Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/On0LpBeKP58v3pFLebg3hPpGrQM.roa
File: On0LpBeKP58v3pFLebg3hPpGrQM.roa (raw, json)
Hash identifier: a9D6o5n9vpGaMCRl6sG2Rm/t9sCj6zqVmNtYVZDBg6U=
Subject key identifier: 3A:7D:0B:A4:17:8A:3F:9F:2F:DE:91:4B:79:B8:37:84:FA:46:AD:03
Certificate issuer: /CN=44e888a76e99851b01fb86cec537d4d8e610de16
Certificate serial: 01856CEF438543041A71FBA5F80F45687091
Authority key identifier: 44:E8:88:A7:6E:99:85:1B:01:FB:86:CE:C5:37:D4:D8:E6:10:DE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/On0LpBeKP58v3pFLebg3hPpGrQM.roa
Signing time: Sun 01 Jan 2023 10:44:57 +0000
ROA not before: Sun 01 Jan 2023 10:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49171
IP address blocks: 194.61.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:43:85:43:04:1a:71:fb:a5:f8:0f:45:68:70:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44e888a76e99851b01fb86cec537d4d8e610de16
Validity
Not Before: Jan 1 10:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a7d0ba4178a3f9f2fde914b79b83784fa46ad03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0e:1d:d0:9e:53:98:d2:03:40:27:fa:24:ce:
d9:54:a7:52:16:8d:60:22:7f:a3:3c:f2:36:09:58:
ff:a3:6f:d8:2b:da:37:49:12:4a:d8:fa:ee:e3:31:
90:eb:5b:ee:b2:08:c7:8e:3c:9f:4a:03:82:fc:d6:
e5:b2:22:8c:ce:50:28:68:56:e0:b4:f6:2c:d4:7b:
b3:13:0d:78:8e:25:21:ac:b6:41:6e:15:6a:dc:f7:
bc:4d:78:51:82:d2:08:7f:bd:02:2d:58:c8:af:64:
c3:4f:bb:09:45:ff:0f:bf:18:d1:8d:01:65:b5:d2:
30:19:55:81:bd:b2:e0:a6:ee:f7:8b:1a:2f:0b:b8:
a8:3f:4a:f0:f1:0d:de:a0:d4:18:62:1b:c3:b7:27:
de:ac:43:38:b2:c1:b8:7c:cf:5a:b4:44:56:5e:94:
67:67:eb:6f:71:a7:a4:cf:5f:79:fc:42:f5:d5:ff:
28:4b:1c:fe:6c:eb:a7:08:71:d1:1d:51:bb:66:f6:
e8:40:c6:7e:7e:f8:c0:a6:77:be:42:de:57:de:5f:
05:1f:b7:6d:53:97:9c:c6:ff:58:22:88:4d:85:41:
c5:40:51:22:73:0b:8e:fa:b8:25:4d:8e:af:2f:d5:
e5:13:68:9e:35:c1:c5:49:71:3c:26:c6:82:78:08:
2e:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7D:0B:A4:17:8A:3F:9F:2F:DE:91:4B:79:B8:37:84:FA:46:AD:03
X509v3 Authority Key Identifier:
keyid:44:E8:88:A7:6E:99:85:1B:01:FB:86:CE:C5:37:D4:D8:E6:10:DE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/On0LpBeKP58v3pFLebg3hPpGrQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/82e2ba-442c-42b0-9315-bc0dba932b35/1/ROiIp26ZhRsB-4bOxTfU2OYQ3hY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.83.0/24
Signature Algorithm: sha256WithRSAEncryption
90:a5:01:05:67:ad:8a:2b:2c:c1:ab:ee:5d:e8:d1:5b:67:7c:
37:7c:01:13:02:01:95:07:41:53:d4:f7:55:87:fe:f9:5c:8f:
91:ee:9f:47:72:97:bd:7b:d8:57:44:4f:3f:05:1f:31:f5:d3:
32:de:5c:0b:56:f0:33:0a:5a:ce:eb:7b:98:02:53:2d:fd:c3:
33:ee:8d:cb:87:04:31:36:d1:5b:e4:00:6b:95:48:05:e6:ae:
59:a3:62:5f:9c:b7:9f:37:bd:9a:6c:3f:87:b3:e9:77:d0:d8:
6f:68:af:23:4a:89:a6:22:87:b8:f2:2b:c6:3b:c5:8a:fb:97:
a2:38:40:4c:f6:74:15:de:12:6f:69:d3:dd:24:9b:65:33:fb:
24:8b:62:bd:4c:84:78:81:29:fa:cf:0d:9f:2e:4e:fa:c6:d6:
2e:9a:ee:19:81:08:a2:94:0c:77:da:91:bc:d1:52:f0:87:15:
c6:41:8e:65:03:ab:48:2c:03:5a:f7:08:63:62:1a:73:f7:80:
15:52:80:98:e8:84:e3:1e:2a:b0:6b:4e:76:a6:4d:3f:0c:69:
49:bc:f2:b8:86:cf:f9:55:40:c0:c0:66:b1:c0:8b:a3:02:c0:
3b:8d:c5:4a:9d:ca:c7:69:74:cb:a8:b7:08:3a:2c:38:2b:76:
a4:57:24:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:34 2024 by rpki-client on console-fra.rpki-client.org