147.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 08:16:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:b3:54:5a:74:77:e7:0d:44:8b:96:a6:a2:b7:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79ab3bbb1677b2eb04d577cdae30d9570b8dde2e
Validity
Not Before: Jan 2 02:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=765e383a8cb30a1c013f8235ff14c197b139e334
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ef:f4:de:ff:96:ee:09:05:9a:01:a8:ca:e9:
ab:08:cc:9d:b1:ec:f9:27:44:1c:11:76:5f:d7:9b:
b8:a8:fa:08:79:a3:a0:7d:98:c2:af:42:be:13:8e:
e0:53:ce:76:24:32:d6:1d:c4:7e:11:19:de:42:dd:
10:65:2c:69:3b:45:eb:6f:84:8c:13:eb:11:33:ee:
f0:f0:67:26:95:52:59:83:bc:42:b0:73:66:48:30:
c7:77:37:78:ff:f4:67:ec:38:7e:4c:2d:ea:ad:2f:
85:bb:d9:ad:f7:16:eb:33:97:33:1e:5f:05:05:8a:
0d:82:2c:99:a2:dd:e1:4c:00:8f:59:b9:27:5c:1f:
db:14:5e:3f:0b:b5:f9:79:a5:dd:ed:e3:e5:8b:73:
07:5b:3a:3b:46:af:fa:12:c7:ab:54:a7:5d:22:99:
94:50:7e:3e:69:7e:22:ef:ae:02:c2:01:91:ee:44:
a5:ec:08:87:24:ef:9c:57:33:b8:d7:fa:c8:9b:90:
9a:59:4f:08:95:a4:88:ab:02:d4:25:44:fb:cc:cc:
28:9d:0d:28:5b:4d:ee:4e:b2:5a:a5:f5:89:32:f0:
d8:05:ce:58:8e:b3:a0:da:c1:41:96:14:9d:77:15:
7f:f9:fd:ff:e5:64:41:d4:c6:95:8a:ab:49:ca:13:
5e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:5E:38:3A:8C:B3:0A:1C:01:3F:82:35:FF:14:C1:97:B1:39:E3:34
X509v3 Authority Key Identifier:
keyid:79:AB:3B:BB:16:77:B2:EB:04:D5:77:CD:AE:30:D9:57:0B:8D:DE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eas7uxZ3susE1XfNrjDZVwuN3i4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/dl44OoyzChwBP4I1_xTBl7E54zQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/eas7uxZ3susE1XfNrjDZVwuN3i4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.220.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:c7:cb:f0:49:8e:2d:26:42:2f:e2:ed:5e:a7:15:1d:c7:94:
d5:c2:83:cf:ed:30:12:29:b1:fe:0d:52:95:f0:ea:e8:b8:ee:
0a:5f:3f:a7:8b:2e:ec:ed:56:e1:ed:9e:b7:6f:8b:e4:85:a9:
1b:fc:4a:8c:57:dc:8f:b6:22:e3:fd:95:34:a4:d2:bb:be:f9:
f9:7d:cb:1c:8a:3e:b4:3e:50:33:59:9a:44:5c:b2:15:a4:33:
96:18:97:ee:7e:a2:1c:db:3a:ee:05:84:7c:cb:31:82:a2:6d:
b6:3e:39:e1:8f:83:11:6f:b9:eb:71:8c:9a:09:d7:9b:e8:49:
3c:e9:86:41:9f:bd:5c:91:fd:07:28:de:a7:84:70:28:15:c9:
fc:e9:da:f3:aa:5f:8b:75:32:4d:0c:22:a7:9f:7e:0d:75:1b:
bb:09:74:1a:e1:a8:94:6f:5d:b0:a3:1d:0c:d8:f9:83:b7:e5:
04:9c:52:16:c8:4a:a2:78:65:22:08:42:c4:c5:52:a4:42:bc:
11:52:78:32:47:f6:aa:55:1c:1f:8c:27:eb:c4:b1:33:ea:52:
ca:ce:17:57:92:e6:7d:a0:31:ba:e2:69:f1:95:06:8f:fa:62:
2e:4e:13:40:26:2c:45:83:32:7e:11:3f:69:5b:a5:b5:8a:c9:
e9:18:30:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:01 2024 by rpki-client on console-ams.rpki-client.org