Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/22jRn3k4j4Kl3JvEFugoPFeXFTE.roa
File: 22jRn3k4j4Kl3JvEFugoPFeXFTE.roa (raw, json)
Hash identifier: vvmtTaueMj2ftHxM3UF7DSjcNHoJ80M34Ycve9rsQVM=
Subject key identifier: DB:68:D1:9F:79:38:8F:82:A5:DC:9B:C4:16:E8:28:3C:57:97:15:31
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571955926066637B3F8F250B65E82A01E
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/22jRn3k4j4Kl3JvEFugoPFeXFTE.roa
Signing time: Mon 02 Jan 2023 08:24:51 +0000
ROA not before: Mon 02 Jan 2023 08:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1102
IP address blocks: 194.104.0.0/24 maxlen: 24
2001:678:230::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:59:26:06:66:37:b3:f8:f2:50:b6:5e:82:a0:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db68d19f79388f82a5dc9bc416e8283c57971531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c1:44:39:92:0a:54:ef:51:b2:a6:13:63:56:
76:65:bf:af:2f:f4:ed:87:3a:b6:c5:2e:24:bb:6a:
f9:91:90:e8:6c:17:0b:57:a5:08:ea:00:c4:45:b1:
69:47:ac:21:87:38:fc:95:cb:e8:60:ce:ec:92:3a:
b5:39:f2:a2:81:43:69:e5:14:79:29:8c:e8:ae:fd:
63:92:76:2e:0b:c9:a7:da:3d:e9:35:b5:33:74:22:
c0:f3:a8:18:1e:d6:8e:d0:1b:d9:a6:32:7e:d1:29:
fc:0a:5e:89:e7:f5:9b:a7:16:72:ae:b2:ac:03:98:
90:b4:11:95:de:c9:88:2c:82:cb:f6:a1:65:db:35:
19:b5:9d:0a:24:45:07:18:fa:9a:40:e9:85:59:d5:
75:92:d9:5f:5f:3c:d9:ff:fe:58:5e:c4:a7:85:1b:
6b:4c:34:3a:0f:a4:b7:d3:28:48:8b:60:a2:d3:fe:
ca:f3:27:19:1e:e0:0e:b6:38:50:44:5f:7f:0c:20:
fd:03:a7:f3:f6:2a:5d:a5:e9:44:02:77:0e:e8:6a:
ee:b6:94:f4:4e:a9:16:e5:11:cd:45:9d:e9:e2:40:
29:d7:47:14:c2:2e:4c:61:1c:21:84:20:16:31:c6:
a4:34:b0:4f:ca:8c:cb:e9:6e:a8:1a:c4:05:66:2c:
aa:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:68:D1:9F:79:38:8F:82:A5:DC:9B:C4:16:E8:28:3C:57:97:15:31
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/22jRn3k4j4Kl3JvEFugoPFeXFTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.0.0/24
IPv6:
2001:678:230::/48
Signature Algorithm: sha256WithRSAEncryption
10:97:6f:1a:6e:f2:76:d6:ef:5d:66:38:17:af:51:27:da:a5:
5b:ab:05:5d:83:75:94:88:70:61:e1:e8:2f:bb:be:96:97:4b:
ef:40:a9:9d:dd:92:98:d3:60:0f:88:ef:34:dc:ca:e8:91:40:
53:cb:42:71:17:a2:b7:da:3d:e7:e2:5e:2c:ab:03:e0:64:d4:
a4:44:72:80:0a:e4:e7:ba:e9:ae:dc:e1:2c:5a:4b:bd:d4:1c:
45:04:71:0d:dd:77:32:45:9f:69:52:8b:f8:f4:11:66:04:3e:
db:8c:a5:27:c3:c2:2d:c0:f8:a3:ce:61:ff:cd:a5:34:2e:48:
df:27:e9:b2:45:18:0a:4e:79:d9:3c:0a:1d:8a:aa:3d:c2:e1:
19:42:16:58:55:ed:ad:0e:7a:50:63:d3:80:ce:75:ae:4d:87:
1e:22:6e:79:6f:4f:c1:d0:9c:b2:ba:c3:44:7a:6a:ee:9f:24:
49:0c:f6:03:b2:4a:31:15:b0:7a:5e:5f:f5:10:c4:54:f9:70:
ca:cc:51:b0:12:0b:60:bf:67:db:36:97:ad:7b:0d:45:64:27:
bc:6a:74:73:87:a3:8f:2b:a0:56:41:73:86:4e:74:9c:c3:c8:
09:dc:dd:f7:ce:65:9b:ff:67:ae:b9:f2:69:08:d0:a4:6d:af:
6c:3a:e2:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:09 2024 by rpki-client on console-fra.rpki-client.org