Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/53Yeou-2eRXOKlmkhYQw5LSH9rk.roa
File: 53Yeou-2eRXOKlmkhYQw5LSH9rk.roa (raw, json)
Hash identifier: GUhszTO1gjvowCdRdIEd2P4b/US0TEFRT1nGTr/Ewwo=
Subject key identifier: E7:76:1E:A2:EF:B6:79:15:CE:2A:59:A4:85:84:30:E4:B4:87:F6:B9
Certificate issuer: /CN=8f137200c9ea1560a3f42fd7e100ed28411416bc
Certificate serial: 0187126A91F8391C9A14DE6C39F9ACE9936B
Authority key identifier: 8F:13:72:00:C9:EA:15:60:A3:F4:2F:D7:E1:00:ED:28:41:14:16:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jxNyAMnqFWCj9C_X4QDtKEEUFrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/53Yeou-2eRXOKlmkhYQw5LSH9rk.roa
Signing time: Fri 24 Mar 2023 06:59:46 +0000
ROA not before: Fri 24 Mar 2023 06:59:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10599
IP address blocks: 194.37.84.0/24 maxlen: 24
194.37.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Oct 2023 15:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:12:6a:91:f8:39:1c:9a:14:de:6c:39:f9:ac:e9:93:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f137200c9ea1560a3f42fd7e100ed28411416bc
Validity
Not Before: Mar 24 06:59:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7761ea2efb67915ce2a59a4858430e4b487f6b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e0:32:18:5a:1e:65:84:49:c9:2d:c4:82:d6:
81:51:e5:11:29:b5:c6:ec:64:e5:1d:15:1a:a7:15:
1b:ec:49:e8:fc:f3:08:ad:70:5d:4c:cf:43:55:5d:
e2:c3:21:b4:54:0e:64:98:db:7d:4b:55:5a:0e:e3:
0c:94:a0:09:5f:56:74:7e:ca:a7:24:2d:37:30:b3:
23:45:87:c1:0f:72:b9:a5:6a:d9:29:27:c7:b2:72:
4d:5b:e0:bc:30:d9:56:38:06:40:7d:82:5e:8d:96:
87:bc:43:be:9e:8c:bd:b5:52:c8:25:33:0c:cf:b1:
65:92:e5:34:64:d0:09:6c:3a:2d:a1:05:07:11:ac:
a9:a7:82:8e:0d:af:65:4a:b6:c1:da:ef:ac:51:bb:
01:6e:95:9e:b8:9e:72:4b:c2:2a:69:5e:24:a8:bf:
36:c6:32:36:c1:da:c2:64:75:68:46:c1:46:76:1a:
3f:9a:60:1f:c2:c6:24:ed:8f:cb:ee:58:55:97:7d:
d1:f3:82:3a:80:51:ee:d5:a2:ed:11:df:22:39:d7:
33:b1:e8:2b:6c:fc:b4:04:43:2a:5a:ee:b4:ab:da:
13:5e:34:fb:4f:bd:8d:02:4d:a0:4f:c0:eb:4f:83:
52:7f:68:f8:8f:d4:fa:86:36:af:4d:0e:3d:d1:5e:
a8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:76:1E:A2:EF:B6:79:15:CE:2A:59:A4:85:84:30:E4:B4:87:F6:B9
X509v3 Authority Key Identifier:
keyid:8F:13:72:00:C9:EA:15:60:A3:F4:2F:D7:E1:00:ED:28:41:14:16:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jxNyAMnqFWCj9C_X4QDtKEEUFrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/53Yeou-2eRXOKlmkhYQw5LSH9rk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/jxNyAMnqFWCj9C_X4QDtKEEUFrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.84.0/24
194.37.86.0/24
Signature Algorithm: sha256WithRSAEncryption
93:00:b8:99:c4:63:5f:a0:24:ba:ef:a4:51:4b:ef:f3:b0:52:
7a:22:d7:4b:b8:1f:e5:06:c0:08:ca:3f:a9:4f:28:97:6f:93:
db:d1:c0:19:01:f7:7f:3b:3e:35:ca:24:a7:a1:89:7b:a1:63:
d0:85:f0:1d:dc:4f:45:ca:41:6d:c1:ee:8d:85:a7:29:90:8e:
05:8c:5b:53:db:3d:d8:0d:4d:c0:7b:21:a3:f9:44:07:72:f1:
98:74:54:2e:ea:0a:3a:f9:d4:c3:54:f5:07:93:09:7a:b0:f5:
ff:f1:5f:2f:82:64:ce:15:92:98:79:8a:22:34:af:19:23:7f:
11:ad:41:be:e6:14:7f:38:a8:23:60:d3:90:2b:8e:6a:14:16:
97:04:bb:ee:0f:1a:7d:08:21:fd:9d:69:e8:bf:22:b7:64:36:
fb:00:f9:6e:df:e0:8e:8b:92:cc:73:8d:01:14:b1:b0:81:ad:
c4:96:bb:e1:30:a0:23:39:20:dd:ae:70:1b:09:21:f8:e5:d2:
da:67:21:b6:c6:af:ff:2e:10:7d:06:6d:37:c9:79:82:71:ea:
65:85:83:c9:79:5e:78:39:43:14:ec:01:7b:9d:4e:74:ad:d9:
4c:ff:12:88:a8:0a:21:ed:a9:0a:68:44:d3:53:a6:e9:48:21:
8c:98:99:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:59 2024 by rpki-client on console-ams.rpki-client.org