Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/d3ahaPA7UYVnhdmi84wPI1XM8m4.roa
File: d3ahaPA7UYVnhdmi84wPI1XM8m4.roa (raw, json)
Hash identifier: Lt8XVv/rO8XBk6NXnFjqQ2g4COWQsMAMfBOlTKTr6tc=
Subject key identifier: 77:76:A1:68:F0:3B:51:85:67:85:D9:A2:F3:8C:0F:23:55:CC:F2:6E
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C4168EB6538D4FF957FFA557682272E
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/d3ahaPA7UYVnhdmi84wPI1XM8m4.roa
Signing time: Sun 01 Jan 2023 07:35:04 +0000
ROA not before: Sun 01 Jan 2023 07:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149020
IP address blocks: 194.5.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 May 2023 21:36:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:68:eb:65:38:d4:ff:95:7f:fa:55:76:82:27:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7776a168f03b51856785d9a2f38c0f2355ccf26e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:60:b4:85:51:0d:f3:b7:48:81:70:6a:36:ef:
2b:69:64:87:7b:fa:72:37:4d:ad:da:27:a9:c5:72:
45:7c:f5:53:f0:db:1d:61:ed:23:10:db:93:97:0f:
fb:04:00:a3:92:d9:48:b2:29:82:65:ff:80:2b:a9:
d7:5b:4e:1f:e3:b5:a8:37:e4:99:7b:14:08:92:97:
f6:7a:1e:bb:9f:76:02:5b:4d:c5:b4:97:0f:58:29:
cd:5d:ea:e6:62:7c:5b:92:7a:87:89:0b:31:94:2c:
fd:da:a5:cc:3e:10:3c:43:53:e4:13:8d:1c:be:59:
de:c7:23:78:ed:fb:b8:d7:d5:70:41:08:b3:25:b0:
74:30:af:86:61:28:f9:e4:8e:fb:f4:e8:35:19:09:
4e:e3:39:1d:e7:9c:c9:95:ea:61:46:dd:75:76:77:
23:fa:b8:74:57:9f:63:4f:b2:03:a7:27:45:d4:1a:
fe:ac:92:1b:d1:09:43:d7:4e:ec:98:fb:4a:b9:1b:
6c:71:26:69:27:ca:8c:ee:f8:e7:5e:c0:dc:23:24:
37:ba:49:2d:05:74:b3:21:93:c3:15:fc:61:e8:6f:
57:e3:78:86:c4:06:87:0f:97:0e:d5:a5:b1:c8:50:
c6:91:24:f0:5d:b9:5f:de:5c:ef:e3:28:e2:f5:ee:
e0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:76:A1:68:F0:3B:51:85:67:85:D9:A2:F3:8C:0F:23:55:CC:F2:6E
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/d3ahaPA7UYVnhdmi84wPI1XM8m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.97.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:6f:23:d1:44:4b:0b:90:87:58:ab:8b:86:7d:64:1e:ee:79:
75:1a:f5:81:a5:1c:85:f5:10:ef:74:b4:3c:b1:86:c5:ab:2f:
17:24:95:e6:be:44:6f:11:8f:dd:b0:a7:ae:ba:c4:d7:8e:44:
fc:61:65:6c:65:bf:08:58:bf:4e:16:78:65:42:7e:fa:0e:4f:
97:a7:74:49:eb:10:7d:03:51:52:63:bf:74:3f:31:e0:00:1d:
5c:ec:be:21:8b:5a:22:9c:d0:e0:a5:10:0b:3c:78:10:41:5f:
41:76:e0:be:ae:26:50:3b:ab:90:33:43:ef:49:8c:d1:6a:bb:
5c:8c:99:db:64:10:12:06:d5:7c:2a:4b:59:b6:af:f9:52:9a:
ba:10:19:5d:52:49:7a:ae:9f:05:18:86:34:2c:f8:d4:5f:ba:
cc:ec:cc:2f:6b:3d:13:15:9b:d4:f5:cb:5a:d4:57:9c:9d:e4:
75:df:b7:31:82:ce:9e:81:13:fa:7c:94:ea:2a:53:8d:ba:f4:
46:b3:59:7b:d8:52:2c:5d:f0:3e:e1:e3:f0:a1:e7:7c:64:44:
97:6e:f1:91:c8:f1:ba:4f:27:08:68:3d:08:74:e2:a5:e2:2f:
d8:1b:b8:80:fd:48:ff:b8:55:a7:c1:20:1b:5c:57:7a:58:8b:
13:31:a5:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org