Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/CzVAVaXnz8-rG0iddG4VWwkOTaQ.roa
File: CzVAVaXnz8-rG0iddG4VWwkOTaQ.roa (raw, json)
Hash identifier: /gz1YDvvHrQ9N7W2X874sE0/6RhRUMt7WfQgDlRaIJE=
Subject key identifier: 0B:35:40:55:A5:E7:CF:CF:AB:1B:48:9D:74:6E:15:5B:09:0E:4D:A4
Certificate issuer: /CN=b74ce3f3c5e5a2f9d8b8a4c77a8361f8a216f3ad
Certificate serial: 01857315F4D2452CFD175D2FDC2A17505920
Authority key identifier: B7:4C:E3:F3:C5:E5:A2:F9:D8:B8:A4:C7:7A:83:61:F8:A2:16:F3:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/CzVAVaXnz8-rG0iddG4VWwkOTaQ.roa
Signing time: Mon 02 Jan 2023 15:24:56 +0000
ROA not before: Mon 02 Jan 2023 15:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 194.99.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:15:f4:d2:45:2c:fd:17:5d:2f:dc:2a:17:50:59:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b74ce3f3c5e5a2f9d8b8a4c77a8361f8a216f3ad
Validity
Not Before: Jan 2 15:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b354055a5e7cfcfab1b489d746e155b090e4da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:25:ea:94:3c:83:88:ee:8e:08:de:52:7a:b4:
35:57:09:a2:78:51:e8:63:e8:47:ef:57:4b:16:1a:
84:d7:68:39:72:f9:16:83:a4:0f:c1:a6:cc:86:7f:
df:96:44:38:f6:08:cd:0b:7e:50:6c:0d:f2:ba:4c:
e7:c6:77:9d:d8:0a:c0:48:d1:b6:79:22:ff:7d:f5:
ff:3f:c4:c1:a7:2e:93:0d:9d:fd:dd:e0:54:1a:24:
69:88:0f:2b:55:e1:c1:c7:e9:64:9c:70:fa:62:41:
3c:0d:91:38:c6:b4:62:e8:6f:df:d9:91:fe:7b:73:
36:b2:3c:fc:cf:0c:71:2b:48:3d:e1:2a:23:53:b7:
e9:e1:e9:b9:df:be:60:93:fd:ff:e2:10:b1:8e:dd:
27:ad:93:25:6d:7b:e7:51:0c:39:07:fc:3e:eb:0a:
c8:ad:bc:17:7e:73:a8:e2:33:c6:bb:54:b4:d3:a2:
d9:4d:73:c8:a6:ee:c3:0a:68:81:ae:ae:fc:93:3b:
48:90:39:ca:80:2e:3a:b9:16:d0:c6:25:1e:15:16:
80:3b:dc:b9:b9:b8:b1:e1:af:67:16:9e:fa:e5:8b:
63:8d:3d:d9:19:fb:a7:9a:b0:ec:dd:a6:f8:26:09:
7f:6d:85:61:0b:1d:6f:04:09:02:2a:44:b6:fb:b6:
00:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:35:40:55:A5:E7:CF:CF:AB:1B:48:9D:74:6E:15:5B:09:0E:4D:A4
X509v3 Authority Key Identifier:
keyid:B7:4C:E3:F3:C5:E5:A2:F9:D8:B8:A4:C7:7A:83:61:F8:A2:16:F3:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t0zj88XlovnYuKTHeoNh-KIW860.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/CzVAVaXnz8-rG0iddG4VWwkOTaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ac681f-05d2-4045-ae10-5ebdd9e2887c/1/t0zj88XlovnYuKTHeoNh-KIW860.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.96.0/23
Signature Algorithm: sha256WithRSAEncryption
71:76:46:ca:bc:63:a5:93:2f:c4:92:9e:a5:8c:51:c2:8b:05:
c1:d8:a6:2c:e7:c3:96:8d:8a:e6:8c:e7:71:95:37:24:89:d0:
1a:88:84:44:46:13:74:42:34:2d:d6:d4:e1:52:4d:b0:e9:42:
1b:d9:1c:41:10:17:a6:df:ef:5c:57:af:ae:65:50:e9:c7:c0:
4d:f3:d4:7e:e9:f7:e3:bc:66:1f:95:4f:8d:a3:37:76:60:a6:
dc:7d:d6:74:58:6e:3e:bb:98:f7:4d:b7:d1:f6:37:65:8f:d3:
6d:43:16:04:d1:f8:81:7e:c9:2f:9d:a5:8a:3b:bb:ca:8d:08:
17:5c:eb:dd:64:c6:c6:e4:16:9b:af:34:f5:b7:ab:57:44:f0:
bc:77:ab:87:c7:d7:8f:89:42:a4:d1:2d:73:db:74:c2:74:88:
ba:b8:92:72:7c:8e:e5:d1:2d:b1:ad:5b:8a:60:c5:40:20:51:
46:78:e0:fa:3c:18:e4:06:63:0c:93:5b:98:6f:29:1a:01:e7:
0b:b4:53:7e:f4:af:92:8f:4a:00:44:d1:6d:51:ab:44:33:4e:
2e:7d:cd:12:53:78:dc:37:97:76:aa:66:ef:d3:2d:d4:cd:8e:
eb:44:1c:40:38:d6:ff:89:57:14:ad:a3:ad:a4:e9:8a:59:0b:
d1:16:41:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:16 2024 by rpki-client on console-ams.rpki-client.org