Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/8Z_10QOd-iXbPZznfNnipyNhrIU.roa
File: 8Z_10QOd-iXbPZznfNnipyNhrIU.roa (raw, json)
Hash identifier: QHbQkNhjvMAsFzlKZJy9Gn0bKMgu8uAYYaVVxnybfVI=
Subject key identifier: F1:9F:F5:D1:03:9D:FA:25:DB:3D:9C:E7:7C:D9:E2:A7:23:61:AC:85
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB858E3A4B739EA6737FECA828FCA71
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/8Z_10QOd-iXbPZznfNnipyNhrIU.roa
Signing time: Sun 01 Jan 2023 09:44:58 +0000
ROA not before: Sun 01 Jan 2023 09:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212709
IP address blocks: 194.51.187.0/24 maxlen: 24
81.252.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:58:e3:a4:b7:39:ea:67:37:fe:ca:82:8f:ca:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f19ff5d1039dfa25db3d9ce77cd9e2a72361ac85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4f:75:3b:1a:bb:21:3b:fa:70:68:ba:58:4d:
1e:d5:56:99:8d:c2:d3:2a:a3:44:b5:a0:f0:89:a1:
50:6b:30:55:da:0e:18:a9:c5:d6:a1:d0:15:ec:31:
f5:5e:d6:b7:72:f0:cd:1d:27:00:79:93:77:6a:3e:
3c:89:ce:75:e6:86:63:00:27:89:e9:8c:a9:df:09:
5a:82:f3:7c:e6:2c:63:9e:8f:8d:21:a1:e1:62:1a:
ca:a0:d2:bc:a0:41:d2:d3:fe:aa:d2:79:3c:8f:9c:
ca:ba:ca:56:00:4d:87:47:87:f0:af:d8:8b:4e:e8:
a6:96:59:71:69:6e:35:7b:e8:ed:20:9f:c4:81:94:
17:92:dd:e0:0e:98:00:49:10:a2:42:30:bc:68:6c:
eb:a6:ce:d6:60:a8:c6:da:bf:39:d7:33:d9:42:ab:
f3:a0:9f:8e:41:e2:e9:02:d8:82:50:b1:2f:f3:e8:
5f:61:2e:db:3a:44:4f:1a:c5:f5:93:5b:d7:0c:ca:
c2:01:06:32:dd:5d:12:2a:4b:1f:34:ec:3f:41:74:
38:b3:2c:1b:9b:f4:40:9d:ae:3e:30:9e:c3:f7:03:
70:ee:85:3c:df:cb:3a:5f:71:b8:1b:e6:e6:bc:c8:
b3:f8:2f:24:9f:dd:b7:13:ec:47:ce:05:3a:15:fe:
b0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:9F:F5:D1:03:9D:FA:25:DB:3D:9C:E7:7C:D9:E2:A7:23:61:AC:85
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/8Z_10QOd-iXbPZznfNnipyNhrIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.252.189.0/24
194.51.187.0/24
Signature Algorithm: sha256WithRSAEncryption
07:7d:4c:75:76:d3:7c:93:77:1e:8e:5b:a8:ea:98:c2:80:30:
4f:f2:4c:b4:4b:c9:37:45:17:97:d2:70:2f:c2:43:8f:64:b3:
a9:6d:f2:07:34:f4:88:c6:67:4d:05:21:99:96:ce:46:76:cc:
62:d4:3c:be:e8:71:ec:0f:8c:a9:ff:67:b9:90:8d:53:fa:49:
04:fe:65:04:ba:f3:c9:3f:b0:ee:19:d5:63:b4:01:a9:40:72:
6b:7c:1d:4c:cc:8a:17:b4:fa:5f:9a:df:24:88:ef:fb:61:66:
31:31:7c:a5:a3:2f:e4:06:ac:dd:c1:f9:d7:0f:84:27:f0:03:
19:28:91:95:0f:6c:90:2e:c2:fa:8d:5e:81:ea:22:4d:ce:c9:
02:f8:4f:6d:47:c0:44:9a:16:83:e9:20:94:6f:4f:a2:2f:3b:
a0:e0:26:b5:4c:70:e0:48:6c:58:ac:11:6c:47:91:12:0c:40:
62:d1:2c:3b:1d:8c:43:c0:cc:99:cf:1b:44:98:21:a5:d9:bc:
32:e0:3a:c6:96:ae:d5:40:56:e9:64:5c:26:a8:49:78:18:b9:
ce:10:0a:3c:58:5b:7b:40:ce:2b:49:5c:74:00:96:16:8a:ad:
e0:17:17:c1:a2:62:ff:e7:08:cd:37:7a:f2:95:ae:ec:29:c7:
96:4d:c7:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org