Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/V3XoW5mrucI9HPrSmSw4riWG_Rs.roa
File: V3XoW5mrucI9HPrSmSw4riWG_Rs.roa (raw, json)
Hash identifier: 0dvkWo0cmWlasbrx5CfCGR3y0P9OCowYjja1wyLOiVk=
Subject key identifier: 57:75:E8:5B:99:AB:B9:C2:3D:1C:FA:D2:99:2C:38:AE:25:86:FD:1B
Certificate issuer: /CN=9d31c233cbd266db02620b9deb90d08e41692e67
Certificate serial: 01856C812B895E95CAC8B3D0E4822A02C2B4
Authority key identifier: 9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/V3XoW5mrucI9HPrSmSw4riWG_Rs.roa
Signing time: Sun 01 Jan 2023 08:44:42 +0000
ROA not before: Sun 01 Jan 2023 08:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 194.124.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:2b:89:5e:95:ca:c8:b3:d0:e4:82:2a:02:c2:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d31c233cbd266db02620b9deb90d08e41692e67
Validity
Not Before: Jan 1 08:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5775e85b99abb9c23d1cfad2992c38ae2586fd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c4:4f:2a:fd:77:cd:63:b9:db:dd:d3:19:71:
18:69:e7:3a:62:f6:4e:a9:b4:f8:0e:06:43:fe:57:
79:d8:6c:5a:2f:12:60:27:6d:98:65:37:d9:00:6b:
bf:86:0a:97:d1:36:d8:b5:3e:2c:fe:1d:ff:6b:c4:
e2:37:0f:6d:5c:e0:98:39:4d:97:f0:83:5e:79:ef:
be:fb:a6:15:73:0c:b7:dd:0b:57:dd:e1:cf:49:ae:
e4:a9:eb:2f:10:ee:f2:57:ae:03:d5:ee:36:74:e8:
33:81:7a:ba:6c:6c:6e:f7:f3:9d:1a:2f:70:9c:c2:
d4:94:76:33:cd:ae:26:ca:27:ab:5a:da:08:49:26:
2d:36:62:45:10:7c:51:59:a1:1c:5f:1d:c7:bd:89:
b9:a8:49:50:a0:28:db:e3:28:6a:76:04:67:e3:e9:
e2:26:6e:ad:0c:c3:43:6b:e9:76:ed:d8:20:96:dc:
3f:77:57:8d:24:99:b5:6f:4f:72:04:cf:e1:f8:37:
cd:34:c4:d9:d9:7a:a2:6e:b6:09:5e:68:d7:17:a6:
af:cf:44:2a:d6:f1:fb:bd:ac:cb:84:59:99:76:3d:
f3:f8:96:c1:44:80:c3:25:2e:43:09:38:9a:41:bb:
65:cb:49:89:d3:39:60:fe:d9:6b:ba:09:88:3e:a3:
41:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:75:E8:5B:99:AB:B9:C2:3D:1C:FA:D2:99:2C:38:AE:25:86:FD:1B
X509v3 Authority Key Identifier:
keyid:9D:31:C2:33:CB:D2:66:DB:02:62:0B:9D:EB:90:D0:8E:41:69:2E:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTHCM8vSZtsCYgud65DQjkFpLmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/V3XoW5mrucI9HPrSmSw4riWG_Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/34223a-e77e-4544-a207-fa1725034491/1/nTHCM8vSZtsCYgud65DQjkFpLmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.243.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:1e:c5:a1:24:ec:c2:42:d7:5c:d8:6e:5c:73:7f:50:0f:63:
0d:10:04:aa:c1:73:26:86:a9:ff:35:64:2e:c0:e7:43:5b:ea:
e7:e6:71:1f:6b:61:2c:70:55:76:af:29:f3:34:35:25:73:10:
3d:3b:a8:6b:a1:ef:4c:51:94:07:1c:83:68:0c:fc:f7:06:7d:
14:b2:33:dd:44:2c:a2:52:99:72:47:6c:b6:4e:9a:28:fc:4f:
0d:6a:d6:ac:09:17:fe:d5:20:ca:b9:6c:4d:fa:eb:b9:0b:2f:
a6:b5:96:86:35:ab:65:ce:3f:0f:51:ce:b3:b6:f7:47:b3:36:
0e:1a:c9:7f:0f:b9:f1:09:0a:8d:43:fc:5f:09:24:31:54:83:
95:4b:e8:8f:10:12:56:c0:2d:2e:d0:a8:f0:f0:aa:a3:69:7c:
8e:0a:d7:25:e6:99:81:4d:f4:8c:0e:16:4e:1a:93:c0:43:a1:
ef:6a:bb:47:24:c8:c7:6d:15:21:5d:3f:9f:f0:96:fe:24:35:
3f:02:a7:ac:10:9c:bd:99:ae:9c:ed:18:0e:1a:08:f3:e6:65:
a8:6b:ae:64:ff:d9:04:00:37:0e:81:e9:11:9f:bc:38:8f:f8:
fa:ff:37:62:c5:1c:d2:33:6c:2b:4a:84:05:6a:44:5b:02:86:
71:41:e9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:44 2024 by rpki-client on console-ams.rpki-client.org