Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/AaU73iZAAXhBA5TkcI62jdHCoOw.roa
File: AaU73iZAAXhBA5TkcI62jdHCoOw.roa (raw, json)
Hash identifier: jK0BMeh0JLS81VLvbjCHF1ox676EiQPs1HE3lCUB/GA=
Subject key identifier: 01:A5:3B:DE:26:40:01:78:41:03:94:E4:70:8E:B6:8D:D1:C2:A0:EC
Certificate issuer: /CN=17c203e3f365923a843d3220317a1c68cf74de0f
Certificate serial: 018572CCA3E3030A56D48A5FA9A94173D7F1
Authority key identifier: 17:C2:03:E3:F3:65:92:3A:84:3D:32:20:31:7A:1C:68:CF:74:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F8ID4_NlkjqEPTIgMXocaM903g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/AaU73iZAAXhBA5TkcI62jdHCoOw.roa
Signing time: Mon 02 Jan 2023 14:04:51 +0000
ROA not before: Mon 02 Jan 2023 14:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202863
IP address blocks: 81.94.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:a3:e3:03:0a:56:d4:8a:5f:a9:a9:41:73:d7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17c203e3f365923a843d3220317a1c68cf74de0f
Validity
Not Before: Jan 2 14:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01a53bde26400178410394e4708eb68dd1c2a0ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e1:70:0a:a9:15:93:87:16:8c:72:f7:86:0c:
f1:e7:52:6f:b2:f6:e1:65:c5:a8:b9:46:6a:dc:07:
2f:0a:0a:e5:f3:ce:c5:c0:a3:a8:1d:d9:a3:70:6f:
fb:9b:1b:2a:7e:bd:1a:fc:02:8d:83:1a:92:f2:09:
bb:1b:f1:95:4c:e7:57:72:ef:df:39:d8:6f:8a:4f:
e6:c5:cb:bd:66:56:da:0c:2a:42:07:d8:e3:07:e1:
0e:08:9a:eb:f9:b4:c2:35:48:30:06:f5:dc:6a:69:
04:47:18:b3:47:52:80:a6:f7:3c:8f:7d:7d:ae:f3:
65:b7:c6:df:54:25:62:f2:2a:7a:1d:2a:f8:b4:16:
a8:8d:5e:12:96:e6:8d:28:11:cd:41:58:04:8b:21:
52:bc:b0:f8:87:88:a4:77:02:d8:ed:a1:2c:d8:0b:
c7:dd:0c:6b:3a:21:6d:aa:60:90:3b:da:ae:f1:95:
c7:db:37:90:87:72:fa:06:c6:6a:a4:4f:71:a3:41:
0e:7e:86:da:63:77:d9:68:d2:ab:20:f1:42:6c:af:
68:cd:65:d0:aa:52:c1:9e:fb:5b:b4:6a:9b:d4:ac:
45:34:f4:fe:7f:af:e8:91:72:8d:9f:1f:4c:98:b5:
6e:49:79:64:84:c2:c4:19:99:22:6f:bd:80:6f:27:
25:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:A5:3B:DE:26:40:01:78:41:03:94:E4:70:8E:B6:8D:D1:C2:A0:EC
X509v3 Authority Key Identifier:
keyid:17:C2:03:E3:F3:65:92:3A:84:3D:32:20:31:7A:1C:68:CF:74:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F8ID4_NlkjqEPTIgMXocaM903g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/AaU73iZAAXhBA5TkcI62jdHCoOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/89ae8e-4674-455d-9f23-ac67a36e4aab/1/F8ID4_NlkjqEPTIgMXocaM903g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.94.234.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:56:40:32:d7:f7:b7:f5:90:4c:8b:38:6c:b8:98:76:8f:73:
30:08:1f:b1:03:94:52:a4:14:59:af:48:53:d1:01:27:4c:e2:
7d:a9:1f:6a:b4:e0:02:ef:8f:33:f3:7f:a0:18:4a:a7:71:1b:
bc:34:79:b6:9a:da:c2:8e:a9:eb:64:2f:f1:fc:2a:e5:c1:a2:
a7:a4:f1:cc:19:bb:74:91:61:9c:93:e7:ba:e0:35:bb:42:b0:
9b:93:7d:58:6d:a0:2d:ee:1d:fc:1e:63:61:43:c6:2f:6a:c4:
f3:55:28:86:74:cc:08:f8:04:5f:3a:f5:15:1c:99:3d:2d:1e:
a3:42:9d:9e:d7:68:55:33:63:ee:b7:32:c7:40:37:99:dd:1d:
b6:f2:aa:15:6c:3f:8d:c8:b6:61:d0:43:9e:b9:4e:40:e9:c4:
54:b5:54:4f:42:cb:e3:af:8b:9b:c8:1a:d1:5d:98:9b:fb:03:
58:3e:9e:41:2d:3d:de:f5:9c:f1:3c:90:e1:e1:7b:c8:7a:ac:
d9:05:01:ca:64:02:22:45:20:c1:c2:a2:ef:3f:4f:23:ce:20:
77:b2:eb:9b:1f:20:f8:e7:fd:e4:f5:d0:7d:8a:7f:80:59:42:
59:54:35:d3:1e:f2:42:d9:f6:be:d4:b3:3a:a1:ff:88:2a:c3:
48:fe:52:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:05 2024 by rpki-client on console-ams.rpki-client.org