Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/voKpMSg8bdDGNjJhqWcE7wz9U0I.roa
File: voKpMSg8bdDGNjJhqWcE7wz9U0I.roa (raw, json)
Hash identifier: eMe7h+5CidvLnQV9BASC7+20+SFp+YQS+x9VO98qXK8=
Subject key identifier: BE:82:A9:31:28:3C:6D:D0:C6:36:32:61:A9:67:04:EF:0C:FD:53:42
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 018F871FE197A1F4E8AABFB3C0D5F14AB7F4
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/voKpMSg8bdDGNjJhqWcE7wz9U0I.roa
Signing time: Fri 17 May 2024 15:16:04 +0000
ROA not before: Fri 17 May 2024 15:16:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48176
IP address blocks: 194.32.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 06:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:1f:e1:97:a1:f4:e8:aa:bf:b3:c0:d5:f1:4a:b7:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: May 17 15:16:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be82a931283c6dd0c6363261a96704ef0cfd5342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e3:cc:7a:8c:9e:3c:13:f4:bc:5d:69:77:d4:
70:0e:67:07:85:98:00:e7:0d:5b:4a:25:51:31:9c:
b4:71:e6:e5:45:9c:b4:06:94:fd:5c:22:24:af:a7:
e6:49:56:3a:a6:ec:14:c1:d6:d3:81:72:97:71:74:
f3:69:38:56:ad:92:f9:30:f0:a4:b7:24:14:c5:61:
c0:ac:b7:ca:e0:fe:5c:cd:c0:ee:3c:41:67:17:0f:
18:37:26:bc:f3:19:de:e3:04:ed:cc:ed:24:2b:91:
19:ab:b5:e2:e8:ab:46:4c:9f:b8:41:94:62:20:79:
47:97:71:22:85:47:5a:09:4f:66:28:20:78:ee:24:
a1:8a:c3:96:8f:b4:55:af:be:3c:ea:15:b0:bb:d1:
ef:75:41:00:cb:fe:ef:f7:16:43:0b:27:77:e0:32:
87:86:3e:49:9a:df:7e:af:38:31:05:d0:4f:96:f2:
3a:a2:44:48:38:34:5f:dd:8c:e9:c6:73:25:5d:be:
05:ed:e2:e3:c1:6f:51:ed:d5:77:65:95:69:fc:1c:
41:9f:43:cb:5f:f7:dc:f9:73:88:de:b2:82:88:74:
86:7c:bf:25:4e:03:5b:90:63:1a:07:d9:d2:45:65:
e0:b6:7c:19:66:47:d7:04:39:5c:29:6d:d5:8e:2a:
66:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:82:A9:31:28:3C:6D:D0:C6:36:32:61:A9:67:04:EF:0C:FD:53:42
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/voKpMSg8bdDGNjJhqWcE7wz9U0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.140.0/22
Signature Algorithm: sha256WithRSAEncryption
34:90:5f:2c:65:26:a6:02:a4:4a:d6:16:1d:c2:80:9b:ad:f5:
9b:84:cb:8e:80:83:6c:7e:7c:bf:27:87:dd:7f:f3:4e:db:0d:
ef:22:eb:d8:2d:92:a6:69:83:3b:8d:d9:00:5f:73:29:e3:ef:
ec:64:1a:18:9d:ed:24:92:01:bd:e8:45:96:24:3e:63:28:70:
74:a7:f9:e0:81:c2:a4:16:41:2b:ff:d8:85:13:50:12:0a:38:
12:3c:04:1b:2c:02:c0:88:ee:e9:6f:29:5c:17:92:68:51:91:
71:46:96:a5:09:9a:f4:43:e1:aa:4b:ee:67:c5:cf:65:48:bc:
a0:68:ee:d8:46:e0:5a:cf:4a:54:a7:d1:77:ad:9d:e6:48:9a:
2b:50:f1:78:a2:53:7f:d0:88:6a:c8:fe:ab:a6:39:ac:3c:de:
39:2e:b1:4f:68:cc:ec:3f:10:17:93:0c:31:fd:1a:91:f6:b2:
85:f9:3c:d2:00:bd:d1:7c:63:a1:9e:53:4e:8b:69:10:bf:16:
e7:4a:3f:f0:28:e3:0c:b1:94:ba:80:3e:fb:8f:64:eb:7d:f9:
a3:ab:39:b3:fb:98:d2:4e:5b:0d:a1:b1:b1:eb:ab:ab:65:ee:
70:ba:4b:46:f8:ad:0e:96:fc:e0:8f:d0:19:37:55:b5:c3:5f:
9d:e6:9a:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:27 2024 by rpki-client on console-ams.rpki-client.org