Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/2C4OKPy79WszKma0g40Iiu0vGtM.roa
File: 2C4OKPy79WszKma0g40Iiu0vGtM.roa (raw, json)
Hash identifier: BPssj7Cm8C/UKA3ACoFbsBHoa2xpRM11bLFH5+HEK/Q=
Subject key identifier: D8:2E:0E:28:FC:BB:F5:6B:33:2A:66:B4:83:8D:08:8A:ED:2F:1A:D3
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 01856E1426ACFEFDC45ABE6FE40325B71C96
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/2C4OKPy79WszKma0g40Iiu0vGtM.roa
Signing time: Sun 01 Jan 2023 16:04:52 +0000
ROA not before: Sun 01 Jan 2023 16:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208678
IP address blocks: 194.110.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:26:ac:fe:fd:c4:5a:be:6f:e4:03:25:b7:1c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Jan 1 16:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d82e0e28fcbbf56b332a66b4838d088aed2f1ad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:52:23:89:93:d1:f1:57:6c:ef:61:13:8e:
ca:3f:fe:65:f5:47:3f:8b:ce:37:c9:09:5f:05:20:
98:9b:ec:c8:6d:4d:0f:6c:94:86:da:ad:a0:8d:41:
c5:22:8d:03:a8:e5:04:c1:8b:37:e1:5e:e2:20:a0:
f4:ba:52:7a:28:5e:0c:af:fd:ae:86:a3:76:e4:d2:
46:b0:4c:f4:98:b0:a7:1a:95:04:f5:1d:95:9f:30:
67:73:ee:7b:49:e6:3f:e3:e1:d3:34:29:f6:47:c2:
15:01:e8:a5:9c:75:ea:90:d7:43:79:98:d7:42:35:
b3:10:44:6d:11:22:56:b4:5e:dc:9d:63:9f:93:a6:
a3:b6:f1:24:6a:52:bf:14:42:c6:32:4f:66:cb:d7:
fd:70:fa:34:15:70:36:bf:fb:f1:71:36:51:ed:37:
1c:dd:d9:47:99:a7:ce:80:2b:12:34:61:ed:9c:5e:
64:b4:26:b9:58:56:70:e6:b7:47:56:49:a0:46:f3:
a0:31:96:2e:50:06:52:46:87:78:64:6a:fd:ee:f5:
9e:be:f7:01:1d:bf:59:7d:75:36:5f:0f:bb:12:0f:
94:1e:7e:ad:b5:60:56:d4:d9:2c:b7:44:6d:37:9f:
e3:67:da:09:23:39:45:34:84:56:4d:c2:9e:a0:d6:
09:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:2E:0E:28:FC:BB:F5:6B:33:2A:66:B4:83:8D:08:8A:ED:2F:1A:D3
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/2C4OKPy79WszKma0g40Iiu0vGtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.154.0/24
Signature Algorithm: sha256WithRSAEncryption
27:be:5d:25:bd:4d:47:06:e1:af:e3:d8:bc:08:69:da:85:84:
4b:e7:e5:b9:be:4c:35:52:3d:2d:a1:9a:e1:43:ad:12:21:14:
58:d1:31:35:b9:af:20:85:07:59:27:f3:01:22:07:2e:b2:4e:
db:a7:9a:ca:cc:0c:ff:62:f4:a9:40:d9:22:ef:64:94:a6:fd:
84:7c:37:2b:48:14:76:fa:7d:c8:42:f4:56:92:98:73:da:60:
46:f4:3d:0d:4e:58:e0:42:ee:65:0b:bc:0a:09:3d:cb:ff:f4:
c4:1b:21:9a:bc:73:b2:d3:c1:f0:77:6c:ef:71:a0:aa:02:d0:
a0:4b:df:c7:ac:59:87:a3:bc:1a:f7:1f:13:c6:04:67:ee:f4:
42:a6:a5:46:97:d9:80:ac:dc:0a:c0:28:61:9e:0b:f0:3a:9a:
95:37:dc:fb:0c:21:aa:df:6e:ee:00:af:29:57:cb:91:83:a9:
ed:43:42:ee:00:46:bf:3e:b1:e7:2e:79:0e:67:11:1d:8e:76:
38:41:03:d9:34:3d:30:f7:d1:ff:f7:cf:fc:c4:96:76:3f:84:
c5:30:e0:5c:44:c5:d9:9d:28:c0:e4:0e:7b:ce:ac:72:82:a1:
50:f3:b2:55:f7:82:5c:79:42:0f:64:e6:0a:d1:47:c6:9e:18:
c9:0e:bf:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:58 2024 by rpki-client on console-ams.rpki-client.org