Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/1cKosp1OCnGLOz9k9Im-F-tRbaI.roa
File: 1cKosp1OCnGLOz9k9Im-F-tRbaI.roa (raw, json)
Hash identifier: OCqNjAIuvBvu0OV8obLv162D1rfaqtdkI+XLhe7pVa8=
Subject key identifier: D5:C2:A8:B2:9D:4E:0A:71:8B:3B:3F:64:F4:89:BE:17:EB:51:6D:A2
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018CC72771E2833540F0EDDA8735647D5308
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/1cKosp1OCnGLOz9k9Im-F-tRbaI.roa
Signing time: Mon 01 Jan 2024 22:31:40 +0000
ROA not before: Mon 01 Jan 2024 22:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8480
IP address blocks: 194.190.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 15:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:71:e2:83:35:40:f0:ed:da:87:35:64:7d:53:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 22:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d5c2a8b29d4e0a718b3b3f64f489be17eb516da2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cb:38:76:2a:62:15:05:2b:be:e7:e1:c7:6f:
04:c9:82:81:43:6a:08:9e:31:c0:70:57:0d:f5:93:
38:15:37:9a:5f:0c:db:36:6a:b4:0f:36:8f:13:17:
89:e2:70:df:fb:80:a7:de:52:1f:af:8b:6c:ee:5b:
a8:95:eb:9e:85:6f:7d:b5:77:4c:41:36:2b:46:67:
43:eb:b0:9f:25:e3:bb:2b:d2:a9:30:f3:fb:24:56:
73:99:39:3c:93:52:61:d6:a6:ba:61:c1:c7:7f:6f:
8f:ce:87:57:59:7c:4c:b7:40:bc:ce:25:2f:fb:9a:
79:89:a7:7d:6f:0f:99:55:66:da:58:b0:8e:3a:6c:
18:94:79:16:ce:ae:52:9d:cd:63:d3:be:a0:37:0d:
a2:15:a5:c3:00:17:00:f7:83:0a:2d:1f:97:7d:e3:
af:9f:f1:56:4b:a1:4c:16:8f:a5:d9:3c:9d:ba:de:
fc:9f:4e:79:2a:64:7a:12:14:93:10:b3:a1:49:cd:
41:93:0a:2b:71:d9:33:3a:a8:f0:74:17:11:7c:03:
56:60:16:b8:34:02:24:1c:20:73:25:a6:fe:88:c6:
cb:d4:1b:f0:a4:fe:05:e3:e7:60:3d:cd:7f:97:f0:
0d:c8:49:b7:e0:70:71:90:2b:0a:1f:41:9f:93:22:
3c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:C2:A8:B2:9D:4E:0A:71:8B:3B:3F:64:F4:89:BE:17:EB:51:6D:A2
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/1cKosp1OCnGLOz9k9Im-F-tRbaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.227.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:39:b2:77:86:3b:27:c4:60:e3:0d:5e:5f:1c:cb:64:bb:81:
6d:8f:16:73:2e:34:e0:3f:05:e3:eb:ac:6f:4e:23:b3:97:72:
a2:03:c9:93:16:78:26:64:0e:42:59:24:56:43:a9:d7:2c:30:
38:31:b5:d5:87:b1:75:20:47:0b:64:ed:6d:25:b2:93:5a:f2:
47:d3:2c:1e:fc:a7:6e:29:a4:c6:6e:07:55:fb:17:85:a7:2a:
a8:0f:55:d7:94:7a:a0:72:b2:f3:ba:55:97:6c:68:cd:5b:1e:
2e:76:9d:32:a2:7a:3b:73:5e:be:61:42:3e:8d:f7:73:52:c1:
62:92:6f:31:56:05:9d:cb:59:f9:2f:ca:b9:39:ed:1c:fa:c0:
14:41:0b:70:dc:77:f7:ee:d4:01:88:6a:63:e2:2f:e9:15:59:
77:78:8c:42:ad:47:35:31:0f:41:ab:65:04:ff:7b:02:32:06:
c7:63:e5:4e:24:8a:5c:fa:ca:d8:46:9a:a9:25:8b:e4:1f:20:
aa:b8:ac:d0:d1:46:46:da:e7:4e:56:1f:65:bb:0c:67:ed:f8:
aa:58:9f:07:5e:c9:46:d5:5a:5c:f3:5d:5b:99:0e:31:55:59:
e7:84:ff:ef:69:f9:21:57:b3:3d:85:15:f1:dd:40:61:21:f7:
32:0a:0d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org