Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/pWZajj72Jltn1nFCQ4sDTf7gajE.roa
File: pWZajj72Jltn1nFCQ4sDTf7gajE.roa (raw, json)
Hash identifier: 1fPS02M00+BydQSkn0ZdZLvXFvRF6VIeJH7drvLvoGw=
Subject key identifier: A5:66:5A:8E:3E:F6:26:5B:67:D6:71:42:43:8B:03:4D:FE:E0:6A:31
Certificate issuer: /CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Certificate serial: 018572BA3F5C7BB9A625F2E0430E42C0AE06
Authority key identifier: 5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/pWZajj72Jltn1nFCQ4sDTf7gajE.roa
Signing time: Mon 02 Jan 2023 13:44:46 +0000
ROA not before: Mon 02 Jan 2023 13:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6867
IP address blocks: 194.177.197.0/24 maxlen: 24
2001:648:2c00::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:3f:5c:7b:b9:a6:25:f2:e0:43:0e:42:c0:ae:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a6f9295521df30a158f506ba7cb873ab9529dc3
Validity
Not Before: Jan 2 13:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5665a8e3ef6265b67d67142438b034dfee06a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:73:bd:64:c0:10:75:93:0f:87:2b:e7:4e:dd:
ae:ab:47:04:9b:a7:01:b3:d3:c4:1f:01:e4:9a:5d:
f3:cd:d3:fc:cc:93:11:a0:cc:ec:37:50:90:5e:fe:
cf:48:ee:1c:a4:e9:12:09:73:7a:3d:26:1a:45:45:
46:56:2d:80:a1:52:76:02:45:f6:8a:a4:e1:a0:32:
7f:08:6d:da:5a:80:81:8b:38:bd:c2:30:66:02:46:
4e:84:28:87:2e:79:5b:31:9b:29:a9:3e:d6:ec:09:
c5:a1:7c:f2:ef:c7:e0:35:fa:90:3a:71:6a:e0:a3:
1e:47:11:31:5e:52:3d:74:3a:05:b4:3a:b2:7c:78:
32:37:75:2f:e3:6b:73:33:b6:8d:2b:46:6c:aa:b3:
05:9f:b5:0e:e0:ff:48:69:eb:8f:68:13:a1:2b:41:
52:35:c9:df:e1:08:b5:0b:73:85:98:99:a7:6e:df:
10:5c:3e:ac:43:c1:85:e4:34:ca:12:a6:9c:33:fe:
df:0d:68:92:d8:fd:eb:ae:e9:66:c9:4d:f2:29:8f:
25:98:c3:e3:41:08:bd:09:62:0d:3b:8e:51:99:80:
05:1e:ed:79:4f:c5:e3:10:f2:43:2b:9b:03:c7:e3:
f3:83:18:a0:dd:cb:45:94:a4:35:00:46:93:f1:7e:
c6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:66:5A:8E:3E:F6:26:5B:67:D6:71:42:43:8B:03:4D:FE:E0:6A:31
X509v3 Authority Key Identifier:
keyid:5A:6F:92:95:52:1D:F3:0A:15:8F:50:6B:A7:CB:87:3A:B9:52:9D:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wm-SlVId8woVj1Brp8uHOrlSncM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/pWZajj72Jltn1nFCQ4sDTf7gajE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9f93b-be31-45cf-aa7e-aaa4553d2abd/1/Wm-SlVId8woVj1Brp8uHOrlSncM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.177.197.0/24
IPv6:
2001:648:2c00::/48
Signature Algorithm: sha256WithRSAEncryption
48:65:bf:40:a3:8e:ff:b5:8e:b4:e1:35:b0:7e:97:39:eb:7e:
db:92:fd:aa:9c:7c:a1:7b:60:ab:17:73:d1:87:37:c7:f5:38:
20:27:36:16:98:a8:b5:0b:3f:b3:32:a1:1e:f2:3a:23:21:61:
2f:07:22:e7:c1:b4:c9:54:3d:20:a4:df:87:50:4d:cd:2c:9c:
95:1b:81:bb:8d:df:e4:c1:0a:58:b5:07:94:3b:05:b8:7b:c7:
9a:50:4d:81:8f:f5:20:c6:c8:59:41:f8:c7:6a:99:58:e6:39:
b5:92:00:cd:fa:2a:b4:06:be:37:a0:bb:47:d2:10:cc:b4:42:
09:d4:25:42:d2:19:56:cd:59:d9:1f:88:11:19:9d:3b:65:aa:
0b:3c:cd:42:a9:d5:50:f9:dc:c2:3c:2b:82:28:60:59:c0:8c:
84:f9:cc:a0:63:04:0c:99:f3:4c:95:9f:20:56:8f:2d:21:85:
01:1b:7d:42:37:1d:9b:ce:52:d6:f5:07:3d:61:dc:d2:39:4e:
0e:87:bc:f6:4c:ad:33:6d:87:49:02:85:3f:c5:63:be:77:de:
eb:32:e4:3b:a1:f1:5b:55:a0:0d:3b:fb:ca:7d:66:7d:ad:48:
fb:86:1b:48:5f:ca:87:d4:2d:67:e1:ea:c3:d5:70:24:dd:91:
f9:30:c5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org