Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8I-Qd7t2SK8ifJY9QLiEkRtDn3I.roa
File: 8I-Qd7t2SK8ifJY9QLiEkRtDn3I.roa (raw, json)
Hash identifier: 49gOV7HA1EeD+SKTBJxg09qB2KPmHylKbdwGjCU0PSc=
Subject key identifier: F0:8F:90:77:BB:76:48:AF:22:7C:96:3D:40:B8:84:91:1B:43:9F:72
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018B947F5AE99E0609B5C5ED45AA4DE6417A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8I-Qd7t2SK8ifJY9QLiEkRtDn3I.roa
Signing time: Fri 03 Nov 2023 09:24:16 +0000
ROA not before: Fri 03 Nov 2023 09:24:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 146943
IP address blocks: 194.87.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Nov 2023 14:37:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:7f:5a:e9:9e:06:09:b5:c5:ed:45:aa:4d:e6:41:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 3 09:24:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f08f9077bb7648af227c963d40b884911b439f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:18:5c:c9:d4:fd:65:fa:44:a8:db:1f:77:d1:
78:6e:90:24:f5:b5:3f:a3:93:6c:51:b4:74:e0:ca:
2d:44:2d:b3:ce:47:32:6f:af:f1:fc:34:fb:64:a1:
c2:47:40:a6:25:1a:cf:22:c3:69:f4:bf:24:c0:6e:
fe:e2:d1:66:02:25:96:c5:74:8a:51:40:a7:a6:c4:
1b:35:71:6b:a4:f0:a9:ee:61:72:15:74:03:98:8d:
ff:c0:f0:e5:85:ae:95:ba:c2:2e:6d:93:4a:20:8c:
dd:48:12:a2:aa:2a:67:be:a4:05:ec:fd:0d:dc:d5:
25:0f:cc:3f:14:16:10:c3:38:b6:17:5d:4e:cc:71:
b6:41:5a:6e:ee:ae:48:00:65:58:ec:67:68:68:67:
fe:6e:95:98:39:ff:59:5e:c5:4e:fe:61:e7:b2:5d:
81:17:18:9f:33:21:c8:5a:4d:c2:04:62:65:a7:cf:
41:6a:35:bc:d2:31:fa:5b:8b:3c:be:8f:0c:b7:61:
6a:39:87:03:67:ae:85:2d:84:fe:db:2a:09:4d:23:
88:1a:1f:ef:63:26:c2:ad:87:ea:b3:81:05:67:0c:
44:61:51:16:6d:da:d9:0b:4d:e2:7d:be:14:73:59:
4c:d3:88:89:50:64:f4:3b:85:a7:fe:e5:ba:75:bd:
60:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8F:90:77:BB:76:48:AF:22:7C:96:3D:40:B8:84:91:1B:43:9F:72
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/8I-Qd7t2SK8ifJY9QLiEkRtDn3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
42:64:8f:e8:c6:f1:7d:4b:70:0c:28:8f:d9:c4:54:9a:1e:04:
49:0a:48:cc:91:1d:5b:c5:fe:70:5f:cf:7d:b8:e4:f1:fe:f7:
dc:cd:55:e3:14:9e:5d:cc:b1:7b:0c:e4:3d:8b:8e:36:08:0b:
6a:5f:8b:c9:3b:b8:8e:ee:a8:14:b8:86:40:ac:62:00:a4:ae:
35:44:cb:25:ab:e0:43:93:a1:bf:3d:81:21:02:ec:29:19:3a:
09:bd:6b:cd:55:38:12:a0:b3:1c:46:00:30:0f:82:94:7f:07:
41:02:7a:b8:ca:ed:51:85:42:c0:89:34:87:b0:96:97:ff:83:
d7:f6:c2:91:ef:c1:89:1c:b9:f3:d3:64:6e:fd:12:55:f0:2f:
ff:8a:1b:16:2f:0f:47:4a:bf:22:ee:c9:6a:06:f8:5b:39:7d:
37:ab:65:6f:c8:42:65:59:d4:f9:92:de:4c:5f:67:04:3e:f0:
46:bf:dd:b9:4c:2c:57:0b:7d:d3:94:eb:3c:b2:af:9c:a5:79:
0f:6b:e0:85:d2:9b:0b:50:de:80:a6:61:a2:86:64:4d:65:eb:
a6:eb:14:1a:22:22:16:53:6b:91:2b:a8:9e:49:d4:9c:83:b4:
af:7a:d3:6f:16:ad:e1:93:7a:73:09:92:12:be:94:88:d3:85:
45:8f:cf:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:07 2024 by rpki-client on console-fra.rpki-client.org