Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/JAdfkHD7F0_VDQq3DatKYq3AnWw.roa
File: JAdfkHD7F0_VDQq3DatKYq3AnWw.roa (raw, json)
Hash identifier: Gs0GV7cjzQHQdqX9VRLf/TlHqo5oBuGAYJw+yfP65rQ=
Subject key identifier: 24:07:5F:90:70:FB:17:4F:D5:0D:0A:B7:0D:AB:4A:62:AD:C0:9D:6C
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 01856CF8533E76B2C10A5277D1342E45A00A
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/JAdfkHD7F0_VDQq3DatKYq3AnWw.roa
Signing time: Sun 01 Jan 2023 10:54:51 +0000
ROA not before: Sun 01 Jan 2023 10:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41907
IP address blocks: 194.34.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:53:3e:76:b2:c1:0a:52:77:d1:34:2e:45:a0:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Jan 1 10:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24075f9070fb174fd50d0ab70dab4a62adc09d6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6d:2c:e8:28:a1:59:68:99:11:cc:87:de:5b:
2c:35:16:2d:d2:b2:3e:39:b7:e7:4b:11:10:ab:e7:
89:3e:d0:7c:95:4d:a6:e7:31:87:c0:e4:43:ef:d1:
74:cd:a3:03:d5:b8:bc:57:ef:c7:50:74:07:67:16:
a7:36:0c:f6:e1:06:85:17:a2:53:ea:ae:81:e7:80:
8e:8e:2c:c4:d2:ef:11:17:a4:ee:0b:f4:7e:10:17:
a1:d8:96:97:5e:2e:2f:eb:eb:37:d5:55:67:c0:0c:
3f:85:15:62:43:7e:e0:df:f6:7c:02:8e:02:70:39:
72:4b:65:f5:ae:03:30:be:67:3e:30:3f:12:98:93:
8c:56:06:e4:09:1c:98:38:31:c8:a0:a0:bd:a6:08:
a7:95:7e:c8:5f:d5:ea:0b:d5:6e:43:6d:c9:a4:3e:
2a:69:12:30:40:95:2f:f5:9c:dc:a7:92:81:3a:0c:
ce:f9:62:b5:24:42:0d:f5:95:8d:4b:76:9c:1a:19:
2f:cf:6a:e3:76:37:d1:a0:ee:80:aa:b6:14:ed:24:
ca:74:0f:84:56:42:c6:1e:0c:f0:e3:2c:8d:46:06:
84:65:aa:70:c9:9d:bb:09:87:75:f0:ed:66:24:47:
89:6c:68:4a:3f:05:aa:d4:70:c5:cf:7e:7d:df:0b:
99:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:07:5F:90:70:FB:17:4F:D5:0D:0A:B7:0D:AB:4A:62:AD:C0:9D:6C
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/JAdfkHD7F0_VDQq3DatKYq3AnWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.198.0/24
Signature Algorithm: sha256WithRSAEncryption
01:74:dd:a2:ff:f6:a3:42:7e:59:cf:84:4a:f2:d7:b7:9a:db:
1d:a8:f3:a7:67:4d:73:fc:cb:89:e1:b0:15:5b:2c:f4:35:32:
17:2e:f9:d1:fc:88:9d:50:de:5c:e0:89:43:42:2e:bc:9d:d9:
de:aa:fa:fa:97:2d:1b:b6:a3:3d:85:96:ab:0a:18:57:a8:21:
8c:24:3c:8d:19:11:9f:db:a8:33:0c:e4:6b:d4:05:75:e1:d1:
53:45:75:3c:42:35:c4:15:1b:6d:9b:fd:ff:c4:2f:1b:e1:7a:
81:ea:80:7e:9a:b6:66:12:60:c6:dd:2e:b3:30:c1:99:e5:06:
1c:ea:06:75:6a:20:e8:83:d6:ff:cb:27:ee:c0:0e:74:04:e4:
62:c4:d6:d9:b7:cd:35:75:81:84:30:9c:7c:47:f7:a1:29:9b:
ae:09:86:43:aa:13:6b:e1:56:85:7b:05:49:41:52:1a:d7:43:
0c:ac:af:ca:bc:46:68:f2:34:5f:56:34:d5:60:ba:80:fe:52:
bc:7b:e6:03:f9:20:6f:b0:d9:cf:83:68:0d:8b:8c:c2:23:42:
9a:dd:b3:f9:4d:ea:05:c4:79:ce:d3:0e:d1:cd:a9:20:79:2b:
b2:d8:51:37:a5:e2:b2:42:20:86:f3:93:96:22:2e:75:f2:81:
46:35:c9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:16 2024 by rpki-client on console-fra.rpki-client.org