Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/THdByD8-V8dyI_tdoPqPCWx_4o8.roa
File: THdByD8-V8dyI_tdoPqPCWx_4o8.roa (raw, json)
Hash identifier: MmxJ6YnT89Vk+2OHl0AxsCK0rqwZtHfoFyiWSh+Irbs=
Subject key identifier: 4C:77:41:C8:3F:3E:57:C7:72:23:FB:5D:A0:FA:8F:09:6C:7F:E2:8F
Certificate issuer: /CN=c50e0801823f19d51b962ab6d4ebbbc27dd4ed96
Certificate serial: 01856F94ADC525EBAAC94175B1E1233D79DA
Authority key identifier: C5:0E:08:01:82:3F:19:D5:1B:96:2A:B6:D4:EB:BB:C2:7D:D4:ED:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/THdByD8-V8dyI_tdoPqPCWx_4o8.roa
Signing time: Sun 01 Jan 2023 23:04:52 +0000
ROA not before: Sun 01 Jan 2023 23:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12637
IP address blocks: 167.94.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Nov 2023 16:21:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:ad:c5:25:eb:aa:c9:41:75:b1:e1:23:3d:79:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c50e0801823f19d51b962ab6d4ebbbc27dd4ed96
Validity
Not Before: Jan 1 23:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c7741c83f3e57c77223fb5da0fa8f096c7fe28f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:23:e7:e9:c8:2f:59:58:c0:41:eb:b3:33:56:
f9:d2:81:06:93:1d:4c:dc:22:86:5c:4b:68:5d:b2:
85:47:88:45:56:b6:eb:ff:d0:b4:77:9f:53:c8:92:
0d:9f:1a:a1:86:4b:e5:18:f3:8e:6e:42:05:33:41:
fb:44:cf:4e:68:2e:aa:d7:5f:9a:c5:a8:6f:8a:ed:
88:f1:a7:11:06:e2:59:51:16:b4:ac:5a:c4:7d:cc:
3c:e0:ba:c5:6c:1a:62:75:6d:29:b6:c0:84:7b:f2:
a5:68:86:d1:ef:c0:6b:97:ad:99:99:07:99:3a:42:
5b:06:63:89:1d:fb:23:2d:05:3a:44:4e:6c:30:9f:
1c:8e:3d:57:f6:45:4c:e4:ba:46:7c:66:67:d9:bc:
ab:6a:28:04:76:0e:ce:6b:13:01:71:e6:b8:e5:06:
3f:c5:4b:bc:79:db:0c:e2:2c:29:d0:29:b5:5a:e8:
50:69:74:b0:73:27:e8:c9:1f:14:d2:05:0d:88:44:
ef:8d:b4:3b:0f:73:0a:26:22:6b:48:bf:13:6c:05:
21:c7:17:b4:cb:cd:83:75:a5:5b:fc:30:05:ff:21:
60:d2:0f:47:db:9c:61:d3:71:52:5b:4e:58:20:97:
de:a5:45:62:42:94:e7:2a:3f:39:ff:ee:3b:33:e9:
10:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:77:41:C8:3F:3E:57:C7:72:23:FB:5D:A0:FA:8F:09:6C:7F:E2:8F
X509v3 Authority Key Identifier:
keyid:C5:0E:08:01:82:3F:19:D5:1B:96:2A:B6:D4:EB:BB:C2:7D:D4:ED:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/THdByD8-V8dyI_tdoPqPCWx_4o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.94.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:84:45:50:f4:8e:bc:29:d9:b7:33:9b:8f:e3:a3:f2:be:4f:
33:9a:fa:ec:bd:f2:fe:af:c3:93:d0:95:bc:f7:38:62:80:2a:
e6:49:06:a3:44:f8:3d:31:09:db:e0:94:c8:35:1b:25:f4:f9:
cb:48:3d:2e:d3:81:cf:1e:1b:26:8b:fd:f4:a2:0d:df:5b:c4:
c9:8c:d6:a1:73:c4:c9:7d:bd:a0:d0:3f:40:8a:bc:9a:31:0b:
d2:1c:68:ba:0c:96:a3:89:9c:24:ce:f1:fc:fe:9e:cc:42:b6:
94:a6:08:a2:c7:42:83:e3:49:cf:6a:98:8a:0c:f0:31:d4:8a:
3d:58:16:d7:53:16:59:31:29:51:3e:fd:12:22:11:c7:2d:5f:
85:76:05:08:e9:40:71:f1:47:7f:f4:8b:55:03:f0:7c:e2:19:
66:ba:66:fe:b8:29:77:4e:4d:ef:1d:99:7f:60:75:8a:ae:7f:
5a:b8:59:d0:5f:50:03:27:d9:2b:8f:3e:f6:4a:1a:4d:8b:07:
59:a9:19:ca:c6:10:76:92:d3:33:04:bd:0f:2b:1d:90:ee:80:
01:29:65:81:4b:c7:d0:f6:e2:ad:00:91:43:02:59:80:a2:d8:
6a:d6:be:6a:8c:ba:cb:8f:06:e7:fb:48:0b:23:2d:f8:da:9a:
6b:68:2c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:57 2024 by rpki-client on console-ams.rpki-client.org