Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/cdeca3-4ef1-45ad-8922-2f7cf8446a31/1/CsDl0ggpRikAymxoWbIPhsDMMCo.roa
File: CsDl0ggpRikAymxoWbIPhsDMMCo.roa (raw, json)
Hash identifier: hLnRbUSzjF3kS9jYJrmux7LOuZY7DlJXcT/MzSUKLFU=
Subject key identifier: 0A:C0:E5:D2:08:29:46:29:00:CA:6C:68:59:B2:0F:86:C0:CC:30:2A
Certificate issuer: /CN=8636a4e14a71ddd510164b8631ad99bbfc75953a
Certificate serial: 018E84420D8473F98EC02BEED90270FA5CD4
Authority key identifier: 86:36:A4:E1:4A:71:DD:D5:10:16:4B:86:31:AD:99:BB:FC:75:95:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hjak4Upx3dUQFkuGMa2Zu_x1lTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/cdeca3-4ef1-45ad-8922-2f7cf8446a31/1/CsDl0ggpRikAymxoWbIPhsDMMCo.roa
Signing time: Thu 28 Mar 2024 08:51:45 +0000
ROA not before: Thu 28 Mar 2024 08:51:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44832
IP address blocks: 206.225.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 28 Mar 2024 11:22:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:42:0d:84:73:f9:8e:c0:2b:ee:d9:02:70:fa:5c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8636a4e14a71ddd510164b8631ad99bbfc75953a
Validity
Not Before: Mar 28 08:51:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ac0e5d20829462900ca6c6859b20f86c0cc302a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:21:54:6a:68:41:e7:9b:88:4c:02:cc:22:5d:
d6:43:5b:30:80:c1:55:a5:4b:bd:29:89:49:6c:16:
34:3a:f4:b3:0f:f0:df:56:a3:8f:b8:12:91:b8:cd:
1c:12:8a:4a:37:92:74:8c:83:e0:d9:4e:c7:73:d4:
a5:7c:f3:c6:3b:ea:d4:72:7a:bf:0f:f0:73:e2:67:
7c:1b:e6:6a:a8:af:ec:87:e7:8e:34:1a:c5:32:6d:
8a:18:8e:ff:53:ad:95:01:ab:4c:9f:81:b4:05:6b:
7f:e2:d9:3c:0c:1e:59:b2:89:99:cd:85:26:01:f4:
d6:c1:be:8f:65:f2:39:b2:c3:cc:0d:df:11:dc:54:
13:55:10:db:c9:f1:c5:84:6f:0a:7e:ad:9d:51:79:
fc:7f:5f:90:06:58:a7:c1:28:3f:cb:bf:ba:53:e2:
2b:2b:c9:da:45:ef:54:69:3e:46:51:18:8e:ca:fb:
2d:3b:25:93:4a:9d:11:fd:b1:ab:45:38:e4:58:51:
04:18:55:17:25:f5:f8:62:88:96:6a:6e:bb:4b:11:
4e:1a:c0:93:f9:8e:4c:b1:7d:a3:9c:d9:a3:31:63:
3e:d9:37:0a:ef:ea:50:bd:63:4a:27:98:d7:8d:c8:
f4:2b:cf:92:a1:b3:f4:76:c5:9f:b3:93:60:70:e5:
89:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C0:E5:D2:08:29:46:29:00:CA:6C:68:59:B2:0F:86:C0:CC:30:2A
X509v3 Authority Key Identifier:
keyid:86:36:A4:E1:4A:71:DD:D5:10:16:4B:86:31:AD:99:BB:FC:75:95:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hjak4Upx3dUQFkuGMa2Zu_x1lTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cdeca3-4ef1-45ad-8922-2f7cf8446a31/1/CsDl0ggpRikAymxoWbIPhsDMMCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cdeca3-4ef1-45ad-8922-2f7cf8446a31/1/hjak4Upx3dUQFkuGMa2Zu_x1lTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
206.225.20.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:c9:e1:f7:fa:a7:ac:8a:c6:21:33:0a:6d:37:58:12:c8:eb:
b4:52:c5:6c:68:de:d7:4f:a8:6e:e7:48:7a:b8:68:25:5f:49:
eb:94:72:b1:33:cf:8b:6b:70:cc:c8:bc:25:34:ce:84:13:0b:
af:58:6b:93:4f:6f:b6:d6:af:1b:07:cc:ef:00:34:22:2b:9b:
21:21:bb:e3:3a:6d:f6:ac:66:13:93:ce:0c:f0:50:12:fd:fb:
dd:8f:db:7b:a2:39:49:4e:ce:44:31:13:46:98:46:04:e0:c3:
8f:55:b8:89:30:99:78:a9:03:05:55:9b:35:8d:ae:14:75:59:
c6:8a:4e:ed:fe:5d:c2:e5:9f:ee:ae:c8:41:ae:be:43:20:a7:
41:36:f2:9d:c5:73:f4:01:60:b7:09:ad:b9:9e:25:fe:d3:e5:
a2:6e:a8:13:42:bb:bb:92:59:ae:4c:61:c2:ce:99:f4:50:a1:
f4:e2:26:d0:2a:bb:b4:53:d9:26:ab:6e:6e:8a:0a:63:27:5c:
fa:c6:21:4a:9c:9d:20:86:b9:6e:e8:1e:31:08:15:a9:28:cc:
67:e1:15:cc:ef:78:2f:06:34:73:bf:b5:ca:05:25:bd:ae:55:
25:24:b6:64:72:5b:61:28:24:98:2c:2e:2b:19:30:9b:6d:38:
ee:0a:17:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:41 2024 by rpki-client on console-fra.rpki-client.org