Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/CeM2gaFjNEwqDjBiFogI9oWQeLw.roa
File: CeM2gaFjNEwqDjBiFogI9oWQeLw.roa (raw, json)
Hash identifier: g55qwHSSWneDVm73LyoVLO5N8svcXuDSUNjB04T2ZlQ=
Subject key identifier: 09:E3:36:81:A1:63:34:4C:2A:0E:30:62:16:88:08:F6:85:90:78:BC
Certificate issuer: /CN=c82206f506c826eb1057e5c269b3710e38ab696c
Certificate serial: 018ADFE4DACF3364A9A4959C85FE2217E0BC
Authority key identifier: C8:22:06:F5:06:C8:26:EB:10:57:E5:C2:69:B3:71:0E:38:AB:69:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yCIG9QbIJusQV-XCabNxDjiraWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/CeM2gaFjNEwqDjBiFogI9oWQeLw.roa
Signing time: Fri 29 Sep 2023 07:43:51 +0000
ROA not before: Fri 29 Sep 2023 07:43:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198333
IP address blocks: 176.123.51.0/24 maxlen: 24
194.139.6.0/23 maxlen: 23
194.139.7.0/24 maxlen: 24
194.139.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:df:e4:da:cf:33:64:a9:a4:95:9c:85:fe:22:17:e0:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c82206f506c826eb1057e5c269b3710e38ab696c
Validity
Not Before: Sep 29 07:43:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09e33681a163344c2a0e3062168808f6859078bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0f:8b:fb:45:ee:94:60:2f:31:13:53:07:3e:
b5:e6:6c:d8:61:3f:b7:84:5e:1f:65:f5:b3:aa:17:
dd:51:bb:cd:5a:d0:7b:d7:96:20:ac:db:e3:47:89:
0d:d7:f4:6c:ad:a2:09:bb:05:f5:4e:95:7f:5e:25:
6f:ad:d6:ab:ea:c3:23:52:bd:50:07:6b:a1:fe:b5:
87:49:5c:a9:6e:61:0e:44:65:36:ca:14:8c:12:aa:
fb:9d:de:0a:53:1e:02:0f:24:b8:72:c9:f2:91:ac:
af:b8:7e:83:c2:6a:55:e3:56:fd:05:65:83:2b:b3:
1f:fe:6a:d0:d2:28:b0:a3:26:63:ec:51:7f:e8:b4:
71:d6:93:f1:7a:a2:ba:24:b3:09:57:5a:2f:2f:3e:
98:14:81:ab:d6:0c:32:56:17:f2:53:61:1c:c9:62:
80:c3:6e:6f:fb:17:c9:60:d2:69:fc:d2:8f:17:d8:
62:bb:7b:d2:e1:2e:ba:64:c7:92:2f:48:ba:9d:ea:
46:10:2e:7e:1f:4b:bc:f5:d3:7a:1f:f3:27:84:ac:
65:05:6b:21:34:b3:41:c7:4e:af:e9:ce:c9:2e:21:
cf:1d:8b:0b:5a:c0:1e:2f:2a:aa:94:70:87:fe:b4:
83:13:10:7a:10:6e:b1:1b:5a:64:cc:75:91:f6:01:
1c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E3:36:81:A1:63:34:4C:2A:0E:30:62:16:88:08:F6:85:90:78:BC
X509v3 Authority Key Identifier:
keyid:C8:22:06:F5:06:C8:26:EB:10:57:E5:C2:69:B3:71:0E:38:AB:69:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yCIG9QbIJusQV-XCabNxDjiraWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/CeM2gaFjNEwqDjBiFogI9oWQeLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/29b082-d6d1-4147-af1c-61b0c7ff2e4e/1/yCIG9QbIJusQV-XCabNxDjiraWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.123.51.0/24
194.139.6.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:7f:09:94:4f:01:72:4e:fd:ef:e1:ee:77:f7:05:d2:ed:90:
bd:cd:36:ef:b6:fe:ce:9e:0f:57:2d:7c:7c:4c:bb:57:5a:54:
1a:58:d1:6e:58:d6:5b:b9:6b:c1:73:dc:bd:ae:cc:89:96:a6:
be:4c:0d:4f:31:5e:01:4b:35:8a:5b:db:04:7b:34:a5:d1:9e:
0e:bf:1d:4b:c6:95:45:57:3b:36:40:30:6b:0d:aa:25:7b:24:
46:f7:d4:31:95:40:71:6c:74:cc:8b:08:66:39:19:db:2a:95:
b8:81:69:ab:04:fe:c0:7c:30:86:a1:93:bb:b8:6e:89:dd:07:
0b:57:f7:44:d9:6c:57:8b:45:32:6a:57:85:7f:ca:02:bd:0d:
11:09:39:eb:07:fe:2e:8a:ec:b4:00:ff:a0:47:ec:dd:aa:f5:
fa:75:79:36:05:04:5d:e9:2f:7c:6b:79:2d:42:83:ab:c8:e9:
cb:86:9e:54:66:f9:34:f1:ae:38:69:f4:0f:c1:d5:45:13:07:
7d:26:04:38:54:8e:ca:3a:35:51:86:8b:44:2a:14:7d:2b:ba:
f8:ab:02:bd:6f:4c:2f:d5:63:e7:58:41:f3:b3:19:28:b2:5f:
d6:59:9b:dc:b5:1f:41:df:04:19:ba:f1:47:07:92:12:9e:35:
1b:6c:5c:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-fra.rpki-client.org