Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/Rrq-DzJ8O6d6E6FHxV5DyJHcI5k.roa
File: Rrq-DzJ8O6d6E6FHxV5DyJHcI5k.roa (raw, json)
Hash identifier: Ed8pb2nQMF7d2HKN6K+uso1KkEwQVs87uIWhxIUAes4=
Subject key identifier: 46:BA:BE:0F:32:7C:3B:A7:7A:13:A1:47:C5:5E:43:C8:91:DC:23:99
Certificate issuer: /CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Certificate serial: 018E858627A9D21D7A7457D3DA1AB27DD96D
Authority key identifier: 36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/Rrq-DzJ8O6d6E6FHxV5DyJHcI5k.roa
Signing time: Thu 28 Mar 2024 14:45:45 +0000
ROA not before: Thu 28 Mar 2024 14:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 185.194.204.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Apr 2024 08:40:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:85:86:27:a9:d2:1d:7a:74:57:d3:da:1a:b2:7d:d9:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3694fcc6bf6a8740fa7814641fd9d6ec8d862e5f
Validity
Not Before: Mar 28 14:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46babe0f327c3ba77a13a147c55e43c891dc2399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:12:e0:59:6e:28:56:a7:99:4a:6a:d6:c1:61:
b1:cc:48:a4:51:68:5c:82:0c:a1:e3:b7:89:99:8f:
ac:28:37:3a:d8:6c:02:a6:76:7b:2e:e5:46:f6:9a:
8a:8d:25:b3:c1:e8:64:bd:b3:5c:85:04:06:d9:8d:
46:6a:d7:d2:17:5d:59:a5:93:cc:22:e5:28:1b:ec:
58:bf:d6:ba:57:2b:34:08:1a:dc:ee:a4:bd:d8:f5:
80:9f:37:2e:73:1f:37:e6:d0:d7:a1:ce:8b:1e:fd:
56:50:4c:93:4a:19:53:ba:29:f8:53:b9:f5:ca:ff:
d3:62:30:80:01:1f:9d:33:05:7d:ab:15:75:ac:45:
d6:5f:76:f6:98:73:ce:99:6c:00:49:ab:d6:73:61:
bc:31:f0:cf:32:5e:6e:8d:2e:88:47:72:47:7b:b1:
2a:e9:87:45:6a:8c:2d:cd:ab:e3:86:a1:0a:98:54:
64:2c:8b:fb:86:b9:27:00:13:8c:77:e0:83:72:fa:
52:5c:ce:77:df:c3:99:0f:72:b1:b8:a5:62:04:f3:
df:da:b7:04:a4:ca:59:aa:2e:28:4f:1d:9f:f0:de:
14:ea:de:1e:4f:41:37:ae:5b:bf:8d:2e:04:c7:15:
4f:5c:4f:af:9b:99:9e:a9:7a:71:9c:a3:d1:54:df:
e8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:BA:BE:0F:32:7C:3B:A7:7A:13:A1:47:C5:5E:43:C8:91:DC:23:99
X509v3 Authority Key Identifier:
keyid:36:94:FC:C6:BF:6A:87:40:FA:78:14:64:1F:D9:D6:EC:8D:86:2E:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpT8xr9qh0D6eBRkH9nW7I2GLl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/Rrq-DzJ8O6d6E6FHxV5DyJHcI5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/a8dd9e-71f2-4f77-b575-0d3fce429bde/1/NpT8xr9qh0D6eBRkH9nW7I2GLl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.204.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:a9:4c:24:ee:b9:1d:3a:fc:88:31:97:68:50:5e:61:42:23:
25:23:4e:1b:39:33:35:bf:92:c5:00:89:86:6f:d3:e0:f2:98:
8a:62:89:bd:6f:bb:f3:ea:a4:32:d7:52:f0:3a:67:25:9c:cf:
fa:f3:ff:ad:65:dd:d7:a8:52:65:2e:b3:62:3f:8c:99:94:e3:
0a:45:20:8d:71:6e:20:a9:20:e3:c4:00:7c:87:dd:bd:d8:27:
e0:e7:a0:8d:67:b1:26:33:14:f6:ab:c9:87:80:7a:eb:c7:2f:
d9:b6:1f:60:ed:60:84:f3:02:92:3c:1e:fd:5e:98:f8:3c:5f:
25:29:4a:47:76:6a:06:04:84:4f:ea:8c:25:00:47:11:4c:79:
40:f9:bc:79:59:48:5d:34:1e:09:be:00:b8:73:09:0c:09:c2:
94:0f:e5:34:2f:f6:0a:27:8b:d7:9f:7b:da:80:a5:f8:ec:cf:
c3:56:d7:3c:fe:83:d3:77:c6:ec:5a:0a:6e:50:04:47:56:11:
b8:37:4e:55:60:0f:fb:2e:a6:c3:dd:df:2e:30:79:0c:7f:1e:
9c:a8:9b:60:6c:35:e9:47:94:3e:ca:24:89:cf:a0:15:76:1f:
bf:d7:2f:9d:24:b0:4d:53:c2:04:16:91:22:bb:72:ae:cd:da:
36:0d:5c:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:16 2024 by rpki-client on console-ams.rpki-client.org