Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6PYQHhtrVMPeup3oJK2gfpxhX0A.roa
File: 6PYQHhtrVMPeup3oJK2gfpxhX0A.roa (raw, json)
Hash identifier: HFI1yUwduQURayrOfvYBYaEoO+8gfQ/ULtc8UzD76pQ=
Subject key identifier: E8:F6:10:1E:1B:6B:54:C3:DE:BA:9D:E8:24:AD:A0:7E:9C:61:5F:40
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190EF88E620E8A4155B20ED19A61D5340C4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6PYQHhtrVMPeup3oJK2gfpxhX0A.roa
Signing time: Fri 26 Jul 2024 14:54:04 +0000
ROA not before: Fri 26 Jul 2024 14:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43641
IP address blocks: 194.58.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Aug 2024 13:58:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:88:e6:20:e8:a4:15:5b:20:ed:19:a6:1d:53:40:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 26 14:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8f6101e1b6b54c3deba9de824ada07e9c615f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:95:0f:05:80:c6:e4:1d:6b:44:e5:4b:2c:c4:
b0:13:91:26:73:c0:a0:ff:04:8d:8c:8f:41:3f:16:
dd:da:fa:b0:f7:74:aa:f7:9d:9c:a1:68:b5:e0:30:
d4:91:a4:16:dc:37:89:77:e0:a5:16:24:32:ef:5e:
5f:bf:21:97:46:13:46:c6:d0:42:d0:bd:cd:fc:9d:
17:94:56:00:46:98:5f:f7:ac:19:e6:f6:50:2b:dd:
eb:48:87:06:74:a4:43:3f:dd:5e:c1:c4:84:05:eb:
cb:f7:2c:77:ea:f5:ad:1e:d7:f2:cd:2d:ca:59:33:
72:09:0e:f9:54:58:27:a7:4d:59:d3:83:59:3f:65:
e1:94:47:5c:ac:2c:8b:2e:03:8e:c2:97:79:98:22:
96:a1:6b:85:72:fc:ef:3d:a9:8b:d3:f3:6b:b5:3f:
2b:ec:58:52:6c:da:e6:8b:86:18:7d:44:93:b6:86:
8e:2a:0a:92:63:13:ef:89:d2:d8:aa:4c:8d:0a:ec:
f5:86:ac:24:36:19:8e:cd:76:c3:27:6d:15:9b:05:
e2:f0:39:c0:ba:5b:23:a5:cb:45:89:de:83:0e:72:
c1:13:be:19:83:73:e1:36:8f:07:ab:cc:1d:61:ef:
97:5c:9e:73:4e:d5:cf:40:52:e9:96:48:c4:6e:59:
75:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F6:10:1E:1B:6B:54:C3:DE:BA:9D:E8:24:AD:A0:7E:9C:61:5F:40
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/6PYQHhtrVMPeup3oJK2gfpxhX0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.57.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:c2:38:22:84:03:77:18:7e:ae:15:5c:18:98:d9:0b:1b:f3:
6b:77:29:37:71:47:35:ef:22:e4:ef:eb:a9:8e:ff:e3:98:bd:
e1:88:08:57:84:ec:af:09:3c:e3:70:dc:11:ac:00:e0:70:78:
ce:e2:f4:8a:be:c2:cb:79:f8:47:b4:97:d0:8b:ee:36:ce:65:
07:f7:8c:b3:93:0f:d6:cc:ca:92:cf:8e:b8:52:5c:55:a4:0b:
cb:8a:8e:f7:15:0a:d0:7b:97:cf:0d:e8:98:29:60:97:f7:d5:
ba:87:66:41:56:2d:28:76:ae:7f:9d:ce:cd:b6:75:b3:0d:89:
9b:a7:d0:7e:3b:1f:9f:a8:a8:52:6c:84:d2:3c:bf:12:04:87:
e5:bf:1e:52:18:2d:46:61:2d:18:07:eb:32:67:ff:96:f0:dc:
7b:66:c4:68:d8:7b:42:e7:c6:ac:b0:c5:7c:d4:30:93:96:4b:
2d:62:4f:5a:49:9c:2c:c7:55:28:dc:bf:b8:6c:bd:d7:86:bc:
84:69:9b:23:5d:be:20:67:8f:99:11:f8:98:7f:04:b9:4a:6f:
5b:e3:e5:29:7c:10:c3:ec:c3:46:44:22:a5:de:06:d8:04:22:
60:65:4d:cd:e8:e4:51:ef:2f:87:e5:da:80:4d:49:5e:03:a1:
1b:4c:bd:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 17:13:54 2024 by rpki-client on console-fra.rpki-client.org