Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/Aaq-vHWUmoG6RLPcw-jYCx5K0MI.roa
File: Aaq-vHWUmoG6RLPcw-jYCx5K0MI.roa (raw, json)
Hash identifier: ttlfJaOmReKHt4MwXuEAK9zxG+bVOMJDGyBdpS1fWlc=
Subject key identifier: 01:AA:BE:BC:75:94:9A:81:BA:44:B3:DC:C3:E8:D8:0B:1E:4A:D0:C2
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 01857082C54E1DAEAEBC25FA214FCB7B1CA1
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/Aaq-vHWUmoG6RLPcw-jYCx5K0MI.roa
Signing time: Mon 02 Jan 2023 03:24:56 +0000
ROA not before: Mon 02 Jan 2023 03:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35478
IP address blocks: 194.50.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c5:4e:1d:ae:ae:bc:25:fa:21:4f:cb:7b:1c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Jan 2 03:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01aabebc75949a81ba44b3dcc3e8d80b1e4ad0c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6d:16:ac:0c:0f:e6:78:20:24:9d:3c:a2:98:
04:9e:eb:6e:5f:a8:ca:a5:6b:fe:b4:6f:c1:d1:1f:
0e:99:b1:4f:f0:fa:e5:d8:e5:40:85:43:94:3c:9a:
e6:b9:db:d8:e9:ba:df:97:2d:85:e2:33:fa:a5:b4:
a4:ca:d1:7b:2b:38:b5:91:21:0e:83:7d:84:39:f1:
03:c6:5c:85:ec:62:b6:cc:5c:ac:f2:7b:52:ca:34:
44:b1:b4:b7:f8:76:42:21:2d:c6:1a:9c:fe:42:7e:
36:98:91:e4:90:3a:f8:62:3d:7c:1e:9a:1a:b4:81:
8e:65:70:9b:89:9a:9c:50:8b:52:58:26:24:8e:37:
fc:d4:0d:cd:84:ee:96:cc:c1:0f:4c:d2:74:f3:27:
5d:e6:16:ca:58:b8:6e:26:cb:98:18:4f:56:c6:c2:
a1:63:88:8b:16:96:4e:4f:77:d0:2f:3f:c0:24:45:
6f:18:53:d9:ae:52:5a:80:64:06:c9:ff:47:6f:ce:
28:b2:d9:d5:e9:43:8e:29:a8:09:6e:81:18:10:52:
7c:ca:18:80:43:00:27:db:1c:7f:54:b3:7b:20:4a:
fe:da:3b:c0:23:03:58:61:a8:af:01:1c:8e:40:48:
f2:9b:5f:6c:45:fc:e2:c2:ea:b8:f3:42:0c:8f:9e:
23:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:AA:BE:BC:75:94:9A:81:BA:44:B3:DC:C3:E8:D8:0B:1E:4A:D0:C2
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/Aaq-vHWUmoG6RLPcw-jYCx5K0MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.82.0/24
Signature Algorithm: sha256WithRSAEncryption
21:96:3e:12:f4:65:bc:b3:c1:f2:ae:9a:c6:86:ce:d0:db:52:
9b:86:79:8d:7c:51:48:c5:4a:b3:85:4c:1f:4d:b5:a1:60:f3:
12:77:09:99:7b:b6:8d:87:13:f3:f1:00:a4:ce:c4:40:f0:64:
e1:38:3f:23:7e:d5:74:ad:6d:ab:b6:d9:81:a4:a8:28:29:4f:
78:1c:94:f3:26:02:9d:11:82:99:57:0e:2f:4c:7f:fd:e4:22:
52:65:aa:f4:bf:e9:2f:15:e4:03:65:7e:47:b4:3f:0a:fb:8d:
f8:dd:22:f0:71:d3:81:1e:59:97:c7:5c:62:f1:12:22:68:e2:
ff:eb:06:74:28:60:ad:8c:01:7b:e5:6a:91:b2:dd:a0:c9:7f:
70:b2:3e:df:33:00:ca:71:ee:81:28:1c:90:f2:61:82:7e:2e:
58:98:68:78:2f:7e:0d:6c:92:6f:ab:de:11:94:d3:4b:97:48:
d8:09:13:ed:01:b2:44:dd:0b:96:6d:5c:a5:34:d6:06:c4:49:
dd:c5:f5:ed:f2:a3:f5:7b:0d:93:fa:1d:c8:0e:58:10:0b:11:
2b:83:00:f4:58:b0:eb:ba:6d:75:a1:5f:72:d8:fc:7f:de:50:
8a:f4:9c:a7:c9:78:bb:86:77:d5:63:c4:e4:8a:e7:68:65:9b:
11:ae:8c:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:59 2024 by rpki-client on console-fra.rpki-client.org