Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/cYsbNl7s9pLrBzLJD1bBtUEJGak.roa
File: cYsbNl7s9pLrBzLJD1bBtUEJGak.roa (raw, json)
Hash identifier: NnkFUb2opkqqCCwojZ7S93/4BBCFpEp6UXi/s1LS1uE=
Subject key identifier: 71:8B:1B:36:5E:EC:F6:92:EB:07:32:C9:0F:56:C1:B5:41:09:19:A9
Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Certificate serial: 018B40F9FB2916CEF8EC9AE10974A73F4D3B
Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/cYsbNl7s9pLrBzLJD1bBtUEJGak.roa
Signing time: Wed 18 Oct 2023 04:10:06 +0000
ROA not before: Wed 18 Oct 2023 04:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216136
IP address blocks: 194.31.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:40:f9:fb:29:16:ce:f8:ec:9a:e1:09:74:a7:3f:4d:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7
Validity
Not Before: Oct 18 04:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=718b1b365eecf692eb0732c90f56c1b5410919a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8a:47:b0:40:56:62:25:c4:87:ba:21:2d:4b:
d9:51:3e:01:0d:a0:58:3b:cf:e7:bf:7e:f8:71:d3:
09:c4:9c:8e:6e:49:cb:f6:a1:e4:4e:2d:63:44:05:
4c:b5:3f:6b:7b:d8:2f:fe:23:c6:6f:d0:63:c5:68:
db:6a:56:41:ba:7f:be:c8:76:95:55:f2:bb:a8:31:
73:d8:81:9c:56:62:be:fb:b1:7c:24:b0:42:77:6d:
66:d2:06:77:0a:02:42:ea:ea:dd:e3:91:b3:52:46:
dd:1f:a4:a1:bb:cb:c3:3d:c6:dd:b2:ad:33:c4:9b:
0f:1d:b2:9f:49:10:cd:c8:40:2f:90:a8:39:59:5a:
e4:ad:25:fc:b8:da:62:d6:71:3f:c8:c9:d1:68:ab:
ca:4b:4a:e2:b0:e3:21:88:4f:f1:51:b1:47:4f:3c:
a5:16:05:20:50:df:c2:61:00:c1:98:b7:92:c1:d5:
cf:87:38:0b:0e:03:1d:df:29:17:73:b2:fc:0b:87:
3a:bb:04:ad:1f:60:30:89:57:6f:f1:29:54:c4:ff:
89:66:06:fe:67:ad:20:ca:17:9d:15:cc:ba:e4:ec:
99:37:81:73:15:54:2f:a4:d3:a3:5f:80:60:50:f4:
9c:75:84:1f:8f:b7:de:9f:5b:e4:14:40:80:88:f8:
62:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:8B:1B:36:5E:EC:F6:92:EB:07:32:C9:0F:56:C1:B5:41:09:19:A9
X509v3 Authority Key Identifier:
keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/cYsbNl7s9pLrBzLJD1bBtUEJGak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.134.0/24
Signature Algorithm: sha256WithRSAEncryption
53:79:e4:d0:66:2a:9d:f7:01:48:14:84:d0:06:b4:79:22:64:
ae:8c:55:01:e5:d8:c5:7e:ec:4c:3a:f1:25:59:34:d9:04:e0:
77:bc:70:f3:4e:7f:71:61:94:db:df:aa:2c:93:be:8f:b7:c4:
a2:b5:08:3a:7b:1c:ee:8d:76:43:75:5b:a1:9d:f5:47:4d:92:
6b:62:d9:13:d3:73:57:b9:b7:8e:15:d6:44:3b:0e:17:fb:48:
4b:72:e0:27:f5:f8:32:4a:22:64:a1:ca:11:fd:3c:be:ab:32:
f8:b6:67:7b:b4:56:98:a4:46:70:16:cf:8f:bf:39:1b:e8:81:
c3:41:e8:25:7c:18:32:58:28:6f:f7:ce:7c:e6:b4:a3:b0:2f:
84:2f:22:fd:a4:cb:f4:4e:75:80:9d:59:64:85:39:c4:09:96:
2d:a1:77:09:f2:15:88:d0:84:a1:09:6d:bc:4e:83:8b:2a:e8:
91:a9:4f:27:ac:c7:93:e6:30:16:36:bf:c6:d1:c4:e3:85:99:
e1:9c:20:7f:8e:49:41:c2:1f:52:16:c3:2d:c9:32:2b:16:23:
83:3d:6b:4a:bb:ac:9e:f0:62:3e:d4:24:bf:e2:10:3b:64:b9:
62:c5:0c:01:be:4c:ee:38:d6:7b:ad:48:a2:78:fd:8a:25:d9:
02:1f:f1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:06 2024 by rpki-client on console-ams.rpki-client.org