Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/rtFIrFbKw6L0os9VPGHZoRXa13c.roa
File: rtFIrFbKw6L0os9VPGHZoRXa13c.roa (raw, json)
Hash identifier: hKBdRdcQhe1NKaVVq11hlRjOZbijCPFX50nEW/jtmwY=
Subject key identifier: AE:D1:48:AC:56:CA:C3:A2:F4:A2:CF:55:3C:61:D9:A1:15:DA:D7:77
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737ABA6C168703178DB302B4CDB16D1C
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/rtFIrFbKw6L0os9VPGHZoRXa13c.roa
Signing time: Mon 02 Jan 2023 17:15:00 +0000
ROA not before: Mon 02 Jan 2023 17:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3352
IP address blocks: 194.187.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 14:52:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:ba:6c:16:87:03:17:8d:b3:02:b4:cd:b1:6d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aed148ac56cac3a2f4a2cf553c61d9a115dad777
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:87:ef:fb:5b:b9:83:25:c0:a6:78:12:15:e8:
f1:8f:07:63:05:21:cb:31:7e:b0:1a:77:5f:5d:5c:
86:88:9e:66:5c:83:30:8b:4b:9b:59:ac:1d:47:22:
09:49:32:d2:82:6b:e9:7f:28:b7:cb:5a:03:50:3d:
e5:16:ac:21:59:45:bc:7d:18:e1:d2:3f:c1:91:76:
bb:fe:43:1b:8c:7c:f6:f8:be:2d:02:37:08:28:04:
1f:39:d9:fd:c9:33:68:9e:8f:2a:79:c3:81:78:a3:
a9:bd:2f:f3:5d:79:9f:f4:04:0d:ff:6b:49:a4:f9:
07:49:78:38:49:5f:a4:8b:cd:dd:70:35:64:26:db:
42:55:ae:80:64:fe:75:a8:88:31:79:37:fa:53:cb:
d2:da:73:28:6c:d2:ca:da:d4:6c:41:b7:3e:af:4d:
bb:18:f2:1b:7d:8b:35:6b:f4:cf:c1:f5:16:41:5e:
93:e1:9d:fe:d6:9d:be:0a:58:91:ee:a5:0b:05:62:
8f:0a:9e:08:ae:af:a9:b9:5f:3d:24:cf:37:fe:cd:
3a:b7:e0:7e:dd:d6:05:1c:45:29:7e:35:ac:da:56:
86:1f:cc:03:91:9a:57:31:ef:a1:08:cd:4a:ec:13:
8d:b2:21:61:fa:86:b8:7d:8a:06:db:34:cd:d5:11:
54:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D1:48:AC:56:CA:C3:A2:F4:A2:CF:55:3C:61:D9:A1:15:DA:D7:77
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/rtFIrFbKw6L0os9VPGHZoRXa13c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.188.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:15:05:bf:ef:3b:51:a4:f5:71:b0:01:a2:6a:94:46:80:3f:
10:4c:bf:7d:cb:bd:71:3a:94:58:43:e2:39:1e:3f:db:86:a8:
62:80:be:35:5d:ed:b7:e9:fc:da:07:13:90:e0:33:10:28:30:
6d:6a:04:d7:1f:58:63:ad:33:3e:c7:2a:2f:8b:98:e0:df:3b:
1b:25:ae:3b:6e:f3:55:5f:9b:d6:c0:b7:84:8e:45:09:8f:dd:
61:a8:aa:21:27:dd:e8:69:8a:a9:9b:63:e4:18:71:94:0d:c6:
f3:5e:e3:a2:9f:28:21:fc:38:4b:f4:30:3c:ee:f7:19:0e:e2:
f8:40:15:02:01:34:66:a3:43:f3:d4:82:de:b2:76:dc:97:6b:
2c:b6:58:51:17:23:a7:99:fe:29:ba:50:35:3a:36:49:61:9e:
62:40:28:d5:05:fd:83:2d:50:1f:7c:7c:12:10:08:94:31:34:
2a:ca:f2:df:73:9d:c7:4f:28:8c:4d:64:42:13:2e:2c:28:e2:
27:9b:33:ca:a0:6e:68:e1:98:cc:08:a7:52:54:1f:f4:44:ff:
5b:ce:73:e8:2c:b7:7e:af:61:42:ff:33:c4:2d:c4:7c:c6:e2:
62:34:70:3c:11:4f:07:8e:fa:4d:9c:04:66:e2:c8:6e:2d:13:
ee:eb:df:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org