Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/htdTALoBiXBYq4JwTEWgtRW6Nrc.roa
File: htdTALoBiXBYq4JwTEWgtRW6Nrc.roa (raw, json)
Hash identifier: Q8TPKWFcFMikV9OgVa4KnMEqiErNMPCX0dbNkQJF3qI=
Subject key identifier: 86:D7:53:00:BA:01:89:70:58:AB:82:70:4C:45:A0:B5:15:BA:36:B7
Certificate issuer: /CN=3aebf22e86444255fdf78a30c4cb0b2d91e5b757
Certificate serial: 018B5C53A93C00517B0BBF2F100B79FDE081
Authority key identifier: 3A:EB:F2:2E:86:44:42:55:FD:F7:8A:30:C4:CB:0B:2D:91:E5:B7:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuvyLoZEQlX994owxMsLLZHlt1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/htdTALoBiXBYq4JwTEWgtRW6Nrc.roa
Signing time: Mon 23 Oct 2023 11:37:48 +0000
ROA not before: Mon 23 Oct 2023 11:37:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3170
IP address blocks: 194.0.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:53:a9:3c:00:51:7b:0b:bf:2f:10:0b:79:fd:e0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aebf22e86444255fdf78a30c4cb0b2d91e5b757
Validity
Not Before: Oct 23 11:37:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86d75300ba01897058ab82704c45a0b515ba36b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2b:48:95:c2:52:ea:ed:f8:31:36:cb:86:01:
ed:89:ce:72:1d:bf:03:dc:36:a3:79:16:72:af:d6:
11:4f:82:7b:06:a6:16:e1:2c:59:e1:52:ea:7b:b6:
f6:de:39:fb:f3:6f:96:ec:3f:1e:63:04:14:9a:76:
ff:6a:99:78:ad:5c:58:39:68:10:d4:f0:c0:8d:bd:
70:41:66:20:aa:4a:7c:7a:e4:2c:36:1a:44:d5:2f:
df:68:61:35:9f:a1:2d:5e:0a:bf:d4:44:e3:42:0e:
65:1e:e2:89:cb:5d:20:7b:6f:2e:08:5f:fb:5d:32:
28:e6:39:dd:f2:b4:fa:96:07:8f:1e:b9:35:33:39:
26:83:63:4c:d7:56:df:f9:2a:2e:9b:fe:6c:48:19:
ad:29:4b:3b:92:98:a0:7f:17:f6:7e:cd:ff:61:01:
18:f8:d5:a2:8c:cd:5e:9d:2b:4c:4e:11:a1:55:c7:
6a:83:88:7c:fe:63:02:4a:2a:68:fc:33:58:23:5e:
14:38:7f:4a:95:c5:5f:9b:f8:f2:9e:67:d3:2d:3a:
af:c0:56:62:e9:fc:60:72:74:5d:17:33:ce:69:f5:
2d:8d:ec:48:0b:e5:aa:2c:e7:24:0a:c3:0a:03:b6:
8c:1b:03:04:02:94:25:c9:1a:f8:c4:e9:fe:60:28:
98:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D7:53:00:BA:01:89:70:58:AB:82:70:4C:45:A0:B5:15:BA:36:B7
X509v3 Authority Key Identifier:
keyid:3A:EB:F2:2E:86:44:42:55:FD:F7:8A:30:C4:CB:0B:2D:91:E5:B7:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuvyLoZEQlX994owxMsLLZHlt1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/htdTALoBiXBYq4JwTEWgtRW6Nrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/98b2f5-75e1-4245-976d-0150c94f940d/1/OuvyLoZEQlX994owxMsLLZHlt1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.58.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d1:6a:5c:fd:ce:77:ca:8b:d3:e1:52:e0:d5:8c:e4:87:20:
b6:bd:f7:b0:b2:5b:fd:7b:a3:61:c2:17:4f:08:7d:38:4b:3e:
6c:39:d7:db:56:8c:46:05:f5:77:66:32:b3:c1:da:cd:bc:0f:
89:60:53:13:30:5f:c2:f2:39:bc:92:22:99:b2:f3:ef:9a:18:
38:f6:b4:47:7b:e7:a9:21:44:9d:03:70:84:cc:d2:11:28:ed:
76:be:2d:ae:97:df:48:b4:f3:87:13:dc:bf:3f:28:94:2b:70:
0a:a8:00:23:c3:ef:04:3b:4b:3f:ea:fe:8e:36:bb:c8:65:10:
6b:80:08:e6:d3:d0:2b:90:e5:ae:9e:fd:56:e0:3c:05:77:58:
34:b5:cc:c9:ae:3e:06:ab:64:7e:83:2a:9b:aa:d0:c3:05:bd:
d1:ef:0d:3f:89:20:31:6d:e9:a4:55:1c:28:02:1c:68:78:75:
6c:67:fc:87:57:f6:66:93:82:51:7d:7a:6e:f9:1b:6f:4a:cd:
92:44:01:3a:66:b3:ed:47:bd:7e:39:90:f0:8d:19:82:af:e5:
e0:60:db:df:0e:56:6b:3f:98:6f:38:ee:a0:92:b3:32:35:c3:
6d:9c:31:5b:a5:53:16:fc:40:2c:90:e9:56:16:9b:4e:33:b0:
57:0c:5f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:07 2024 by rpki-client on console-ams.rpki-client.org