Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/1kMPJl1LhKjF7P9-Br_30SrGzZQ.roa
File: 1kMPJl1LhKjF7P9-Br_30SrGzZQ.roa (raw, json)
Hash identifier: k6VJaxzyOhcQDA4v5422GAW68HmSnbPC3dAsLCFNh4s=
Subject key identifier: D6:43:0F:26:5D:4B:84:A8:C5:EC:FF:7E:06:BF:F7:D1:2A:C6:CD:94
Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Certificate serial: 01889E05ACE95D7C2D4193ED281E267B67EA
Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/1kMPJl1LhKjF7P9-Br_30SrGzZQ.roa
Signing time: Fri 09 Jun 2023 02:39:12 +0000
ROA not before: Fri 09 Jun 2023 02:39:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198229
IP address blocks: 194.31.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9e:05:ac:e9:5d:7c:2d:41:93:ed:28:1e:26:7b:67:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Validity
Not Before: Jun 9 02:39:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6430f265d4b84a8c5ecff7e06bff7d12ac6cd94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c4:28:2e:f2:81:4f:8d:bf:9f:79:4e:9c:c4:
ec:94:0e:fb:7f:8f:86:97:40:5d:3f:7b:71:be:d2:
23:40:1a:ae:51:15:a9:ce:4d:04:fb:79:c6:c2:00:
64:3b:52:08:0e:66:af:25:50:e3:7f:61:4b:5b:80:
99:49:8a:ac:59:f3:26:05:b2:fd:f5:77:ca:4e:2c:
9b:2f:64:24:9f:52:60:cf:7f:29:9e:8b:fb:c1:22:
45:08:bf:74:01:54:b1:5e:38:eb:f1:9d:d1:f4:91:
3c:ae:01:20:de:73:0d:67:0c:02:bb:7c:d3:64:f2:
f3:d0:09:c4:84:5a:5e:97:c8:c1:70:32:f4:e6:38:
ac:84:12:40:6e:41:a6:b2:b5:f3:d9:b6:26:ed:29:
d7:1c:da:22:34:af:2e:8a:b2:ed:53:73:ba:93:0d:
0a:ef:f5:e9:3b:e5:64:97:77:be:40:d1:93:90:c3:
cb:98:27:38:ae:70:b3:be:43:41:4a:99:16:54:7a:
95:a4:4c:cd:f2:f0:dc:7b:dd:02:ec:12:76:90:2e:
6c:bd:b1:97:2e:cb:1f:61:c7:35:03:d3:d5:65:5f:
ad:e5:9a:44:c7:af:1e:cc:2c:89:9b:3b:74:7a:ce:
ed:18:25:c9:42:15:74:f6:e0:fd:5b:d4:6f:bd:c2:
62:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:43:0F:26:5D:4B:84:A8:C5:EC:FF:7E:06:BF:F7:D1:2A:C6:CD:94
X509v3 Authority Key Identifier:
keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/1kMPJl1LhKjF7P9-Br_30SrGzZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.132.0/24
Signature Algorithm: sha256WithRSAEncryption
58:5e:7d:31:73:f2:35:21:81:dc:90:b6:67:61:72:df:dd:0c:
3b:53:3f:fc:0c:e2:e1:45:c8:3d:26:8a:5c:be:8a:bc:45:98:
b7:4e:bc:6d:6e:f0:cd:df:97:ed:8b:65:6d:39:dd:f6:11:4e:
07:be:66:d6:e9:8f:39:04:0a:ba:82:04:df:75:f5:41:66:36:
f7:78:b1:a9:4f:c6:fc:89:47:49:fd:67:b6:e5:38:74:f2:21:
af:90:d6:7f:a4:ea:eb:ef:ce:de:5e:a2:0f:49:ef:f7:58:d8:
0d:79:53:50:4e:1b:6e:6a:88:99:11:b0:63:39:78:b9:15:f5:
ed:1b:27:01:29:28:eb:84:af:21:3c:9d:13:62:c8:dc:93:08:
92:6a:a3:e5:f9:ac:09:64:8b:9d:65:1a:ef:32:b5:3c:82:ad:
6b:1c:36:f8:ba:46:fd:93:8b:92:08:51:c6:93:71:db:53:15:
92:a1:46:35:36:de:2a:8d:96:b0:65:05:35:3c:8c:7f:2b:13:
49:82:57:c0:fd:05:a8:3f:d8:51:db:23:04:08:d2:5a:d6:15:
0b:9c:7b:20:97:88:03:61:15:8c:5d:45:04:50:3a:1b:6c:a5:
e4:9e:a4:5a:f3:d2:6e:77:c5:db:55:6b:f1:b9:90:9a:dd:10:
f9:09:66:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:15 2024 by rpki-client on console-fra.rpki-client.org