Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/_PAZVW2QyPdPTFl7dKJfkFvEmSg.roa
File: _PAZVW2QyPdPTFl7dKJfkFvEmSg.roa (raw, json)
Hash identifier: yl0wCu3c8kJgKyzujHASe3Kab/XquWTGUMG8lS6R85Q=
Subject key identifier: FC:F0:19:55:6D:90:C8:F7:4F:4C:59:7B:74:A2:5F:90:5B:C4:99:28
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018CC86F48389E36D2A8C224BAC6DD2051A9
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/_PAZVW2QyPdPTFl7dKJfkFvEmSg.roa
Signing time: Tue 02 Jan 2024 04:29:45 +0000
ROA not before: Tue 02 Jan 2024 04:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207506
IP address blocks: 194.15.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Mar 2024 18:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:48:38:9e:36:d2:a8:c2:24:ba:c6:dd:20:51:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 04:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcf019556d90c8f74f4c597b74a25f905bc49928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:7f:d9:3d:45:bb:3b:b1:04:fc:89:1c:20:18:
6c:51:cc:2d:7c:ac:24:8f:1f:c0:0c:4f:f8:5d:68:
2c:bf:a5:43:15:41:6c:79:d6:7b:5a:5e:30:df:fe:
5a:ca:92:d2:43:5a:91:3b:08:0f:79:c3:e4:a3:4b:
cc:90:fc:55:08:79:e8:fa:cd:00:7d:93:76:86:05:
78:b4:e2:8f:ec:18:fb:b6:2e:a6:35:81:f2:ca:f1:
bf:11:b8:b1:fa:fe:b4:1c:ce:7f:a4:e3:2b:57:c0:
f4:ef:10:cc:ba:e3:be:a0:f9:e2:b3:ef:f6:45:11:
bf:5e:e3:94:90:30:d4:a2:0b:e4:af:80:d4:ed:12:
4b:ae:e2:d5:4c:7e:10:b7:e2:8a:f8:f1:78:dd:7b:
b6:05:ad:db:78:70:1e:e8:9a:53:a2:be:f0:9d:46:
6e:41:88:7b:2a:ed:c9:2d:98:80:ee:1f:08:ae:ae:
c8:5c:85:59:98:64:2b:17:62:8f:58:bc:09:c6:59:
e8:db:8d:6d:15:a6:b5:e9:55:1a:4a:a5:d0:d0:3c:
a2:ed:c5:5a:e0:0f:30:16:29:59:2a:10:ef:06:0e:
d7:45:9a:1b:5a:98:db:d6:99:19:84:bd:f5:69:d7:
27:55:b7:db:81:41:b8:30:93:f8:59:bb:c1:5a:33:
a0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F0:19:55:6D:90:C8:F7:4F:4C:59:7B:74:A2:5F:90:5B:C4:99:28
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/_PAZVW2QyPdPTFl7dKJfkFvEmSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.54.0/24
Signature Algorithm: sha256WithRSAEncryption
10:c2:51:32:4c:6b:40:d2:68:09:d9:69:86:aa:6b:1a:18:69:
6e:8d:61:06:2e:7e:ba:15:04:cf:e6:67:f6:00:04:e4:c3:4b:
cd:4b:82:56:90:bd:2f:b4:84:73:59:6e:95:23:7a:d7:0d:cb:
ec:e6:d7:a5:cb:6c:19:ab:9b:3b:7a:78:75:3d:60:fa:5e:e6:
85:8a:f7:94:ef:db:b4:99:1d:ed:a6:fb:70:37:c5:4a:8a:5b:
95:c5:7f:49:42:af:ed:ca:89:b4:01:1d:58:87:e3:41:89:aa:
4d:73:56:4d:a3:c6:ef:7b:3e:b1:89:fe:3b:5f:01:c9:f8:62:
1f:30:72:78:ad:a4:0d:36:09:bb:63:8f:2b:1a:d2:d0:f0:e6:
dc:08:eb:7a:e0:73:cb:2c:40:27:02:47:b2:ff:2f:2c:cc:39:
c8:f6:db:a6:39:5d:a6:a0:dc:92:04:e6:9d:ae:90:c4:fd:da:
56:96:d5:24:47:a3:3e:eb:75:15:2e:ad:5e:75:94:ba:70:19:
7f:80:d6:52:a0:7b:b5:57:25:43:19:b7:bf:a2:93:85:35:9a:
10:50:a8:8c:67:7d:41:03:1d:e2:05:94:6f:d0:e5:05:fe:05:
12:88:a9:be:09:85:04:00:2a:6f:56:52:de:14:7b:51:c0:03:
33:55:16:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org