Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/V52Y4UuBo1jw2c2epFk3E5w9e9M.roa
File: V52Y4UuBo1jw2c2epFk3E5w9e9M.roa (raw, json)
Hash identifier: bDE+4YLC3dMV6rWBK3+o3SiT4omvSOVWTuAJJxrFw98=
Subject key identifier: 57:9D:98:E1:4B:81:A3:58:F0:D9:CD:9E:A4:59:37:13:9C:3D:7B:D3
Certificate issuer: /CN=8b5fe50f290dd9e41e5f4a65dabb23972a82cad3
Certificate serial: 01856E82000264220A9641540F277A03B6FF
Authority key identifier: 8B:5F:E5:0F:29:0D:D9:E4:1E:5F:4A:65:DA:BB:23:97:2A:82:CA:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i1_lDykN2eQeX0pl2rsjlyqCytM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/V52Y4UuBo1jw2c2epFk3E5w9e9M.roa
Signing time: Sun 01 Jan 2023 18:04:51 +0000
ROA not before: Sun 01 Jan 2023 18:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30939
IP address blocks: 194.15.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:00:02:64:22:0a:96:41:54:0f:27:7a:03:b6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b5fe50f290dd9e41e5f4a65dabb23972a82cad3
Validity
Not Before: Jan 1 18:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=579d98e14b81a358f0d9cd9ea45937139c3d7bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:51:47:2a:da:1a:a9:a8:f9:a0:dd:1b:b1:5e:
ca:3f:55:dc:c3:f1:93:c8:ea:c3:2c:08:d7:e4:32:
05:d6:46:5a:b4:c3:cc:02:13:aa:4a:08:5c:ee:c1:
2a:73:1b:d8:47:4a:89:80:52:1d:db:e3:9d:5c:ac:
18:69:d7:63:29:7c:c1:0e:74:6e:99:53:33:72:38:
7d:87:09:7e:fa:b0:01:2a:24:33:e9:88:ff:65:f8:
36:e9:21:94:7f:5a:b2:e3:11:be:a0:f7:61:51:80:
3c:bb:06:c4:ce:0b:d7:10:a1:d1:f9:c8:84:6b:91:
9c:73:c9:c5:56:bb:1a:09:e4:5e:be:c2:fe:64:0d:
b9:50:8a:27:fe:da:8f:77:1f:87:6f:ec:db:64:77:
8b:6e:11:a8:7a:f2:e1:55:d3:43:69:bf:26:41:db:
0c:f6:03:e9:52:04:8f:2d:d5:6b:b2:bd:0c:ab:d6:
79:a6:f0:da:99:52:0e:74:ab:e7:51:a2:3b:cd:ca:
c5:fd:45:dc:be:d7:13:3a:8d:d7:62:27:15:20:c6:
6c:a3:aa:01:32:10:b3:23:35:4b:86:5b:01:4b:f6:
76:69:1e:27:49:cf:ab:cf:3b:5c:b6:80:99:e7:29:
ca:75:ef:0d:3d:de:49:c9:40:63:ca:99:a4:38:c3:
97:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:9D:98:E1:4B:81:A3:58:F0:D9:CD:9E:A4:59:37:13:9C:3D:7B:D3
X509v3 Authority Key Identifier:
keyid:8B:5F:E5:0F:29:0D:D9:E4:1E:5F:4A:65:DA:BB:23:97:2A:82:CA:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i1_lDykN2eQeX0pl2rsjlyqCytM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/V52Y4UuBo1jw2c2epFk3E5w9e9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2574cb-b5fd-47d5-9a3b-910ae3bec631/1/i1_lDykN2eQeX0pl2rsjlyqCytM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.213.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a0:bf:33:dd:f9:cc:d5:f1:ba:e4:1b:db:9e:5b:6d:e5:54:
9b:9c:95:06:5b:6b:c5:1a:58:4c:fc:8a:f7:9c:0f:7e:1c:88:
c8:0c:e7:81:38:2e:39:84:49:8e:7c:37:3f:11:4a:a6:e3:5c:
5c:2f:99:f3:18:80:b1:e7:f7:69:fd:2e:e9:f8:5d:0e:e8:15:
ae:36:40:94:83:76:07:d0:1c:99:df:bd:df:97:58:ce:3f:81:
8a:e6:5a:4e:75:7f:ec:15:e4:d9:01:9c:a3:1e:f7:46:44:5c:
53:65:e5:d3:d9:33:3d:a1:12:ed:11:d3:d8:4b:40:d1:03:a6:
75:91:a1:f6:93:ed:9c:c1:36:e5:e5:c0:22:dd:6e:28:83:78:
59:f9:bd:fb:d4:32:5e:ec:31:b7:da:8b:61:d3:4b:26:61:0f:
2f:69:f2:3b:9d:af:bd:1d:d4:69:1e:da:ff:17:b4:52:3a:83:
d8:12:c4:91:ed:49:c8:d2:90:b0:58:48:46:e1:49:b5:25:52:
81:33:b7:73:4e:e6:74:b5:31:75:68:cc:71:81:68:97:f7:1f:
d2:5a:4f:92:b4:9f:1f:b9:65:95:65:64:d9:64:3b:2d:5b:cc:
71:2d:c0:b0:3d:23:d0:5b:46:87:0e:b9:8d:4b:74:9d:a5:1c:
33:63:61:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:59 2024 by rpki-client on console-fra.rpki-client.org