Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/G3i7sugUnMBnwzVfaTfZDWyy_cE.roa
File: G3i7sugUnMBnwzVfaTfZDWyy_cE.roa (raw, json)
Hash identifier: YrOr6kdOnLo1oDJgdb9Pttjc21MofHDhWxjO4m8IFYw=
Subject key identifier: 1B:78:BB:B2:E8:14:9C:C0:67:C3:35:5F:69:37:D9:0D:6C:B2:FD:C1
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 01856D9D2E8AA1193663C2C1663A616A0FB8
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/G3i7sugUnMBnwzVfaTfZDWyy_cE.roa
Signing time: Sun 01 Jan 2023 13:54:55 +0000
ROA not before: Sun 01 Jan 2023 13:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24951
IP address blocks: 194.11.232.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:2e:8a:a1:19:36:63:c2:c1:66:3a:61:6a:0f:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Jan 1 13:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b78bbb2e8149cc067c3355f6937d90d6cb2fdc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c3:fd:14:06:87:66:f1:dc:3b:3d:32:fb:2a:
21:85:76:62:dc:49:b5:ae:00:c7:ee:88:b9:dc:c0:
04:87:26:1c:bc:1a:b7:7a:a9:7a:68:79:fd:5a:48:
92:8d:df:70:e0:4b:58:40:d3:41:2e:4b:0c:3b:f3:
54:3c:78:44:8a:a3:cb:f0:34:09:8e:e9:09:40:77:
68:1c:e0:bc:be:69:28:3b:8f:32:1e:1c:ad:56:5a:
31:80:23:04:46:fd:5a:49:85:0d:bd:3f:54:6f:cc:
a2:b0:b0:13:a4:d9:df:3d:53:ea:9c:fd:02:e9:dd:
b4:20:fb:f9:da:18:e9:bb:a7:dd:01:d6:ce:ce:9b:
1f:b7:90:88:5f:33:1e:5f:e5:04:07:76:76:a7:cb:
0a:85:2b:60:e5:d3:4c:58:d1:69:9f:c5:94:1d:3d:
85:c2:88:64:da:3e:3e:61:3e:c9:26:d9:42:a3:f6:
0b:7d:64:1b:a0:34:dd:a1:ec:dd:d8:4e:3d:5a:6a:
66:b4:c1:22:a9:cf:e4:1d:31:70:6f:cb:ae:54:58:
75:72:ea:55:96:11:b5:e3:06:3a:34:25:17:02:f8:
9a:cc:38:40:f9:19:19:f7:8b:2b:b1:a5:79:20:fb:
38:d7:18:8f:26:b6:b3:77:ca:b5:4a:1a:85:b5:3c:
63:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:78:BB:B2:E8:14:9C:C0:67:C3:35:5F:69:37:D9:0D:6C:B2:FD:C1
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/G3i7sugUnMBnwzVfaTfZDWyy_cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.232.0/23
Signature Algorithm: sha256WithRSAEncryption
17:14:77:45:81:ad:95:81:33:46:0c:5b:0c:6a:4f:b9:66:8c:
70:01:35:d4:f4:df:32:e0:ff:a8:52:d0:4e:3d:47:d5:8c:22:
cc:25:8b:43:47:01:b7:da:2c:12:87:df:f3:d7:2c:d7:dd:2f:
eb:69:80:dd:49:00:62:cf:2e:58:3d:b1:c8:2f:a5:f5:ba:d8:
ae:aa:48:4b:28:90:3f:45:60:d5:36:71:07:c5:08:34:06:21:
a5:f2:a5:2f:9d:69:ce:1a:2f:04:cf:b8:47:bc:0c:7f:c5:c7:
99:b9:0c:10:9b:3a:50:06:3d:b0:50:b0:c8:2d:52:35:28:54:
73:f2:e3:23:7b:ef:e4:4b:9d:16:8e:47:92:7c:88:5c:97:6c:
5f:7a:83:0b:8a:0a:11:82:c4:4b:51:1e:18:02:25:7a:35:85:
5d:e1:56:c9:2b:c2:c4:43:97:4f:dc:41:7f:1f:bf:8a:e5:ed:
92:b3:e7:87:6b:70:ab:9d:74:50:4b:e9:c4:8f:16:6c:53:0f:
09:39:93:c7:dd:b4:a7:d5:d9:31:a6:ee:fe:bf:2f:63:1b:87:
0c:01:07:58:e3:e0:8d:81:a0:9e:0f:6e:e6:82:34:35:49:9d:
90:44:09:29:45:a5:ae:9a:46:e5:74:57:3d:8f:0e:3e:19:c3:
c0:22:67:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:47 2024 by rpki-client on console-ams.rpki-client.org