Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/0ZLEWt2WXPC-o0DA9-NJ5TVR2aM.roa
File: 0ZLEWt2WXPC-o0DA9-NJ5TVR2aM.roa (raw, json)
Hash identifier: BjOMAfOFjna41CYh4RY231sL6Kjr9HlEAsIJ3oCax3Q=
Subject key identifier: D1:92:C4:5A:DD:96:5C:F0:BE:A3:40:C0:F7:E3:49:E5:35:51:D9:A3
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018E9F31AE55CF5871B2269D7B47CC90EB71
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/0ZLEWt2WXPC-o0DA9-NJ5TVR2aM.roa
Signing time: Tue 02 Apr 2024 14:23:36 +0000
ROA not before: Tue 02 Apr 2024 14:23:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26548
IP address blocks: 194.105.158.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 11 Apr 2024 08:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9f:31:ae:55:cf:58:71:b2:26:9d:7b:47:cc:90:eb:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 2 14:23:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d192c45add965cf0bea340c0f7e349e53551d9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:70:76:82:50:f9:a5:23:8b:48:59:22:b3:22:
bd:b9:64:19:db:f6:64:c4:30:96:e3:2d:34:f0:03:
3f:7e:bd:81:3c:92:5d:82:58:a6:d1:f6:48:f6:3e:
63:33:54:8a:66:0d:c5:30:47:68:7c:80:23:1e:15:
da:1c:3b:2d:d3:12:2a:77:9e:21:b0:24:63:66:08:
fe:b1:9b:b3:4a:f4:87:51:75:a0:fa:0b:b6:c8:95:
54:2a:27:9c:9b:ed:25:b8:9c:bb:c4:7f:9b:26:cf:
67:f9:60:5d:8c:3b:c6:7b:43:08:bb:22:49:f0:9b:
89:07:aa:2b:c4:8e:7e:df:67:eb:d1:77:5c:1b:5e:
09:29:81:e9:b8:b3:d8:da:3d:af:98:85:a5:3d:b6:
33:03:da:c8:11:6d:18:fd:ad:07:a2:5a:ec:69:9c:
21:eb:d2:92:44:05:ba:d3:e2:de:06:5a:8f:24:b8:
1a:73:94:af:fd:56:b1:76:54:7a:3d:d9:ba:57:cb:
de:7c:e8:52:7a:ca:32:c5:04:69:4e:41:0f:3b:4b:
e9:33:1f:19:7a:9f:d9:a0:b1:a0:b5:c3:21:ed:fb:
8d:ce:ce:96:3f:7c:26:ff:f7:3a:d8:86:35:a4:50:
f8:25:9a:a2:19:63:2d:01:79:d9:4a:3f:26:eb:15:
8f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:92:C4:5A:DD:96:5C:F0:BE:A3:40:C0:F7:E3:49:E5:35:51:D9:A3
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/0ZLEWt2WXPC-o0DA9-NJ5TVR2aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.158.0/23
Signature Algorithm: sha256WithRSAEncryption
04:b4:22:e3:eb:0b:ca:28:c1:51:30:15:07:e1:1c:7c:53:87:
3b:e2:8a:12:db:a0:c7:a0:f1:db:38:48:72:04:35:af:66:32:
c5:db:5a:19:d5:9e:98:fd:6a:53:b2:99:6a:da:83:01:b7:d0:
09:25:ad:8b:7b:79:73:24:19:4e:e0:83:1c:e9:4e:02:88:01:
75:25:69:90:0f:fa:69:32:f3:f5:db:76:a5:3c:bf:72:af:f3:
de:c5:be:a0:9f:59:a7:69:fd:ae:2b:5d:7f:f4:34:eb:f5:cf:
2d:6d:6b:cf:b4:48:0b:94:00:2b:72:2b:95:c4:d5:45:ba:a8:
48:a7:af:51:1a:e8:e0:cd:c0:ef:d3:cb:a3:a8:81:41:36:5e:
97:25:9a:47:d1:f7:aa:0c:56:b8:3f:5e:90:ec:97:f2:fc:9d:
e2:80:d5:1f:84:1f:af:14:69:41:e8:0b:17:40:78:9c:8f:6b:
50:b4:ce:e6:26:98:5f:c9:05:83:e5:fb:07:70:0b:c0:77:7b:
7e:ce:c1:4f:f4:df:f0:c2:10:29:ed:b3:29:4c:62:cd:7d:fc:
4f:8c:e6:bb:83:1d:5d:6b:8f:0b:63:09:12:6f:b7:f6:86:67:
66:68:3c:69:5a:ca:bc:7c:8c:fc:cd:2f:88:0a:4c:67:76:c2:
d1:87:9e:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 11 11:03:13 2024 by rpki-client on console-ams.rpki-client.org