Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/O9kK_HRyHmAXPJpy5APaxEnlU00.roa
File: O9kK_HRyHmAXPJpy5APaxEnlU00.roa (raw, json)
Hash identifier: CsfY2csddOcGgbKTHhgvNO7xWGUAXSSqQ4FbjKTTsuw=
Subject key identifier: 3B:D9:0A:FC:74:72:1E:60:17:3C:9A:72:E4:03:DA:C4:49:E5:53:4D
Certificate issuer: /CN=9dde45e9367801d18ef0fb0a9fe513beb0e4a54a
Certificate serial: 01857079943EBEE7AC7CA157E7232BD1A322
Authority key identifier: 9D:DE:45:E9:36:78:01:D1:8E:F0:FB:0A:9F:E5:13:BE:B0:E4:A5:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nd5F6TZ4AdGO8PsKn-UTvrDkpUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/O9kK_HRyHmAXPJpy5APaxEnlU00.roa
Signing time: Mon 02 Jan 2023 03:14:54 +0000
ROA not before: Mon 02 Jan 2023 03:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50848
IP address blocks: 194.247.18.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:94:3e:be:e7:ac:7c:a1:57:e7:23:2b:d1:a3:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dde45e9367801d18ef0fb0a9fe513beb0e4a54a
Validity
Not Before: Jan 2 03:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bd90afc74721e60173c9a72e403dac449e5534d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e1:26:82:1f:31:3c:af:2d:75:42:9c:60:1e:
3f:8d:35:b2:81:3c:de:5f:23:54:39:60:5f:2a:22:
d1:21:3f:87:af:fa:fc:56:11:19:9e:c2:18:a0:b7:
86:af:2e:3c:70:ca:42:7b:85:5f:e5:c1:b6:0f:82:
f4:55:29:9b:70:88:b3:f6:ef:15:12:f5:89:91:ef:
13:bb:c2:6f:41:94:e8:35:73:67:0f:6e:88:d0:54:
96:ba:cd:1d:04:9a:e4:50:88:2c:3b:f7:42:51:ca:
17:c1:81:ac:9e:ba:a5:84:8c:ae:d8:1e:ce:b5:0e:
1b:9a:73:b7:b6:53:74:61:89:ad:0a:b6:37:04:f9:
07:02:ff:4b:72:d2:40:6b:21:b4:df:1e:27:09:aa:
a3:0a:67:f1:83:b8:b9:12:10:9b:f4:81:b6:b4:57:
06:94:81:f6:fd:80:18:42:43:c5:0f:a9:23:76:43:
8c:e0:75:11:0b:1f:91:d1:83:36:2b:38:8e:30:8e:
2c:aa:e7:ac:dc:cd:20:36:2c:be:53:9f:bc:35:3f:
f3:89:19:e1:28:d0:29:07:07:be:b4:b2:1e:71:ec:
60:71:0d:25:17:c0:b7:e6:95:aa:1e:ae:79:52:67:
c2:48:77:09:a1:c1:33:84:2d:73:41:fc:8e:ac:ee:
92:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D9:0A:FC:74:72:1E:60:17:3C:9A:72:E4:03:DA:C4:49:E5:53:4D
X509v3 Authority Key Identifier:
keyid:9D:DE:45:E9:36:78:01:D1:8E:F0:FB:0A:9F:E5:13:BE:B0:E4:A5:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nd5F6TZ4AdGO8PsKn-UTvrDkpUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/O9kK_HRyHmAXPJpy5APaxEnlU00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/nd5F6TZ4AdGO8PsKn-UTvrDkpUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.18.0/23
Signature Algorithm: sha256WithRSAEncryption
77:a8:50:ce:f9:04:20:0b:04:e1:50:1c:30:e3:d8:29:cc:b3:
41:5d:f9:64:d9:ee:ff:f2:18:e7:d7:16:28:9c:48:65:54:b7:
66:2e:42:87:68:11:02:b5:6c:8b:3d:16:bf:ca:59:33:24:04:
60:8d:2c:48:63:ce:0f:d5:7e:0d:25:1b:ff:3c:73:fd:76:39:
58:5e:33:09:2d:05:5f:ab:30:33:cb:9b:fe:06:1a:e2:5f:b4:
49:9d:ae:0e:6f:d6:4e:24:1f:18:b4:ec:63:bd:dd:6e:de:cc:
a9:93:63:a2:a9:99:29:3c:a1:75:c6:e5:c1:46:80:d4:3e:d5:
0d:4b:9d:ea:d5:b6:78:69:9a:3e:f1:0e:58:ea:41:c0:cc:6a:
2f:70:10:29:e8:7c:5d:e5:ad:3c:3d:23:77:57:35:a8:11:ca:
96:d2:9b:01:10:c3:5f:e9:07:92:4b:f1:88:1c:2b:80:9c:bd:
1a:71:1f:e2:85:06:ce:fd:8f:62:89:fe:56:b8:2b:00:08:36:
e0:d8:87:c7:9d:03:24:9b:8f:ef:f5:78:ab:55:54:8d:61:54:
99:92:27:8c:57:fc:92:20:93:e8:09:25:3d:ab:83:d8:d9:36:
24:82:d8:84:21:6a:36:d8:14:7f:e3:76:e9:49:b0:ac:30:40:
83:e1:f6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:18 2024 by rpki-client on console-ams.rpki-client.org