Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/AlMZdmUMdIgXkVdrnir4DqfbhaM.roa
File: AlMZdmUMdIgXkVdrnir4DqfbhaM.roa (raw, json)
Hash identifier: ynHYRgcd7FdZd0+Ax1JcRszpSX3Pnm2zL+tYxm7NhCI=
Subject key identifier: 02:53:19:76:65:0C:74:88:17:91:57:6B:9E:2A:F8:0E:A7:DB:85:A3
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 018FE4B6AB831750CE8CB3E2E9F9DD49CBD8
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/AlMZdmUMdIgXkVdrnir4DqfbhaM.roa
Signing time: Tue 04 Jun 2024 19:25:27 +0000
ROA not before: Tue 04 Jun 2024 19:25:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215181
IP address blocks: 194.116.229.0/24 maxlen: 24
2a0f:ed06::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 06 Jul 2024 21:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e4:b6:ab:83:17:50:ce:8c:b3:e2:e9:f9:dd:49:cb:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 4 19:25:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02531976650c74881791576b9e2af80ea7db85a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:e0:4a:01:75:ec:65:61:e8:d1:6b:d4:82:af:
36:9b:c0:e1:e0:24:48:d7:4c:d5:a0:f0:0d:f7:f9:
d9:cd:f5:c2:57:08:1a:be:b0:39:df:8d:7f:c4:2e:
59:b3:b5:5c:a6:31:b1:98:86:d1:1c:0a:53:d4:9e:
de:55:d2:b3:61:32:58:48:df:e6:96:f1:3f:ef:e5:
87:78:2e:1f:d2:e9:f3:fc:96:e2:e1:cb:8c:a9:d7:
66:d3:74:4c:8a:df:11:38:52:d6:5c:5c:a5:23:5e:
e5:0c:44:f0:6e:c0:1e:41:e6:da:c3:e5:1f:59:e0:
43:9c:d9:2a:3e:e6:38:a3:fd:ad:f6:66:57:9d:d5:
ff:45:95:e4:c8:d5:3b:65:ee:c1:83:ae:31:4c:5e:
6c:05:69:e8:c9:0a:d1:2c:08:22:09:81:46:73:7c:
c5:06:ae:cf:11:42:9c:52:5d:76:1e:a5:a8:eb:78:
0b:30:90:32:bc:66:0e:b6:29:a4:07:3b:e4:00:5e:
db:2a:1b:30:c5:6d:f7:41:13:a2:f2:e0:f4:61:59:
79:25:8c:12:84:a7:29:5e:20:1c:75:02:21:15:a1:
e8:c5:7d:4a:e9:6d:20:ab:45:24:c4:f4:fc:00:8d:
41:73:bd:de:23:07:87:b8:09:3f:44:cf:65:b9:12:
ec:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:53:19:76:65:0C:74:88:17:91:57:6B:9E:2A:F8:0E:A7:DB:85:A3
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/AlMZdmUMdIgXkVdrnir4DqfbhaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.229.0/24
IPv6:
2a0f:ed06::/32
Signature Algorithm: sha256WithRSAEncryption
4b:2b:b1:37:9d:e2:79:ad:65:bb:0a:9c:52:0a:57:4d:2b:38:
5e:c6:4b:ef:7a:02:8b:ce:b3:07:da:a0:b5:d4:ca:1c:be:c5:
0d:94:69:39:3f:12:02:7f:cb:a6:59:f2:15:7d:9b:31:d9:8f:
9c:dc:5b:49:00:5b:66:45:0e:d7:c9:e7:04:3d:05:6b:71:93:
d1:ad:f1:ae:14:eb:5c:0d:36:83:69:24:82:fd:6c:b5:1a:62:
fd:51:88:48:a0:96:3e:e4:4a:f0:1d:d1:90:75:f4:c9:f1:ce:
b2:4a:46:be:51:19:8e:06:94:bc:46:3e:ea:57:a9:34:e0:2d:
80:6d:7d:c8:88:03:64:32:f8:0c:4f:e3:43:77:7b:ff:88:9c:
3e:2d:44:1e:c5:89:4e:e8:eb:7a:9f:4c:e3:be:d0:49:64:c1:
b8:4d:35:4d:d3:c2:aa:bf:34:14:45:de:e9:d3:09:bb:29:1e:
18:a8:b7:7a:f1:1c:6f:42:a7:6d:d5:35:1b:8c:fd:99:1a:25:
6b:6a:93:0a:b5:c8:fe:91:a7:fe:d4:a9:7a:76:27:da:ae:89:
8b:95:db:51:ce:13:73:e1:57:a2:a3:e3:3f:56:4a:56:87:22:
75:d3:81:49:60:2b:19:a6:43:d7:ea:76:91:91:39:2e:97:71:
31:ae:4b:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 6 23:02:20 2024 by rpki-client on console-fra.rpki-client.org