Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/PpnDT3-39K7sxYEXI9Cjw3SLAA8.roa
File: PpnDT3-39K7sxYEXI9Cjw3SLAA8.roa (raw, json)
Hash identifier: ogp5K4sDEEZwYVS8hBgZQqxURVZSEPtg9gTuwBt3GSQ=
Subject key identifier: 3E:99:C3:4F:7F:B7:F4:AE:EC:C5:81:17:23:D0:A3:C3:74:8B:00:0F
Certificate issuer: /CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Certificate serial: 01857102E1A8A8F46C553F41E203AEABD406
Authority key identifier: 59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/PpnDT3-39K7sxYEXI9Cjw3SLAA8.roa
Signing time: Mon 02 Jan 2023 05:44:52 +0000
ROA not before: Mon 02 Jan 2023 05:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21190
IP address blocks: 194.56.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:e1:a8:a8:f4:6c:55:3f:41:e2:03:ae:ab:d4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Validity
Not Before: Jan 2 05:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e99c34f7fb7f4aeecc5811723d0a3c3748b000f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3e:e6:87:a9:e6:e3:e7:7b:ae:a3:ab:40:4a:
34:fe:8f:30:15:a2:1a:97:25:a4:34:75:c0:e8:d2:
17:be:8b:a4:0b:4b:98:a0:4c:4c:01:eb:ed:2d:5c:
91:73:e4:e0:8a:5f:29:75:11:f2:cb:b0:0c:17:87:
6e:7b:1d:a5:ec:34:c7:53:c9:14:10:18:1a:36:84:
6a:94:7c:d6:75:2b:2e:da:38:4f:44:be:90:b2:1d:
b7:e7:81:25:7b:73:25:42:23:26:9e:b2:b0:53:1f:
11:73:c5:71:07:37:7d:7d:3f:71:67:6a:97:22:60:
c6:eb:4d:42:62:e5:ad:72:bc:42:76:d0:c3:99:86:
b2:f3:a5:e6:42:94:62:e8:46:33:04:03:cb:9d:20:
6a:6a:a0:a8:ef:b2:55:e6:bf:ce:3e:ef:9e:79:91:
9f:24:73:43:e9:cd:79:2b:80:fb:32:06:33:de:59:
9b:0d:ac:05:23:eb:8f:d0:4d:1f:a5:b9:0a:57:30:
7f:b9:99:8a:7a:78:84:ce:e4:b3:fd:76:57:20:b5:
b3:19:aa:56:13:2d:98:20:ca:c4:17:27:43:9c:5c:
cd:46:75:77:c2:b1:7a:7d:94:32:4a:3d:fc:cd:c3:
65:c9:d1:eb:db:97:4c:8b:15:78:c7:51:d2:f8:d8:
58:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:99:C3:4F:7F:B7:F4:AE:EC:C5:81:17:23:D0:A3:C3:74:8B:00:0F
X509v3 Authority Key Identifier:
keyid:59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/PpnDT3-39K7sxYEXI9Cjw3SLAA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.100.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:d5:af:a9:b5:30:f6:b5:c4:41:72:42:e4:9d:66:07:8d:15:
e9:34:b7:41:a9:cb:c1:22:9c:69:75:16:a4:67:fa:d0:5c:91:
28:8f:09:60:a1:bc:dc:a1:34:56:3c:b0:4d:5c:96:fd:4d:8c:
1e:6e:d5:7f:35:7c:73:7e:e6:5c:94:27:4f:bc:16:7b:00:85:
fc:29:c4:9c:5a:fe:35:d6:08:59:db:82:16:58:8d:af:a4:34:
e7:ff:91:33:9f:cc:71:e4:57:5e:2f:33:73:3e:4d:5e:ed:a4:
21:68:c4:40:94:d8:97:01:00:ed:a8:5d:28:30:05:48:01:48:
f3:dd:5d:3a:13:8c:e5:ba:b5:22:6a:21:47:a1:33:c2:52:09:
06:ec:c9:1a:7e:c1:18:5a:30:ea:5a:1e:8c:9d:a3:83:49:a2:
89:d5:cd:7c:d4:98:45:fd:20:32:4c:b0:04:a3:5b:ac:04:d7:
9a:29:ec:de:3b:ca:12:90:ce:36:6c:72:14:e4:72:22:b4:89:
b1:19:01:6b:06:17:5f:ce:0b:60:94:5c:81:e4:f0:5b:4a:69:
a5:d1:2d:76:81:e4:b0:6b:38:58:fd:be:2b:8b:9b:ba:d8:4e:
04:80:9b:6b:9a:c0:43:3e:7b:2d:67:df:b7:25:02:20:73:9a:
b2:01:21:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org