Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/fO5ikeiv7eIeobz2ILkNZidjgMc.roa
File: fO5ikeiv7eIeobz2ILkNZidjgMc.roa (raw, json)
Hash identifier: xgJBXzMvp/uhHutpUKru+dl8ei9qP2byFgFjw1zXxLA=
Subject key identifier: 7C:EE:62:91:E8:AF:ED:E2:1E:A1:BC:F6:20:B9:0D:66:27:63:80:C7
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0187DD152446E5B2F8D0D92BDC2FBB4D5485
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/fO5ikeiv7eIeobz2ILkNZidjgMc.roa
Signing time: Tue 02 May 2023 15:29:22 +0000
ROA not before: Tue 02 May 2023 15:29:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60040
IP address blocks: 194.226.174.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dd:15:24:46:e5:b2:f8:d0:d9:2b:dc:2f:bb:4d:54:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: May 2 15:29:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cee6291e8afede21ea1bcf620b90d66276380c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:06:7f:53:19:a6:92:ee:9c:24:0a:c3:64:14:
cb:63:f1:e8:e4:c9:87:7b:43:3c:16:8f:e2:5b:5e:
34:79:41:90:33:ed:ae:35:e9:d0:aa:f3:b6:8b:b1:
d9:e0:89:6f:f0:16:5c:1f:6f:30:e5:c3:7c:93:d5:
d8:84:08:b9:cf:48:9a:5e:58:70:e9:14:97:cc:38:
13:67:13:79:31:54:bc:41:ba:57:68:04:41:0b:9e:
69:b5:0b:3b:4a:06:ab:e2:b9:32:17:8e:b7:1a:64:
0f:5b:e0:f6:3f:f9:6c:02:ba:70:82:48:b8:13:0e:
8c:e6:cb:b9:9d:d4:37:09:d3:84:24:69:cf:a2:f9:
a2:b1:a6:8d:6e:9b:e0:d9:52:21:5f:9d:e5:6f:7d:
97:80:e2:2f:d2:fe:42:d4:1d:11:45:c6:bd:c8:39:
39:7a:7d:67:86:0b:9d:4a:65:93:7c:09:84:84:7f:
53:77:f4:b4:52:df:6b:a5:48:55:42:6d:be:f4:02:
33:55:1d:1e:73:1a:fe:09:22:be:d7:64:8d:c3:0e:
03:93:99:26:af:5b:cb:ef:26:7e:a1:5e:72:2b:3c:
2a:e0:47:1f:ff:0b:83:71:95:3a:92:2b:0b:58:22:
0a:19:bd:31:6b:f8:ea:e9:10:65:f3:c0:96:3e:8a:
8b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EE:62:91:E8:AF:ED:E2:1E:A1:BC:F6:20:B9:0D:66:27:63:80:C7
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/fO5ikeiv7eIeobz2ILkNZidjgMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.174.0/24
Signature Algorithm: sha256WithRSAEncryption
58:3c:a9:77:c0:8e:16:bd:e2:f4:87:e2:d7:a6:79:58:4f:b0:
d7:c9:ec:76:a0:be:f9:91:3d:a0:05:02:4c:92:ad:1e:29:59:
c8:38:06:f7:cf:b4:86:fd:66:0f:6f:7d:99:08:d4:83:53:fe:
81:07:33:6f:cd:68:81:79:3e:1c:dc:30:2f:ad:df:df:90:b6:
e7:48:7d:a7:f2:c2:66:90:1d:e6:13:5c:a2:f6:6f:4b:b7:a8:
90:e1:55:59:25:ab:c0:50:5c:0d:86:f9:49:2e:12:b6:10:2c:
c5:19:f0:7b:0f:88:4a:64:63:ce:79:90:fe:03:c2:60:0f:4c:
22:12:cf:92:8d:8f:2e:7a:8d:1e:f1:77:71:ac:cf:90:61:ce:
a0:06:d7:4e:66:15:aa:f2:a2:e1:10:59:5a:7d:fc:c8:b6:bc:
d7:3e:97:be:a9:6e:fa:5c:e3:ae:fc:a5:0a:ac:4f:44:1c:ee:
75:bd:43:5e:a0:4d:5e:ec:d9:df:66:97:82:c8:bd:1d:d0:3a:
b7:31:13:03:e6:5b:3e:e3:31:f5:d6:72:89:a4:2b:8d:f8:df:
64:ae:e2:7e:53:b5:a0:14:1c:61:16:93:47:1c:f3:31:4d:db:
bf:78:05:09:de:3d:a8:6b:84:5d:8d:c1:63:00:89:6c:41:46:
cf:2b:56:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org