Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/bcf9a3-6963-43c3-b8dd-389a3098ec2a/1/1Yx2pVrKq03H-PIsKsY8zskgcGI.roa
File: 1Yx2pVrKq03H-PIsKsY8zskgcGI.roa (raw, json)
Hash identifier: QA87Hvc9sMoIjsAi2yEjijhPDAg5CPhiyam4fKWXWdo=
Subject key identifier: D5:8C:76:A5:5A:CA:AB:4D:C7:F8:F2:2C:2A:C6:3C:CE:C9:20:70:62
Certificate issuer: /CN=30747494ff4e26578d9deabe2ee6d004b3fe2d8c
Certificate serial: 01856F9DB6A7A5972974D3236E0E32279750
Authority key identifier: 30:74:74:94:FF:4E:26:57:8D:9D:EA:BE:2E:E6:D0:04:B3:FE:2D:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHR0lP9OJleNneq-LubQBLP-LYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/bcf9a3-6963-43c3-b8dd-389a3098ec2a/1/1Yx2pVrKq03H-PIsKsY8zskgcGI.roa
Signing time: Sun 01 Jan 2023 23:14:44 +0000
ROA not before: Sun 01 Jan 2023 23:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34636
IP address blocks: 194.31.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b6:a7:a5:97:29:74:d3:23:6e:0e:32:27:97:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30747494ff4e26578d9deabe2ee6d004b3fe2d8c
Validity
Not Before: Jan 1 23:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d58c76a55acaab4dc7f8f22c2ac63ccec9207062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:d9:5f:a1:b5:37:63:46:40:5a:1d:74:1f:30:
6d:a3:8d:6e:a8:05:f2:9e:cd:ab:97:8c:3e:0e:c0:
54:dd:9a:01:b5:7e:7e:6a:6f:c6:2d:05:c5:3e:11:
c3:0b:bc:cc:ae:7c:17:63:3f:d3:e8:62:ed:90:7f:
3b:77:92:ec:a8:b3:e8:83:e1:00:39:13:81:77:7f:
29:27:0b:5a:49:1a:5a:43:51:88:e0:2d:26:c8:cd:
88:aa:2a:2c:ce:c3:08:69:39:0d:35:4e:db:d7:da:
f0:23:98:0a:3f:73:f5:be:9b:78:c0:36:53:20:5c:
6f:32:63:73:39:2c:24:f3:af:46:85:12:dd:a3:88:
95:6f:f2:16:c2:74:84:c8:08:0e:0d:5e:2c:ef:04:
89:8c:39:90:0e:6a:ad:00:a0:65:ad:3b:c9:c2:3e:
7b:31:ef:ad:fc:cd:d0:ca:a7:60:ea:9e:66:46:1b:
80:f8:eb:8b:fa:9e:f2:1b:e2:92:a6:a7:b6:67:22:
b3:f0:0c:94:fd:56:a7:2e:4c:7a:a6:9b:c2:ee:2d:
5d:70:b3:19:aa:a8:87:ca:41:47:f0:07:70:b0:d5:
e9:9f:88:95:72:ae:36:78:2e:f9:1d:ba:6b:fa:23:
6e:e5:d7:cf:07:e3:f9:38:ef:55:c4:8b:aa:de:31:
b4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8C:76:A5:5A:CA:AB:4D:C7:F8:F2:2C:2A:C6:3C:CE:C9:20:70:62
X509v3 Authority Key Identifier:
keyid:30:74:74:94:FF:4E:26:57:8D:9D:EA:BE:2E:E6:D0:04:B3:FE:2D:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHR0lP9OJleNneq-LubQBLP-LYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bcf9a3-6963-43c3-b8dd-389a3098ec2a/1/1Yx2pVrKq03H-PIsKsY8zskgcGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bcf9a3-6963-43c3-b8dd-389a3098ec2a/1/MHR0lP9OJleNneq-LubQBLP-LYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.108.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:59:37:a3:bf:a4:0f:59:3c:65:ec:6d:5f:22:37:6d:98:98:
96:34:f6:b7:55:55:75:5c:88:84:10:f5:b2:61:a1:45:3f:12:
91:7f:30:4d:6a:e4:5e:88:0c:23:f3:ca:af:35:19:7b:c7:29:
80:51:8e:20:86:01:6f:05:79:2e:9e:73:59:87:a4:e9:54:3c:
03:6a:b9:3e:38:7c:c2:f5:69:79:2b:a3:6d:b6:c1:46:70:7d:
3a:a6:f9:a5:cf:89:c6:18:10:44:ec:b5:59:7d:aa:c5:7c:7a:
f2:2d:c7:72:5b:6e:0a:c9:c4:0a:63:3b:ca:d3:90:8e:2a:7d:
69:b9:d9:a5:a8:67:be:0b:9e:55:05:67:c6:9c:ea:99:f5:41:
56:a5:e6:2c:d0:57:62:8f:6f:6f:e9:f7:f9:b4:d0:ff:a5:0f:
5b:63:68:1f:39:fb:da:aa:a8:13:df:34:c3:8b:b0:2d:26:e5:
76:63:41:f0:10:73:7b:ef:ea:6b:d7:3f:ff:52:9d:35:ee:4b:
39:e9:89:3f:fc:24:90:22:fb:7a:4b:bb:10:9f:12:29:45:df:
1a:a4:00:8f:65:ba:14:2e:30:b2:03:2f:c7:cc:26:7e:62:bb:
52:d4:16:bd:2b:5c:66:4c:85:7f:8e:5a:87:da:cd:89:89:b4:
b3:a0:53:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:16 2024 by rpki-client on console-ams.rpki-client.org