Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/M64DvCmfJPjUF4wxyg-w95_W6z0.roa
File: M64DvCmfJPjUF4wxyg-w95_W6z0.roa (raw, json)
Hash identifier: UiCkFPdu5vb3I5oY1mC8jjhgf3uWn7Nhaaxz/fco38I=
Subject key identifier: 33:AE:03:BC:29:9F:24:F8:D4:17:8C:31:CA:0F:B0:F7:9F:D6:EB:3D
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: 018CC4254CF97087437CD994CC41FE4F5AF7
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/M64DvCmfJPjUF4wxyg-w95_W6z0.roa
Signing time: Mon 01 Jan 2024 08:30:27 +0000
ROA not before: Mon 01 Jan 2024 08:30:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6730
IP address blocks: 194.56.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 12:39:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:4c:f9:70:87:43:7c:d9:94:cc:41:fe:4f:5a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Jan 1 08:30:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33ae03bc299f24f8d4178c31ca0fb0f79fd6eb3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:81:86:8a:33:d1:f1:b0:b0:86:fe:64:f0:2e:
e9:29:5d:45:1f:98:65:e0:25:1e:72:61:38:05:2b:
4e:8d:56:cd:d2:48:06:d7:e1:ee:4b:27:bf:65:6b:
8b:7e:1e:5a:c3:9b:b3:11:13:09:af:ff:34:f3:80:
20:86:a7:5d:51:75:ff:93:93:24:66:3c:96:88:fa:
86:8a:1c:38:f4:e5:11:c2:c0:77:5c:32:f2:34:39:
ed:34:fc:eb:27:bb:1f:04:0f:6e:80:43:73:ae:18:
af:6e:e8:08:15:ad:32:f8:8d:6f:55:76:c9:df:06:
ba:c0:dc:fc:08:b5:6c:58:4b:d0:4a:1a:a5:f5:7b:
ab:aa:6e:76:5e:44:7e:3a:e1:6f:e0:15:cd:3c:5a:
40:35:c5:a6:6e:64:49:a6:3b:0c:c3:21:6e:12:54:
2a:a6:73:a6:89:37:6d:c5:8b:63:8e:5d:04:8b:9e:
56:fc:20:c5:f8:3c:2f:51:3d:1b:f6:b6:d8:de:18:
e7:5f:a8:93:8d:75:16:52:6a:77:b6:8f:47:39:b8:
35:e2:c4:d2:be:c0:32:b8:12:11:4a:cf:87:0d:a9:
37:3e:78:0d:c2:b1:a2:bf:9a:de:c5:72:b8:d8:cb:
7d:83:4c:3a:83:ae:db:06:2a:7e:96:c7:6b:46:72:
43:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:AE:03:BC:29:9F:24:F8:D4:17:8C:31:CA:0F:B0:F7:9F:D6:EB:3D
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/M64DvCmfJPjUF4wxyg-w95_W6z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.8.0/24
Signature Algorithm: sha256WithRSAEncryption
54:f7:26:a4:26:9c:2a:11:cf:37:c7:de:08:02:7b:38:a1:4e:
9b:7d:9c:1c:fb:ad:e1:20:a9:f8:67:d1:b3:eb:67:cb:72:18:
32:3f:e5:76:28:5f:c1:0d:5c:3a:9b:60:d1:93:fd:2b:e1:21:
f8:4c:49:07:90:e0:20:0d:42:d4:13:9c:bb:8c:5d:25:8c:25:
0d:fe:84:c4:df:48:91:43:0f:f4:50:08:86:22:e0:90:a7:e3:
c6:15:7f:b2:9d:54:39:0a:e4:b4:d3:3a:3a:5e:9b:b1:e8:5c:
35:ad:7c:bc:2c:24:cd:16:e4:88:c2:18:5e:70:40:cc:bf:fc:
12:82:2e:67:fd:4d:e1:96:ac:df:e9:05:5a:d7:7a:9c:b3:b0:
b6:cb:55:95:41:69:46:39:0f:f9:3d:f2:cf:25:ed:9b:fd:67:
26:13:38:88:08:0e:2d:2c:c5:c0:2b:31:d2:53:24:2e:fc:2b:
ca:60:a7:81:5d:78:b0:17:4c:d5:99:70:85:ad:58:da:78:a5:
c2:e6:00:80:b3:91:24:cf:74:56:49:0c:e3:a8:ee:70:02:73:
f9:89:16:de:6c:42:35:d3:76:d5:97:9b:a6:d6:a2:2e:62:99:
82:3a:a3:9c:37:a9:68:3d:7f:52:17:23:85:69:cf:8f:4f:f7:
04:46:f6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:59 2024 by rpki-client on console-fra.rpki-client.org