Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/rsfrUF5zkMhyIc_vvTiPt6Ik2ek.roa
File: rsfrUF5zkMhyIc_vvTiPt6Ik2ek.roa (raw, json)
Hash identifier: RoDMHBYKDOtqZjgAgXBZhwdklAhRXVDJQpLlfBsorRM=
Subject key identifier: AE:C7:EB:50:5E:73:90:C8:72:21:CF:EF:BD:38:8F:B7:A2:24:D9:E9
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 018737F6CF13BFBD8935BBAEEEB176EC40C7
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/rsfrUF5zkMhyIc_vvTiPt6Ik2ek.roa
Signing time: Fri 31 Mar 2023 13:58:54 +0000
ROA not before: Fri 31 Mar 2023 13:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206492
IP address blocks: 194.191.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:37:f6:cf:13:bf:bd:89:35:bb:ae:ee:b1:76:ec:40:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: Mar 31 13:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aec7eb505e7390c87221cfefbd388fb7a224d9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a7:62:99:f9:82:3e:51:2a:dc:50:ba:62:15:
fc:7e:f6:23:7c:e2:d1:a6:7f:89:ca:0f:a5:c7:fa:
17:52:8c:5b:52:c4:30:7d:4f:bf:85:4b:35:ae:b7:
f1:20:66:62:16:ba:33:6f:51:ad:0d:5c:4a:17:94:
b5:99:7a:06:7b:3a:ad:3a:67:ee:ac:f9:88:2a:fc:
d7:b2:bb:e8:6d:0f:0a:c7:45:cc:d5:6e:0d:13:17:
70:54:39:a9:cc:9f:12:ca:e3:55:d4:3f:f5:91:7e:
98:d6:64:9d:9a:80:cb:26:b0:c9:b3:69:85:dd:13:
e1:bd:a4:ef:55:bc:ac:fa:f5:d5:07:45:17:ed:67:
7a:38:67:77:70:42:fc:b1:01:b7:67:5d:eb:44:5f:
e1:62:54:96:63:4a:9b:85:a3:fb:e8:2d:b0:07:b9:
f6:d0:c2:a5:12:01:9a:cb:b8:86:c8:4c:e5:e6:1e:
6d:35:48:31:7e:8b:14:3b:52:76:15:9c:14:fd:cd:
50:5e:84:6a:b4:92:df:b5:c6:a7:6f:27:e9:9f:c7:
8c:c5:e7:da:c0:6c:77:2b:fb:10:dc:ba:35:b0:86:
95:40:c1:10:30:d2:5f:18:b8:cf:c6:16:3c:6f:db:
57:f1:b6:92:ff:a2:25:f1:ea:b3:19:fa:2f:1a:e0:
e3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C7:EB:50:5E:73:90:C8:72:21:CF:EF:BD:38:8F:B7:A2:24:D9:E9
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/rsfrUF5zkMhyIc_vvTiPt6Ik2ek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.191.112.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:65:13:df:2a:b0:e5:3f:d0:88:f7:bc:09:be:e3:5d:06:b3:
ed:0c:b3:64:b1:71:03:9a:ca:34:1d:7b:46:db:69:ff:ce:fa:
be:4a:d5:ca:7e:be:15:98:5a:89:16:57:ad:b0:63:64:df:76:
95:cd:96:63:39:ba:bf:be:cf:d1:7b:e0:71:84:1b:4c:b8:56:
4f:08:12:dc:73:e9:ed:f7:f4:b8:77:9a:77:0e:e0:4c:8e:1d:
fb:2a:40:df:95:14:6f:bf:d3:c1:04:d8:23:06:f3:8d:c1:8d:
a9:8b:7d:b5:35:3a:39:e5:d4:3b:91:61:6d:01:7c:2e:3a:9b:
62:b3:af:89:5a:a3:31:1b:24:5c:21:81:bf:31:6d:3b:1e:3f:
0a:9d:d0:e9:f4:0e:d3:01:b5:d6:0d:d1:b9:f0:75:40:7a:23:
54:3a:d5:57:5a:42:2c:e2:a8:8c:d7:fb:67:f4:bd:96:60:ac:
0c:65:67:2b:1b:bc:6a:45:97:3b:19:4e:be:db:95:24:9a:41:
37:35:d9:ca:c5:e6:67:cf:54:f0:53:8e:58:18:71:f1:66:14:
eb:b8:39:38:ef:15:08:61:99:b8:ee:56:cf:13:36:b2:89:97:
b3:a8:e4:ec:ec:00:10:38:5a:b3:11:a0:cb:e2:87:c3:b1:8e:
5f:15:c9:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:26 2024 by rpki-client on console-ams.rpki-client.org