Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/IOHOksAYaREiiHHLUv9mYiG6cHU.roa
File: IOHOksAYaREiiHHLUv9mYiG6cHU.roa (raw, json)
Hash identifier: j6AdUO9ToUk9gvIuAsMjTg7vqU3FmVPrneIC/ay8RkQ=
Subject key identifier: 20:E1:CE:92:C0:18:69:11:22:88:71:CB:52:FF:66:62:21:BA:70:75
Certificate issuer: /CN=330e3fdb11d826bc01663290bd7ca406b8d76507
Certificate serial: 018570705EDDEA623DAF08E8FEE72F96222E
Authority key identifier: 33:0E:3F:DB:11:D8:26:BC:01:66:32:90:BD:7C:A4:06:B8:D7:65:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mw4_2xHYJrwBZjKQvXykBrjXZQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/IOHOksAYaREiiHHLUv9mYiG6cHU.roa
Signing time: Mon 02 Jan 2023 03:04:50 +0000
ROA not before: Mon 02 Jan 2023 03:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39203
IP address blocks: 194.105.140.0/24 maxlen: 24
194.105.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5e:dd:ea:62:3d:af:08:e8:fe:e7:2f:96:22:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=330e3fdb11d826bc01663290bd7ca406b8d76507
Validity
Not Before: Jan 2 03:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20e1ce92c0186911228871cb52ff666221ba7075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:da:63:84:c6:bf:ca:0f:11:8d:9c:1a:b5:fb:
31:ed:71:f8:91:ee:b8:60:0b:14:69:ef:b3:32:50:
b2:9f:46:c4:9b:33:3e:b0:e9:59:1e:10:0f:7c:cf:
81:bf:c1:c4:36:24:dd:6b:b1:b7:34:2c:54:dc:7d:
a6:a3:bd:ee:85:29:18:ec:aa:89:43:01:e7:e9:c4:
d5:e9:7e:1b:61:85:c8:02:26:54:39:d3:2a:c3:8c:
e5:68:95:53:40:f4:ca:25:3b:b6:f2:cc:85:e3:b5:
ac:af:d1:59:93:8d:2f:f8:5a:68:9a:dc:07:fd:23:
c4:73:e9:cc:81:ea:d8:ad:22:f6:d1:97:24:88:b9:
59:84:24:bc:bf:b7:13:0a:3e:10:7d:d0:55:51:f0:
7c:2e:5b:5a:e1:1e:55:ec:cf:08:a3:11:8e:dd:1d:
9c:d3:ed:70:8c:74:b7:53:97:00:77:b7:d3:2e:41:
29:e8:4c:54:dd:20:24:3d:15:9b:66:cd:bf:71:87:
53:23:75:d3:f7:44:a8:ba:fd:9f:76:d9:89:12:a3:
8a:b3:f2:e6:5d:53:5a:4d:16:08:3c:f7:b7:99:bc:
ee:7a:93:e7:9a:4e:c4:b6:9d:8e:ef:2d:1f:1c:25:
78:7c:9d:1e:60:20:aa:1d:9d:91:fb:ba:ff:94:c5:
55:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E1:CE:92:C0:18:69:11:22:88:71:CB:52:FF:66:62:21:BA:70:75
X509v3 Authority Key Identifier:
keyid:33:0E:3F:DB:11:D8:26:BC:01:66:32:90:BD:7C:A4:06:B8:D7:65:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mw4_2xHYJrwBZjKQvXykBrjXZQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/IOHOksAYaREiiHHLUv9mYiG6cHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/Mw4_2xHYJrwBZjKQvXykBrjXZQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.140.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:c7:1e:59:eb:5f:04:c7:28:24:53:3a:1b:b3:01:6b:b1:3b:
2c:5b:51:82:cf:a0:a8:4f:42:d5:12:68:c9:d6:6f:1f:33:b7:
26:c8:a1:ad:f7:07:d9:6d:24:0d:aa:ed:0a:a8:92:b5:1c:c1:
62:80:7e:80:82:7e:38:26:7f:ff:48:5c:45:45:a3:d9:83:bd:
c4:e0:36:02:f5:cb:b4:48:4d:bf:e2:c8:ae:b2:dd:58:48:25:
1c:3c:31:49:d7:51:87:1c:1a:40:54:ce:78:6a:be:0d:36:95:
80:2d:a8:21:15:18:2e:f8:70:b4:47:be:f5:28:40:cb:93:e7:
9b:a5:bd:0a:4c:4f:58:79:f4:ee:f0:d6:b8:2a:15:83:3a:46:
e5:bb:de:f4:3f:89:00:03:e0:e3:52:cb:13:79:b3:26:ca:c5:
b5:42:7b:99:e1:ab:16:4f:b9:97:37:74:7e:00:fb:25:d9:d3:
35:6a:b2:bd:34:31:56:9d:fa:f5:47:22:25:f6:9b:83:41:76:
62:c9:a4:02:19:86:ad:3f:1d:64:2a:28:5f:cf:2b:a4:54:9b:
2b:5c:81:6a:26:f7:6c:7e:51:1e:51:e0:3d:51:96:97:dd:21:
9f:b4:29:f1:23:fc:c5:55:85:aa:0d:0a:63:4c:85:6c:82:a8:
1e:fc:b7:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:25 2024 by rpki-client on console-fra.rpki-client.org