Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/tXpn5zgudFjL1NhpSwbDT7dz4Bs.roa
File: tXpn5zgudFjL1NhpSwbDT7dz4Bs.roa (raw, json)
Hash identifier: a78kpmp6pr/I7Ehqk/nMn/HUpx040/kGoCrA/rJoUcs=
Subject key identifier: B5:7A:67:E7:38:2E:74:58:CB:D4:D8:69:4B:06:C3:4F:B7:73:E0:1B
Certificate issuer: /CN=de6640357ae4ae10fc0b3e9d98f2a0cb0118903c
Certificate serial: 01856D53D3FA7FA9C820159781ED0C7050BF
Authority key identifier: DE:66:40:35:7A:E4:AE:10:FC:0B:3E:9D:98:F2:A0:CB:01:18:90:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3mZANXrkrhD8Cz6dmPKgywEYkDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/tXpn5zgudFjL1NhpSwbDT7dz4Bs.roa
Signing time: Sun 01 Jan 2023 12:34:48 +0000
ROA not before: Sun 01 Jan 2023 12:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 703
IP address blocks: 194.169.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:d3:fa:7f:a9:c8:20:15:97:81:ed:0c:70:50:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de6640357ae4ae10fc0b3e9d98f2a0cb0118903c
Validity
Not Before: Jan 1 12:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b57a67e7382e7458cbd4d8694b06c34fb773e01b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:23:ac:a6:36:07:76:98:9e:1f:6b:e6:a3:39:
29:69:25:86:3f:ec:55:1c:25:08:77:1d:d4:5d:d2:
55:f3:b6:2f:b8:5f:c3:83:fd:aa:1e:53:3d:b7:94:
2c:e6:71:6a:71:6f:3a:67:90:ff:2c:4a:1b:59:c1:
bc:ff:ea:87:da:23:57:fd:53:cb:1a:26:1a:53:ac:
4f:53:e2:b1:a5:53:64:a0:e1:70:e8:8a:bd:d9:89:
69:dc:2f:3c:78:d3:6c:35:70:f6:4c:65:42:bd:7b:
23:e0:c2:dd:cc:50:91:02:c8:02:f4:04:5f:90:28:
21:11:d7:a0:03:f0:80:24:2c:7b:36:e9:33:dc:c8:
b0:72:13:80:4a:8a:06:a8:15:3c:9b:5d:d2:4d:1c:
46:ad:1e:80:c9:f9:f0:f8:fd:dd:db:af:bf:bf:b0:
5c:0f:f3:2e:63:57:a7:5f:21:dd:a9:48:bb:0b:c1:
44:c2:a5:15:cb:7a:85:1c:30:10:93:bd:99:74:aa:
95:2c:8a:aa:4a:8e:c0:f7:50:71:b3:c4:1a:16:cb:
1c:e1:78:44:48:26:19:bc:a6:28:4d:6d:d8:e3:4c:
ce:cb:98:67:cb:b4:67:73:36:49:5b:61:05:94:a4:
81:bc:a2:6f:b1:f5:6d:56:68:b4:44:cb:e9:30:9f:
cd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:7A:67:E7:38:2E:74:58:CB:D4:D8:69:4B:06:C3:4F:B7:73:E0:1B
X509v3 Authority Key Identifier:
keyid:DE:66:40:35:7A:E4:AE:10:FC:0B:3E:9D:98:F2:A0:CB:01:18:90:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3mZANXrkrhD8Cz6dmPKgywEYkDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/tXpn5zgudFjL1NhpSwbDT7dz4Bs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ad19c0-0025-4c49-8480-ff97f62a0945/1/3mZANXrkrhD8Cz6dmPKgywEYkDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.18.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:00:23:cb:ea:9a:8c:86:17:02:09:4f:bd:ac:ee:b1:c2:58:
56:b0:f5:72:bf:05:cd:1b:35:a8:83:e1:af:05:bd:1f:c4:f5:
76:0b:8a:2e:62:3c:b7:07:22:70:f4:9f:ad:17:08:90:4a:20:
48:b7:fa:dc:b8:9d:0e:f1:1c:83:a0:b4:00:cc:67:05:04:38:
70:aa:8f:db:c1:ad:ff:e5:4c:b2:7d:94:d9:dd:de:42:54:1c:
06:1f:a4:9e:c0:02:a2:d6:71:d8:3c:3e:75:86:40:f6:23:a1:
d4:ab:4a:38:7d:45:cd:55:5b:fb:91:8d:2a:97:ff:ad:94:1a:
ff:bf:54:ab:92:ff:27:75:0d:c0:c9:91:fa:fb:a0:cd:b6:75:
6c:f3:42:07:9d:9a:20:2e:29:05:b1:3b:75:50:4c:89:02:ee:
c2:f4:d8:73:ad:a9:14:64:33:5a:08:15:a9:21:03:eb:e5:ff:
a6:e5:15:bf:82:83:7e:1f:ff:6a:7b:32:70:69:69:ab:a1:4d:
cf:dd:e8:79:54:55:c0:b7:25:ab:47:be:18:53:01:72:37:c9:
cc:62:c5:2b:53:dd:40:59:93:85:38:0f:6d:1f:b5:b3:4d:60:
22:dc:3b:64:55:80:85:35:9c:5f:59:90:02:a1:3b:f9:40:b6:
81:48:10:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:36 2024 by rpki-client on console-fra.rpki-client.org