Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ORoYrcEYJG8wQu-wFfAqlHI0onY.roa
File: ORoYrcEYJG8wQu-wFfAqlHI0onY.roa (raw, json)
Hash identifier: Yt1kXtt/Ij3Mjav9U0+n/VZv+a4Xi7Ia4d9rlavb4t4=
Subject key identifier: 39:1A:18:AD:C1:18:24:6F:30:42:EF:B0:15:F0:2A:94:72:34:A2:76
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 018C0112D8D9EA1A05D3BEAA9D02F04E0E74
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ORoYrcEYJG8wQu-wFfAqlHI0onY.roa
Signing time: Fri 24 Nov 2023 11:24:21 +0000
ROA not before: Fri 24 Nov 2023 11:24:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59513
IP address blocks: 194.190.55.0/24 maxlen: 24
194.226.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:01:12:d8:d9:ea:1a:05:d3:be:aa:9d:02:f0:4e:0e:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Nov 24 11:24:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=391a18adc118246f3042efb015f02a947234a276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bf:e7:6b:5b:66:1f:ac:b8:01:01:fe:9d:10:
23:22:99:2a:37:6f:47:4d:3c:71:8d:26:4e:ad:06:
1b:6d:e4:8d:bf:70:fa:7c:e7:0c:50:34:e9:82:a6:
49:40:95:63:a1:f5:0a:be:2c:6e:f9:6c:1c:73:10:
1f:8a:3e:86:5c:74:35:c3:5c:05:1f:31:97:c7:74:
c3:43:72:b4:23:7a:b8:20:62:6b:b3:37:73:3e:e9:
47:32:1e:d7:d6:ac:a5:c8:0e:0b:68:43:fc:74:dd:
1c:88:8f:ce:71:0f:4d:dc:d4:8b:04:cf:ff:a3:53:
91:e7:6c:1e:51:18:66:cd:3c:4a:ba:fc:dc:4e:f4:
25:44:08:aa:5d:ae:bf:a9:2e:97:90:89:f6:1f:9e:
48:76:07:5b:c5:5a:d7:45:1d:1c:5f:1a:c8:43:51:
58:c3:a8:57:b1:af:e5:40:b4:cb:0b:d6:c1:f5:56:
f8:8b:6d:d6:de:f8:3f:87:36:ec:5b:fa:1d:35:48:
0c:88:7e:3e:9e:0c:ce:55:f5:fd:10:37:74:35:b4:
58:e2:79:77:69:75:89:6c:21:96:e8:81:76:01:00:
b6:3b:66:f1:68:e8:69:06:b0:be:28:0d:96:c0:12:
cf:a3:11:68:87:b0:94:94:2d:99:a9:e3:f6:67:94:
3c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:1A:18:AD:C1:18:24:6F:30:42:EF:B0:15:F0:2A:94:72:34:A2:76
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/ORoYrcEYJG8wQu-wFfAqlHI0onY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.55.0/24
194.226.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:7c:10:1b:db:85:1b:9f:ff:a3:8a:ff:de:ec:43:b2:bf:b7:
10:5e:65:29:ff:50:9b:a6:11:12:94:e7:16:35:9f:73:e5:f6:
89:8c:76:7e:7b:52:88:18:78:5a:05:78:5f:36:5c:10:61:40:
f9:aa:56:a6:05:78:8a:43:31:77:e8:87:ec:8f:e5:39:63:cd:
5f:0e:8d:cb:96:b3:44:b8:45:7a:4f:fb:fa:75:67:b3:fd:aa:
ec:9d:d9:51:3a:86:39:79:88:88:32:ca:ed:52:d2:cb:0e:01:
c0:df:bb:84:4d:21:66:7d:b6:d5:19:7e:4c:e8:c3:27:2f:47:
24:ec:c7:1b:de:ba:20:24:20:65:1c:8b:09:45:7a:3d:80:00:
eb:4e:57:29:9e:ba:62:ba:17:a8:4b:5c:aa:80:45:6d:20:1a:
e9:6c:88:af:c3:29:eb:e9:e8:f2:f2:14:74:c3:1a:39:33:90:
d1:8d:34:6a:28:bc:79:d1:21:6e:b1:1c:a4:5d:d3:6a:64:0b:
d5:7b:23:e2:91:f7:1c:0c:1d:b2:c4:00:cd:fd:71:f5:eb:7c:
4c:9c:9c:d4:03:40:d5:6a:93:02:16:ce:de:15:ed:76:10:30:
e9:51:61:f2:80:6e:cd:35:fc:da:59:70:56:bf:be:8b:05:01:
73:cb:c3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org