Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/3THaNQXlxa3rkl9NjEMjfcqirvY.roa
File: 3THaNQXlxa3rkl9NjEMjfcqirvY.roa (raw, json)
Hash identifier: BKKgrHVxAc7X0njcLuHk0xkiOJZkIb5XqD86RKznCNs=
Subject key identifier: DD:31:DA:35:05:E5:C5:AD:EB:92:5F:4D:8C:43:23:7D:CA:A2:AE:F6
Certificate issuer: /CN=81a7ce8bacbeceeb16f600b607d1bfd08033b302
Certificate serial: 0185F3F3EFA87A596C7D7E7B702711BAB112
Authority key identifier: 81:A7:CE:8B:AC:BE:CE:EB:16:F6:00:B6:07:D1:BF:D0:80:33:B3:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gafOi6y-zusW9gC2B9G_0IAzswI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/3THaNQXlxa3rkl9NjEMjfcqirvY.roa
Signing time: Fri 27 Jan 2023 15:58:48 +0000
ROA not before: Fri 27 Jan 2023 15:58:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212391
IP address blocks: 194.0.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:f3:ef:a8:7a:59:6c:7d:7e:7b:70:27:11:ba:b1:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a7ce8bacbeceeb16f600b607d1bfd08033b302
Validity
Not Before: Jan 27 15:58:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd31da3505e5c5adeb925f4d8c43237dcaa2aef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:be:02:92:76:8f:b5:28:34:9a:b4:e8:fc:cc:
a5:d7:0c:b8:38:6c:3f:e2:85:20:48:3d:f3:55:67:
1c:55:52:b2:14:e5:9a:0e:14:58:37:20:c6:55:f3:
16:e8:94:8e:25:3e:23:d3:a4:ac:8f:d8:d8:c6:de:
b9:71:42:4f:03:03:9b:b8:8f:44:46:ce:07:cc:d8:
54:3f:27:c6:3b:1e:02:28:84:4d:97:37:77:32:e3:
80:f1:8e:f8:fc:12:f4:d5:59:5e:e3:c4:10:32:af:
fa:ab:5f:d4:91:8e:c3:5c:e0:48:13:43:ae:be:07:
ab:5c:ed:62:ac:51:eb:21:b3:26:b8:81:f3:d5:57:
24:4b:a7:df:e6:21:2c:7c:12:fb:c4:ef:f0:40:6d:
43:05:b6:ca:b4:31:23:18:b5:63:79:c9:9a:fb:96:
38:6f:3e:07:48:ee:04:d6:9b:60:88:e0:93:c4:bf:
46:06:be:c2:e7:eb:8d:34:ad:bd:51:b1:80:e7:01:
71:7e:2e:21:72:5c:b5:78:56:ed:83:44:04:66:f1:
3c:f2:13:40:71:99:f6:53:f0:af:34:6e:7c:49:0a:
a2:8f:90:f3:1d:61:42:28:37:4d:8d:ab:77:c7:27:
7b:85:7d:2a:4a:a0:87:be:7b:1b:e8:e0:cd:a9:58:
0e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:31:DA:35:05:E5:C5:AD:EB:92:5F:4D:8C:43:23:7D:CA:A2:AE:F6
X509v3 Authority Key Identifier:
keyid:81:A7:CE:8B:AC:BE:CE:EB:16:F6:00:B6:07:D1:BF:D0:80:33:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gafOi6y-zusW9gC2B9G_0IAzswI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/3THaNQXlxa3rkl9NjEMjfcqirvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/ee66fb-5dc0-4122-9bc7-b27d8730a270/1/gafOi6y-zusW9gC2B9G_0IAzswI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.182.0/24
Signature Algorithm: sha256WithRSAEncryption
96:b3:0a:7a:4c:83:f0:fc:1a:03:38:b6:7d:6e:58:7c:72:55:
45:c0:d8:93:b1:97:a1:24:ef:af:05:86:3b:1f:e7:8e:63:d8:
44:a3:ab:c5:e5:93:dc:d8:c2:f2:9f:fc:cd:b7:37:29:93:35:
2a:6c:20:dc:d2:78:b8:15:68:16:55:ab:a4:b3:d0:ee:47:5f:
9b:cd:fc:5f:98:16:1e:a3:28:e1:2e:6f:ae:46:52:80:32:b3:
5e:d4:d9:05:94:94:9b:4a:b6:59:f6:9f:e0:f9:3c:17:64:62:
f2:9b:c9:16:f2:c4:5d:37:55:04:b4:1b:e8:4b:b2:e8:27:07:
09:9f:b3:1d:0b:c2:86:85:e4:af:bf:03:71:30:93:4b:a6:2b:
93:be:be:06:08:86:d7:f1:40:2b:c7:2e:81:2d:b1:ce:6e:44:
37:b6:aa:c5:2b:6d:79:e1:14:6d:8b:61:40:73:52:a3:b0:05:
ef:ea:ab:54:c0:01:a2:ee:a5:58:55:24:43:f3:30:21:33:dc:
ae:33:9d:aa:00:9d:e6:18:38:96:1c:8c:cc:50:69:b8:4a:91:
84:90:29:f0:4e:15:64:db:6b:63:1a:f5:a6:c4:96:2f:c4:6f:
54:42:e0:6a:4e:1d:60:ac:7b:1d:27:dd:dc:bc:2f:4e:2c:f9:
12:7e:e8:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:40 2024 by rpki-client on console-ams.rpki-client.org