Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/1_6gpjF4MdXGdoQPvUF4IAz_DAI.roa
File: 1_6gpjF4MdXGdoQPvUF4IAz_DAI.roa (raw, json)
Hash identifier: 5GtfR3sUeCVRAQhAcGNtRhFAJHPlkoRGWUSEAtNVPN8=
Subject key identifier: D7:FE:A0:A6:31:78:31:D5:C6:76:84:0F:BD:41:78:20:0C:FF:0C:02
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 01857139CD7D42FDACBBA05FA46C8EB65668
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/1_6gpjF4MdXGdoQPvUF4IAz_DAI.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57745
IP address blocks: 194.225.172.0/23 maxlen: 24
194.225.166.0/23 maxlen: 24
194.225.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cd:7d:42:fd:ac:bb:a0:5f:a4:6c:8e:b6:56:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7fea0a6317831d5c676840fbd4178200cff0c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:ce:1e:c1:5d:f8:b7:65:cf:87:22:5d:0f:c0:
f1:27:b7:a8:e3:6c:a4:bc:1e:96:bc:9d:d8:ab:83:
95:1f:18:50:f5:1d:2f:f7:cb:70:0a:d3:7a:46:bd:
a5:ba:6e:f1:10:51:70:6a:f0:35:bf:e7:ed:8e:7b:
8b:bb:e0:85:dd:a7:a7:2d:2c:31:fa:38:b8:69:f1:
cf:6a:f2:03:2c:ad:ac:ff:33:9e:db:a3:06:35:d2:
22:02:84:ef:89:a7:48:67:49:ce:1c:52:b6:b0:0f:
3b:19:d4:1f:cf:65:bd:8c:fb:91:9d:5a:2b:0d:34:
eb:f9:05:9d:99:44:ca:15:c5:1a:c2:f5:77:1d:da:
24:97:2b:5c:5b:11:52:46:18:f9:0f:bc:a9:30:78:
30:1d:20:e5:66:3f:39:17:b3:f4:80:6b:18:e5:bd:
71:14:76:36:6e:b5:51:c0:ab:55:a6:fc:c5:5b:3a:
6c:78:29:1c:20:0c:af:05:33:99:d9:02:c7:52:3e:
62:cd:71:c5:9e:71:77:d9:b2:fa:c2:72:30:8c:1e:
89:0e:a3:93:73:28:00:73:83:e2:e2:96:27:07:42:
ab:97:0f:d9:a8:00:13:1b:fc:4e:17:aa:f4:2d:60:
9e:fd:cf:29:82:41:98:13:7f:a9:94:77:14:57:fd:
cd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FE:A0:A6:31:78:31:D5:C6:76:84:0F:BD:41:78:20:0C:FF:0C:02
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/1_6gpjF4MdXGdoQPvUF4IAz_DAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.166.0-194.225.173.255
Signature Algorithm: sha256WithRSAEncryption
33:96:01:75:99:1a:78:b5:96:0b:80:73:fb:46:8a:dc:ba:b4:
e1:09:3d:6d:c3:91:55:8f:c6:71:4c:33:40:5c:1f:46:34:b7:
b2:df:9d:30:0e:5f:a9:02:60:d6:18:98:d5:30:1d:6a:7c:ad:
bc:6d:82:90:c7:9e:77:d9:45:bb:14:1f:ab:51:34:ab:46:72:
e7:7e:22:4a:79:f2:c7:4b:18:37:90:b2:cf:df:36:82:10:8b:
47:f2:df:2a:22:e2:8f:13:af:ca:5b:de:74:67:8c:f4:1a:82:
a2:a3:9f:62:80:31:ec:50:37:3a:5b:e6:70:57:e8:78:b0:35:
06:26:7e:f7:da:eb:65:99:41:aa:15:b5:06:54:29:b8:e5:b3:
4d:e0:3d:f8:e4:ee:ef:7f:2d:26:c2:53:9a:15:0e:f3:b7:d6:
c7:9f:0a:af:02:c2:51:70:29:09:13:a7:be:bc:17:f0:f5:28:
d2:b1:69:7e:1a:d3:3e:6e:ef:77:f8:77:2c:71:ca:27:12:0f:
c7:6f:91:fa:aa:89:84:c9:f7:ad:20:1a:31:83:67:5e:30:af:
69:09:fa:ce:e7:58:6f:e9:ce:b0:af:3d:dc:cd:78:67:35:d8:
2b:b3:78:13:4d:87:e1:6c:98:e3:55:d3:a3:b2:63:12:9d:30:
08:bb:79:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:11 2024 by rpki-client on console-ams.rpki-client.org