Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/M7Yw_evRzDOoaFTkh-9QDknPpiM.roa
File: M7Yw_evRzDOoaFTkh-9QDknPpiM.roa (raw, json)
Hash identifier: 6toYb5PrCBeo3QrTb5rashgsLDB1F3LRmn3TyF/ishI=
Subject key identifier: 33:B6:30:FD:EB:D1:CC:33:A8:68:54:E4:87:EF:50:0E:49:CF:A6:23
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018CCFDEB4E83F19A38AE42983E469EB0ADB
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/M7Yw_evRzDOoaFTkh-9QDknPpiM.roa
Signing time: Wed 03 Jan 2024 15:08:48 +0000
ROA not before: Wed 03 Jan 2024 15:08:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25504
IP address blocks: 194.156.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 17:51:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cf:de:b4:e8:3f:19:a3:8a:e4:29:83:e4:69:eb:0a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 3 15:08:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33b630fdebd1cc33a86854e487ef500e49cfa623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:c1:69:aa:0c:97:c1:a4:b0:6a:01:1b:46:
a7:0e:a1:25:48:4b:3c:c2:8c:b1:f0:fe:9e:06:04:
fa:c0:38:42:80:fa:8e:27:1b:a4:f8:b0:86:50:b6:
7c:83:45:62:3f:19:cd:72:df:bc:03:8f:96:23:ae:
fd:12:d0:a3:ed:c3:e8:31:eb:b9:be:43:71:16:77:
4b:27:eb:8b:f4:4a:d9:83:62:58:cf:2f:41:f3:67:
2f:58:e4:37:00:94:04:1b:40:d7:17:56:e2:61:6f:
bc:a5:5b:67:96:03:95:6c:b9:4e:8d:38:2d:d2:c5:
15:cf:71:ac:79:e2:bd:72:7d:c0:5d:68:84:1a:6e:
25:1e:e8:db:76:9b:0b:85:24:3b:8e:65:ba:ec:29:
4c:82:61:f9:02:4f:0b:26:dc:98:bd:39:cc:84:f0:
84:0c:49:0b:56:45:f7:2d:59:ec:c2:e0:27:e2:bf:
e0:ba:80:b9:97:80:25:67:6d:3a:da:d8:2f:cc:c7:
8d:e2:4e:24:38:bc:64:b3:55:03:1a:f2:33:61:c9:
e8:bc:4a:92:7f:94:f5:c3:5e:5a:7f:f1:ff:94:81:
b1:88:0e:6b:9f:e8:13:87:e0:c1:b0:b8:78:ae:21:
dd:eb:06:1a:c3:9f:8e:92:f5:e8:f9:c0:53:a3:b7:
1a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B6:30:FD:EB:D1:CC:33:A8:68:54:E4:87:EF:50:0E:49:CF:A6:23
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/M7Yw_evRzDOoaFTkh-9QDknPpiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.79.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:9c:ae:37:41:0d:1c:77:50:26:af:53:36:a9:d3:d5:94:a4:
5a:07:c1:6c:2f:e6:fb:a4:5d:4c:cb:40:41:3a:e1:28:5c:9a:
47:f1:1d:d6:a6:aa:68:e1:22:74:3e:b0:13:1f:25:ec:d6:e7:
1c:e3:79:de:92:4f:c5:cc:01:a9:23:e6:3a:bc:40:8f:e6:c0:
ac:c0:46:8d:ec:f1:1b:3c:fc:3d:81:dc:2b:3f:75:78:3d:26:
9d:aa:09:f3:b2:96:8b:4e:1b:28:c9:0f:d2:da:9c:0c:16:c5:
24:99:ee:f9:83:c6:22:15:ad:1d:ae:0b:87:77:38:0a:b7:73:
88:af:33:2e:0f:23:17:72:9c:ce:92:a8:d4:9e:07:00:f8:d8:
9e:b3:58:20:6d:e6:6c:74:0c:f3:e0:f0:34:0f:15:7b:f6:66:
c8:a6:72:bf:ed:2a:b5:a7:fc:48:1f:24:1c:2f:00:d0:ca:38:
10:92:54:4e:d3:32:bc:42:a0:75:52:74:26:e0:45:56:4d:31:
17:fb:13:53:2f:eb:20:8c:8f:99:1d:1a:e9:41:39:be:67:f9:
f9:b2:7a:cd:83:75:41:e4:97:ff:f3:55:90:51:57:9f:46:18:
4d:38:45:66:9b:30:a4:24:cf:65:0d:8c:57:ee:27:74:d8:a0:
0a:43:6c:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 20:56:59 2024 by rpki-client on console-fra.rpki-client.org