Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/cavnhv5sqfTHMYC901hsHNdCE1w.roa
File: cavnhv5sqfTHMYC901hsHNdCE1w.roa (raw, json)
Hash identifier: sgYyokrOdQmfd3UU75q2C9ebC5aJCT2+valzrSiBxz0=
Subject key identifier: 71:AB:E7:86:FE:6C:A9:F4:C7:31:80:BD:D3:58:6C:1C:D7:42:13:5C
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018C6CCFCBDDC9FB8968BCA5110DD836D431
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/cavnhv5sqfTHMYC901hsHNdCE1w.roa
Signing time: Fri 15 Dec 2023 09:30:06 +0000
ROA not before: Fri 15 Dec 2023 09:30:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 92.53.188.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6c:cf:cb:dd:c9:fb:89:68:bc:a5:11:0d:d8:36:d4:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Dec 15 09:30:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71abe786fe6ca9f4c73180bdd3586c1cd742135c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:16:14:e8:2c:9f:0f:5b:6d:bc:34:3f:07:c3:
ce:24:2b:6d:c2:2f:86:67:b5:11:85:98:62:17:46:
23:77:3c:7d:2e:55:c0:dc:70:4d:06:75:91:b2:ea:
7b:d7:35:73:21:b1:8b:dc:20:65:e2:db:72:05:50:
e9:2c:17:9d:0e:03:ea:a5:bb:88:0e:04:8c:8b:e6:
e5:34:4b:9c:c4:d5:e1:14:67:ff:b6:c2:65:f3:25:
33:b4:2f:d7:bb:35:f2:4e:ff:38:81:7d:85:c9:c8:
6a:72:65:fa:69:7c:b8:89:5e:16:e5:d9:35:40:c1:
57:8c:c7:48:31:eb:e0:fc:9e:57:c0:32:91:d2:75:
4a:50:93:6a:c9:66:14:c0:8c:89:4e:60:c4:85:f7:
59:e1:ac:9a:bf:57:1f:f8:fd:b6:92:5e:f1:6c:be:
06:58:32:1c:52:2d:6c:38:19:74:ab:4f:ff:79:12:
12:c9:cd:ae:f0:04:37:b5:ea:a4:2a:d0:fe:b8:56:
3b:b2:d9:41:4b:90:30:c6:d4:56:c3:33:bd:0b:92:
09:62:d0:ae:b1:4f:25:7f:4a:57:5b:b2:db:27:9e:
0c:1f:e7:04:db:4b:de:6d:bb:64:43:5e:ea:80:4c:
9a:cc:8a:9f:c0:13:ae:12:aa:e6:c0:db:18:1d:88:
b5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:AB:E7:86:FE:6C:A9:F4:C7:31:80:BD:D3:58:6C:1C:D7:42:13:5C
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/cavnhv5sqfTHMYC901hsHNdCE1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.188.0/22
Signature Algorithm: sha256WithRSAEncryption
49:43:34:13:48:ed:0a:c5:8f:39:3f:a6:0d:13:32:5a:f2:28:
e4:f4:a5:be:21:3b:3c:d7:d3:43:98:b7:5a:3e:82:a5:c3:db:
39:49:28:8e:16:2c:6d:1c:e0:c7:72:eb:89:79:bb:28:e1:55:
c9:ef:c8:e6:f5:ef:c0:ab:3a:a9:7f:ac:90:26:ac:90:2e:1a:
81:a5:46:04:77:3f:29:60:2d:a3:c2:a2:f7:3e:46:2a:09:e2:
bb:50:d9:99:c6:9c:5c:f6:2b:51:20:14:5c:61:59:e5:16:43:
82:8f:49:21:fb:47:c2:07:6a:fa:38:0e:50:45:06:a8:92:3d:
73:a2:f2:e1:17:80:7d:69:9b:bb:16:57:2d:a1:00:cc:82:33:
73:da:d3:5d:8b:66:ab:b0:93:2a:24:69:ff:f2:84:75:37:43:
1f:a4:10:ef:68:a5:31:7b:11:3f:6d:00:98:3f:fb:23:90:87:
2c:ec:6c:53:3e:e4:f8:28:ac:15:ad:d3:1f:e8:bb:7a:ba:91:
9b:c8:ab:dd:50:ce:ba:7b:e7:dd:0c:7c:82:ba:c2:63:b6:23:
03:96:11:ab:ba:dd:24:00:1e:e4:c4:9e:22:4f:03:21:25:2a:
3e:08:14:33:d6:7e:19:26:e7:c9:66:07:ec:62:e0:b4:1b:e0:
f1:d2:5e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:05 2024 by rpki-client on console-ams.rpki-client.org