Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/0DdELoIJN1NP78CXUphSBqTnD8A.roa
File: 0DdELoIJN1NP78CXUphSBqTnD8A.roa (raw, json)
Hash identifier: 0AzNFYgVmM8BegtJR8NTHp7IMYY92gWkWweTBpSJHOU=
Subject key identifier: D0:37:44:2E:82:09:37:53:4F:EF:C0:97:52:98:52:06:A4:E7:0F:C0
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 018C63BC2F4BE7163F7FAE58A70FC5ABB862
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/0DdELoIJN1NP78CXUphSBqTnD8A.roa
Signing time: Wed 13 Dec 2023 15:12:06 +0000
ROA not before: Wed 13 Dec 2023 15:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6762
IP address blocks: 194.9.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:63:bc:2f:4b:e7:16:3f:7f:ae:58:a7:0f:c5:ab:b8:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Dec 13 15:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d037442e820937534fefc09752985206a4e70fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0b:23:e0:f6:b9:36:9c:ab:51:1b:08:71:92:
8a:ac:f6:09:68:23:6e:dc:69:b2:72:9a:ac:67:69:
3d:22:bd:d2:f7:a8:d8:1a:54:b6:82:c6:69:e2:f6:
51:7f:36:20:d2:18:42:61:2d:e4:81:f7:15:37:30:
93:b1:97:46:2b:a8:f7:31:96:ea:39:ab:c7:74:62:
5a:5a:cf:c9:53:9d:b0:1d:44:1e:65:44:b7:41:2e:
84:fa:b2:7a:4a:c7:c1:7a:0b:26:0d:12:75:19:a8:
bc:d1:eb:40:10:42:56:21:b0:ad:bf:3b:a8:8f:a3:
07:cc:a2:9f:7e:fb:9a:ca:d7:05:5a:93:58:74:5c:
ec:27:3b:f6:97:9e:b3:64:b2:ed:c4:da:7b:99:3b:
78:17:44:3d:fd:39:a4:f4:b2:be:df:b5:2d:79:20:
27:16:d5:36:bb:88:f0:31:69:20:5e:f7:eb:6d:c5:
67:db:be:cf:77:7e:93:db:86:58:bf:dd:54:b0:aa:
5c:3a:fb:10:38:ef:66:55:b1:00:bc:39:1f:32:38:
6b:80:03:0c:b7:30:89:5a:1c:f3:ce:6f:c3:1d:0e:
9b:d3:14:d8:8a:ff:40:77:e1:9b:e6:e3:21:23:0b:
c0:86:7d:8c:e5:a6:5d:f1:0e:8b:eb:98:be:66:41:
67:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:37:44:2E:82:09:37:53:4F:EF:C0:97:52:98:52:06:A4:E7:0F:C0
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/0DdELoIJN1NP78CXUphSBqTnD8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.181.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:b7:cd:ac:20:c5:d6:5f:86:c8:b4:9f:7f:dc:ce:20:10:56:
2b:ec:4e:59:6f:34:ad:86:61:ff:b8:18:a1:03:95:b3:8d:86:
6d:96:68:02:bf:65:bf:65:4d:f5:5e:37:95:bb:a6:eb:e8:65:
3a:1a:c1:fe:44:d1:2d:ed:14:28:ed:e9:50:2e:a6:c7:3a:0a:
4c:df:56:0f:00:1a:b0:9f:e6:83:7a:cc:8b:be:0d:cd:40:50:
c1:36:41:0d:41:00:51:6a:59:a9:a0:ae:c1:bd:29:26:5d:19:
78:12:88:24:ac:87:ec:b8:d0:e0:74:59:69:25:e3:49:e8:fe:
69:91:2b:6c:58:b7:ec:90:6b:63:68:a5:95:92:f0:08:0c:6f:
48:6f:66:72:4d:73:1d:f3:94:94:e8:ab:38:b6:75:a4:b5:12:
df:be:5b:e2:33:34:73:c7:6c:5b:32:14:c7:9e:72:62:3f:19:
79:f4:e3:c8:cc:02:58:69:42:0f:89:35:d6:e4:9b:4d:3c:a0:
3b:9c:a8:2c:0f:20:ab:f4:27:a4:5f:61:89:ab:b4:4b:2e:37:
40:27:99:90:51:b7:30:c2:65:f2:67:af:f9:d8:c7:ae:1c:3c:
a3:bf:e0:e6:15:cf:1c:a6:76:18:69:c9:6b:15:40:6c:cf:0a:
6b:d2:3e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:06 2024 by rpki-client on console-ams.rpki-client.org