Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/XGwbyiDr9UiZK9Ck8aWf10eY6RQ.roa
File: XGwbyiDr9UiZK9Ck8aWf10eY6RQ.roa (raw, json)
Hash identifier: fFnKEaN0/TBx2TM2V6L9sMFBga1fQrvXRgktomS1MpE=
Subject key identifier: 5C:6C:1B:CA:20:EB:F5:48:99:2B:D0:A4:F1:A5:9F:D7:47:98:E9:14
Certificate issuer: /CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Certificate serial: 018AA8A5C29DB8CCDBF7581126F6F383AC6B
Authority key identifier: 05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/XGwbyiDr9UiZK9Ck8aWf10eY6RQ.roa
Signing time: Mon 18 Sep 2023 14:15:50 +0000
ROA not before: Mon 18 Sep 2023 14:15:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42831
IP address blocks: 194.1.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 19 Sep 2023 09:32:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a8:a5:c2:9d:b8:cc:db:f7:58:11:26:f6:f3:83:ac:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0562d5a67b7a20f865e753163a6ed0e5f347e839
Validity
Not Before: Sep 18 14:15:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c6c1bca20ebf548992bd0a4f1a59fd74798e914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d6:53:18:cd:9a:e4:5c:55:1c:66:04:ff:4b:
87:69:af:b1:e7:87:74:a9:19:c8:0d:10:60:9b:e8:
14:61:cb:2e:06:4f:d2:14:03:56:68:65:04:52:33:
5b:ad:87:ba:f0:fa:45:c5:49:16:16:cd:7c:1c:dd:
f7:bb:66:4b:ae:05:ea:3c:20:9a:06:b5:a7:88:f3:
fb:0a:b1:da:fc:89:e3:8b:10:2d:7e:8a:34:39:4c:
c1:b9:7a:f1:da:a9:49:c1:c7:0c:2c:e6:e5:29:c0:
54:ba:c2:36:09:85:a5:50:24:79:6f:37:e0:5c:15:
43:34:4d:7c:f4:7b:6d:7a:ff:45:0c:e8:c5:a4:c1:
37:a0:66:6e:b7:51:56:20:0f:1f:2c:5e:03:7d:17:
f1:46:31:84:d2:76:02:68:ce:84:60:df:86:61:7b:
e5:d9:23:18:a4:b1:d7:5d:a3:dc:fd:23:fb:41:d6:
46:12:42:d8:de:11:d2:1a:ef:ed:3d:a9:ef:9f:4f:
08:f4:d2:ef:52:65:c0:7d:80:ea:1a:d7:d9:79:83:
21:ea:b3:d6:15:9e:02:38:e2:19:d5:e7:8e:47:cd:
43:45:0c:d2:51:1e:f2:9f:1b:2a:8d:86:3a:02:38:
72:1f:53:57:be:ca:ad:06:b6:d5:19:f5:cb:25:3a:
04:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6C:1B:CA:20:EB:F5:48:99:2B:D0:A4:F1:A5:9F:D7:47:98:E9:14
X509v3 Authority Key Identifier:
keyid:05:62:D5:A6:7B:7A:20:F8:65:E7:53:16:3A:6E:D0:E5:F3:47:E8:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/XGwbyiDr9UiZK9Ck8aWf10eY6RQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/8b01c2-ecbe-4f88-ae37-504c8fc220ea/1/BWLVpnt6IPhl51MWOm7Q5fNH6Dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.132.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:cd:1c:10:8e:9f:d4:c3:2b:57:dc:15:34:14:b7:76:1b:3e:
19:f5:c9:32:d6:5f:3b:ea:8a:06:eb:f3:63:3c:57:7f:6a:ad:
20:9b:34:c0:48:09:31:9d:5a:e8:40:90:16:f8:a4:21:56:f7:
8a:c1:24:87:bd:2b:61:bc:97:eb:fc:f4:70:94:5f:d1:a6:98:
9d:62:b3:7f:3f:6f:0a:29:0d:ab:98:ff:99:fb:f5:2c:ea:52:
05:4f:48:19:d0:f0:c1:38:e7:45:b8:33:0f:e3:51:b4:6a:71:
39:2f:4d:6e:e3:14:64:05:a7:4c:39:b3:62:9b:44:d6:fa:3e:
4b:48:66:f1:c7:c4:17:34:5c:b5:3e:ec:dc:2c:b6:a8:3c:a6:
16:6e:fc:df:6c:a9:8c:23:ef:7e:3a:fd:f9:76:b3:4d:a9:bf:
d0:43:d4:6c:40:3c:35:56:6c:df:6f:8c:71:a7:5b:9a:8c:8a:
20:a4:67:18:a0:48:92:e4:b0:10:4d:ff:ac:fc:2d:87:7e:6e:
7e:94:93:48:52:67:01:98:e9:c1:76:7e:9e:17:da:ed:8e:b7:
6d:74:f7:08:2e:c2:e6:f0:c8:b2:62:5f:6e:64:a3:ba:cd:ee:
90:9c:ee:83:bb:2b:6e:3d:54:d1:60:9b:cf:6c:c1:e0:83:3b:
e3:44:1b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:10 2024 by rpki-client on console-fra.rpki-client.org