Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/d6KI7idqx8HpdmAItPO7PRNLqgo.roa
File: d6KI7idqx8HpdmAItPO7PRNLqgo.roa (raw, json)
Hash identifier: vwlPsr2DFfwHqoGKg5C4FsV9aehRZ/mcPvNLA63OtwU=
Subject key identifier: 77:A2:88:EE:27:6A:C7:C1:E9:76:60:08:B4:F3:BB:3D:13:4B:AA:0A
Certificate issuer: /CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Certificate serial: 01856EB9075E4E4DCEF4CECA60F981CA85CB
Authority key identifier: B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/d6KI7idqx8HpdmAItPO7PRNLqgo.roa
Signing time: Sun 01 Jan 2023 19:04:57 +0000
ROA not before: Sun 01 Jan 2023 19:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212346
IP address blocks: 194.147.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:07:5e:4e:4d:ce:f4:ce:ca:60:f9:81:ca:85:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Validity
Not Before: Jan 1 19:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77a288ee276ac7c1e9766008b4f3bb3d134baa0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:69:09:9d:55:7f:a0:7b:44:8e:ad:77:a5:7c:
e9:3c:76:51:f6:b8:5d:b0:f0:ab:44:f4:79:2f:e2:
2d:87:ae:a5:21:5b:dd:19:2f:39:4c:4e:ae:a3:72:
1e:f4:aa:83:7c:04:ea:0d:01:ed:52:65:09:ba:0e:
ca:14:f8:af:5e:5b:67:2c:2b:fa:d0:e6:07:a0:e4:
9d:0a:4d:09:6d:61:77:12:82:e8:21:10:ec:b8:ac:
bb:12:ba:30:b8:c0:8e:92:2d:b8:b4:cd:7c:26:4e:
aa:57:c9:c5:b9:a1:ad:d9:6d:af:c9:e0:a9:e6:71:
95:15:86:75:c5:5f:14:41:96:2b:7c:22:ce:6b:29:
85:cb:14:9e:ae:6a:7c:a9:93:27:b7:f0:03:0f:b9:
60:ac:0d:04:00:be:e7:6b:fe:79:08:a9:f7:0d:6d:
db:85:a5:12:43:b1:26:f2:f8:35:66:54:a5:0b:fb:
7e:9b:a5:32:42:a8:f1:9a:15:23:f1:88:47:d8:32:
17:aa:1b:b0:ac:00:9f:6a:af:61:06:cc:ca:0f:ab:
df:c4:8b:6e:c1:78:b6:3b:c0:69:64:b9:40:e7:76:
30:23:af:63:17:9d:85:6f:e8:c2:13:24:3c:ec:68:
d9:82:8a:39:c9:76:2e:b3:0d:67:f7:ff:21:f8:b3:
59:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A2:88:EE:27:6A:C7:C1:E9:76:60:08:B4:F3:BB:3D:13:4B:AA:0A
X509v3 Authority Key Identifier:
keyid:B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/d6KI7idqx8HpdmAItPO7PRNLqgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/s9XsFRbubcGdHlw5mMt-emRvcVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.230.0/24
Signature Algorithm: sha256WithRSAEncryption
27:e7:6f:4d:b8:f3:91:d4:fa:c4:0c:d0:e2:24:58:b5:74:08:
7e:f7:ec:fb:09:be:78:10:55:c1:8d:14:d0:f8:2e:38:e6:7d:
eb:69:6b:34:50:d4:f4:9f:b2:a0:97:e0:49:93:ad:8a:7c:d1:
f0:43:2b:9a:1a:d2:7c:c6:48:bf:58:07:65:86:96:f2:4c:c7:
83:0d:7c:c3:a6:09:5b:ac:d1:bd:d6:c3:ea:b5:0d:11:46:a7:
38:14:28:30:39:1e:1d:30:dd:c0:69:d6:dd:29:51:11:ee:c4:
41:6b:fd:72:a7:ba:76:cb:e1:ff:85:f6:e4:eb:ae:a2:50:e5:
99:be:66:4c:be:7c:e6:f0:18:05:70:2b:bc:a8:fa:f1:7d:60:
b9:a0:47:30:67:37:ca:dd:c4:6f:48:a5:11:ec:f2:c4:2f:b5:
b0:54:d7:5c:0f:a0:97:49:57:23:60:d1:c6:59:c5:c4:ee:6c:
3f:14:08:05:2f:cc:01:66:74:f4:b5:35:17:b5:2e:3b:17:c1:
09:87:f2:a1:e0:2c:f9:e8:8f:d9:7d:94:6e:1e:eb:34:c7:a4:
bf:e3:4e:8a:af:48:32:77:60:f8:15:e8:5f:f9:a8:22:22:ac:
6d:e9:7f:86:72:47:7f:11:bd:8c:9d:13:3f:6a:2a:59:f6:9e:
4c:e6:59:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:45 2024 by rpki-client on console-fra.rpki-client.org