Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/275dc5-6f15-45fe-941f-9b64444ff688/1/Er3EkC-u_crbs5KAaP13X8ZfcDg.roa
File: Er3EkC-u_crbs5KAaP13X8ZfcDg.roa (raw, json)
Hash identifier: hbrNc+Ui76nL5s/kKRZrMzOgiO/oXpyEWthznMmQhXM=
Subject key identifier: 12:BD:C4:90:2F:AE:FD:CA:DB:B3:92:80:68:FD:77:5F:C6:5F:70:38
Certificate issuer: /CN=16a4e10723351270cd8c9cc64b096488e64e230e
Certificate serial: 0189F43DC9C5B69B0E99A20B875A712A0D15
Authority key identifier: 16:A4:E1:07:23:35:12:70:CD:8C:9C:C6:4B:09:64:88:E6:4E:23:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FqThByM1EnDNjJzGSwlkiOZOIw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/275dc5-6f15-45fe-941f-9b64444ff688/1/Er3EkC-u_crbs5KAaP13X8ZfcDg.roa
Signing time: Mon 14 Aug 2023 13:30:37 +0000
ROA not before: Mon 14 Aug 2023 13:30:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 194.45.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:3d:c9:c5:b6:9b:0e:99:a2:0b:87:5a:71:2a:0d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16a4e10723351270cd8c9cc64b096488e64e230e
Validity
Not Before: Aug 14 13:30:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12bdc4902faefdcadbb3928068fd775fc65f7038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3f:4a:c6:c0:00:8d:87:e1:cc:69:12:82:09:
1d:af:75:0f:cb:14:85:db:1e:36:32:41:bf:77:1d:
43:f1:ab:71:8e:1e:f3:7d:78:01:ff:c3:29:c4:d5:
03:7e:2e:27:09:6f:a2:a2:62:45:50:88:83:e2:0a:
a6:3a:28:3a:a4:d6:d3:1e:aa:57:c4:72:74:41:27:
64:f8:72:5a:a4:41:25:40:e5:0f:f7:d9:9e:76:c5:
e6:ee:89:d5:7c:67:b8:08:9a:a0:0d:62:92:16:3e:
46:94:be:bf:14:92:d0:59:29:09:7c:46:6d:64:49:
02:2a:d3:e2:69:23:b2:34:b5:32:42:3b:f7:fe:67:
a3:a7:6d:b6:1c:65:ab:fb:b4:cd:3f:57:75:46:59:
41:ac:4f:00:41:88:2a:9f:bd:25:49:bd:01:6e:52:
ad:25:e7:cd:9c:f8:a8:f9:7a:85:f5:83:be:a2:de:
21:56:ca:82:92:e4:b5:10:37:50:d5:0b:bd:1f:6b:
97:2a:83:31:bf:e9:d5:a3:58:a6:b7:40:da:c5:1d:
ad:5c:67:fb:8e:ce:f0:45:9b:35:45:93:16:c6:6f:
f9:18:da:8d:1b:21:68:29:18:b8:20:e5:e2:21:a3:
70:ac:09:2d:ee:72:c3:1f:aa:2e:fa:51:27:46:09:
af:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BD:C4:90:2F:AE:FD:CA:DB:B3:92:80:68:FD:77:5F:C6:5F:70:38
X509v3 Authority Key Identifier:
keyid:16:A4:E1:07:23:35:12:70:CD:8C:9C:C6:4B:09:64:88:E6:4E:23:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FqThByM1EnDNjJzGSwlkiOZOIw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/275dc5-6f15-45fe-941f-9b64444ff688/1/Er3EkC-u_crbs5KAaP13X8ZfcDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/275dc5-6f15-45fe-941f-9b64444ff688/1/FqThByM1EnDNjJzGSwlkiOZOIw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.103.0/24
Signature Algorithm: sha256WithRSAEncryption
82:dc:69:e6:48:8d:72:e1:93:a6:b1:95:8d:18:62:59:a6:60:
eb:64:bf:06:4a:e0:dc:54:9f:1f:7b:02:65:b9:af:69:8e:e4:
8d:e7:bd:e9:48:d6:b3:f2:1d:e2:61:b3:49:28:7f:cb:c5:49:
a1:fd:26:7d:f7:55:ec:6f:a3:83:69:38:2c:d8:2e:49:b3:f5:
1a:9b:b2:8a:31:b0:12:e7:02:70:c9:c1:ec:cf:70:8c:92:2b:
35:26:a7:f6:e0:5a:3d:f2:38:d4:20:4f:ae:02:d2:54:74:81:
0f:dc:ab:cd:fd:bc:80:c6:ab:70:c0:dc:35:e8:a4:88:09:a1:
5a:b3:b0:5c:f6:ed:de:2e:04:3f:6e:dc:84:2d:e2:dc:51:84:
cc:3e:39:4e:a4:c9:7f:80:34:b7:97:53:01:3a:5d:4f:07:9f:
c3:2f:cd:80:5a:15:82:2f:35:63:c6:f2:9d:28:f3:c4:44:26:
65:7c:14:e1:d8:ed:8b:ff:3a:8e:b6:fb:61:c2:10:e8:d0:18:
00:54:83:bb:bd:24:80:58:d9:dd:59:36:11:60:28:8c:b4:3a:
df:b3:8c:37:8f:8f:17:9e:6f:a3:c3:72:20:3b:74:a2:03:a6:
a6:7a:27:41:cc:dc:f0:6a:bf:00:09:8c:9a:d3:2a:41:b2:70:
f8:85:7f:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:12 2024 by rpki-client on console-ams.rpki-client.org