Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/0b0b33-98a1-4818-ad18-95f27d3e8abb/1/_heJ85O_JlKBnAzVtrmb1nzGiw8.roa
File: _heJ85O_JlKBnAzVtrmb1nzGiw8.roa (raw, json)
Hash identifier: BS+gUnBzIYaWRPhzyUlKooZVM9GrMGw0XzxxfhrfP0w=
Subject key identifier: FE:17:89:F3:93:BF:26:52:81:9C:0C:D5:B6:B9:9B:D6:7C:C6:8B:0F
Certificate issuer: /CN=282b2cb977153baad1dd99eec14ce0ca46e2219f
Certificate serial: 01894572AFCE88EA1F1911959756B594FB7C
Authority key identifier: 28:2B:2C:B9:77:15:3B:AA:D1:DD:99:EE:C1:4C:E0:CA:46:E2:21:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCssuXcVO6rR3ZnuwUzgykbiIZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/0b0b33-98a1-4818-ad18-95f27d3e8abb/1/_heJ85O_JlKBnAzVtrmb1nzGiw8.roa
Signing time: Tue 11 Jul 2023 14:54:51 +0000
ROA not before: Tue 11 Jul 2023 14:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 192.104.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:45:72:af:ce:88:ea:1f:19:11:95:97:56:b5:94:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282b2cb977153baad1dd99eec14ce0ca46e2219f
Validity
Not Before: Jul 11 14:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe1789f393bf2652819c0cd5b6b99bd67cc68b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f4:ac:b9:f2:c6:0f:b1:b9:0e:c1:7d:38:63:
b3:a4:08:c2:7b:14:bb:cb:26:a5:ed:bc:94:1c:cb:
8d:f8:19:78:be:5e:a4:af:65:65:52:8e:70:ef:1b:
22:8d:0e:e0:ac:10:2b:dc:8d:50:d1:20:af:d5:ac:
de:bf:cf:e8:1b:c9:25:42:b3:b4:63:5f:ff:60:c0:
35:9e:a6:9b:23:42:72:14:45:ed:f2:a7:37:0d:0c:
74:04:f7:a9:cd:5e:32:49:f9:17:c7:ef:be:2c:d1:
43:3d:bd:dc:aa:8d:a0:60:62:e4:d6:f7:a7:e6:04:
3a:d8:e2:43:b9:4f:a2:2e:bb:1b:00:2b:0e:f4:46:
3c:02:4c:1c:73:a5:f0:5d:5f:e2:12:77:c9:08:27:
59:88:d1:13:e2:a9:ae:3b:2e:9c:e5:db:38:8a:42:
ba:6b:92:14:3c:8a:08:a5:6b:44:0b:ed:ec:63:d6:
25:db:58:b4:a4:fb:10:53:e5:f6:94:e9:77:06:d5:
4b:bc:45:3b:ba:6e:6a:ab:08:21:87:b1:2e:a0:b5:
62:73:ab:b7:d2:a6:0b:43:d5:58:b5:60:e6:3b:d9:
52:c1:03:20:3a:57:df:13:b8:20:40:0a:fc:ea:05:
41:e4:1b:65:6a:82:e5:e2:e2:e9:f7:23:31:f9:eb:
81:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:17:89:F3:93:BF:26:52:81:9C:0C:D5:B6:B9:9B:D6:7C:C6:8B:0F
X509v3 Authority Key Identifier:
keyid:28:2B:2C:B9:77:15:3B:AA:D1:DD:99:EE:C1:4C:E0:CA:46:E2:21:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCssuXcVO6rR3ZnuwUzgykbiIZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/0b0b33-98a1-4818-ad18-95f27d3e8abb/1/_heJ85O_JlKBnAzVtrmb1nzGiw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/0b0b33-98a1-4818-ad18-95f27d3e8abb/1/KCssuXcVO6rR3ZnuwUzgykbiIZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.104.36.0/24
Signature Algorithm: sha256WithRSAEncryption
89:8e:24:e5:f2:17:42:77:c7:cc:72:7b:3f:c2:3e:6f:39:db:
f6:7b:4a:7b:7b:b8:fc:91:f2:eb:bd:b6:b5:93:7b:85:49:7a:
58:4f:7d:8a:ff:a5:c7:30:dd:f2:fa:36:44:f6:3e:c1:fc:d9:
57:21:bd:01:41:3c:39:ab:8f:5f:9e:8c:0b:c6:88:3f:7f:6c:
d5:49:86:9d:87:c1:31:df:80:85:f5:99:10:b5:08:43:a2:f8:
2f:40:4f:79:9d:f4:17:e7:c6:6f:35:8a:fa:fb:c2:9a:9a:2f:
14:48:1d:40:6a:2c:70:46:2f:bd:77:d3:68:74:9d:43:b1:f0:
db:2f:41:20:8c:2e:b1:21:28:ed:11:b0:1c:a0:92:16:d5:88:
6b:e0:be:7d:62:88:33:fe:08:3f:11:85:2b:9d:c5:71:2f:64:
71:3d:94:fa:2d:89:5b:b2:32:52:1e:48:07:60:92:84:01:33:
e3:3c:15:ba:58:ca:76:c4:3b:b4:54:f1:ca:4d:5b:33:9a:cb:
ff:b6:04:26:84:3a:e8:01:c2:7e:3b:35:03:24:0c:ee:e6:83:
c7:0c:01:2b:2c:60:c5:5c:de:e8:90:e0:0f:dd:e8:cf:16:a5:
3a:af:ee:fd:e7:a8:82:18:fb:16:ac:ef:7a:c0:47:1d:e9:8e:
6e:99:d7:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:42 2024 by rpki-client on console-fra.rpki-client.org