Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-owyZGFOUS-kh4XhDdutHo_I-KM.roa
File: 1-owyZGFOUS-kh4XhDdutHo_I-KM.roa (raw, json)
Hash identifier: k7X5v5P4j95zCM/PMmY0cLv3qildwBKGKthgg+cvVZo=
Subject key identifier: FA:8C:32:64:61:4E:51:2F:A4:87:85:E1:0D:DB:AD:1E:8F:C8:F8:A3
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190B07BB027386B12C85034F1FD31050BDB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-owyZGFOUS-kh4XhDdutHo_I-KM.roa
Signing time: Sun 14 Jul 2024 09:03:34 +0000
ROA not before: Sun 14 Jul 2024 09:03:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215439
IP address blocks: 194.87.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 16:51:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b0:7b:b0:27:38:6b:12:c8:50:34:f1:fd:31:05:0b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 09:03:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fa8c3264614e512fa48785e10ddbad1e8fc8f8a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2e:a4:24:4e:53:3a:b7:f4:6e:fc:30:19:ab:
b7:0d:9b:ea:3a:f0:80:00:21:60:75:6c:57:55:f3:
a9:aa:40:ac:c2:7d:60:23:13:33:64:88:10:69:bb:
bc:1a:63:07:57:43:9c:3b:89:86:1b:99:a4:ce:15:
76:22:86:19:2c:6c:e7:45:ab:36:72:e4:90:22:21:
aa:cc:3e:ad:41:42:77:32:f3:80:46:b1:24:3a:24:
b5:96:f7:52:29:66:47:fd:06:0a:f2:87:28:ed:c6:
9c:c3:01:ac:be:c0:08:85:1f:42:58:0d:f4:bf:79:
53:ad:63:3c:88:87:36:46:cd:e0:5c:51:39:8c:65:
33:5a:f5:5d:01:24:c7:4b:53:cf:07:00:e3:56:6d:
e7:56:66:ec:f9:52:f9:9b:a8:30:b9:16:49:34:7d:
3e:e9:4d:c4:2d:67:d7:1e:80:02:2a:18:a6:52:42:
68:c0:0c:99:33:3f:83:70:18:ae:62:f8:c8:35:3e:
83:e6:ad:d8:b6:e3:82:bb:6a:1d:3a:91:7c:d2:8a:
72:67:b2:6e:e7:0c:41:bc:80:ae:69:02:fc:63:62:
2d:48:2b:9b:3d:16:25:86:59:f4:8f:4b:dc:39:0b:
7f:f3:79:16:56:4e:00:63:5a:04:c2:d1:f8:8f:90:
a5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8C:32:64:61:4E:51:2F:A4:87:85:E1:0D:DB:AD:1E:8F:C8:F8:A3
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-owyZGFOUS-kh4XhDdutHo_I-KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.77.0/24
Signature Algorithm: sha256WithRSAEncryption
34:e5:80:6f:c8:a6:c1:ae:0d:84:53:4f:19:97:68:31:fc:fe:
86:f5:0e:d8:cc:29:47:2e:91:fe:7b:36:09:e6:80:dc:72:1d:
09:86:e0:ed:1d:15:06:ca:48:b8:b1:6f:c7:c9:98:02:5b:bc:
e9:df:e1:f5:21:6b:24:d9:14:34:13:9c:f7:c8:4b:9f:7a:cc:
1e:9e:55:ed:6a:79:7b:62:15:6d:1f:39:32:db:5a:24:94:78:
3e:fa:15:5c:ad:6d:fa:2c:3b:f9:10:7c:a2:63:9b:b6:b7:e0:
ef:b2:72:06:5d:51:5c:a4:63:50:27:c2:a8:a3:a6:cd:79:b9:
e0:5b:6b:98:d1:70:1d:be:e2:e0:34:8c:5f:5f:91:ec:85:ea:
a9:61:87:a5:f1:94:02:32:c2:17:97:37:a5:97:2a:e1:37:9f:
64:31:b6:e8:0b:30:b4:b9:b7:48:bf:ad:a7:b0:8f:b6:88:0e:
6c:4b:4e:5a:95:40:9b:3e:0f:bf:af:a6:68:62:d8:51:77:f5:
33:c3:b8:a0:39:4e:39:ea:0d:45:90:8f:0f:a7:ab:19:e9:17:
71:3d:11:70:3b:fb:96:8e:78:98:01:da:ff:c8:3c:27:f1:54:
46:e8:a1:ab:60:e7:1d:1d:eb:53:fd:9d:0e:b5:d0:3a:7f:e7:
c5:96:c5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 14 17:55:53 2024 by rpki-client on console-fra.rpki-client.org