Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Brp2F_t6ZVFRGPJIokhc2c6dp6Y.roa
File: Brp2F_t6ZVFRGPJIokhc2c6dp6Y.roa (raw, json)
Hash identifier: ewZ6bWXLUIxxXiE1gU3NfHrsCtA/B9X9RVz+L+z+beY=
Subject key identifier: 06:BA:76:17:FB:7A:65:51:51:18:F2:48:A2:48:5C:D9:CE:9D:A7:A6
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018DC10451949F949F2B5CDACD60669C71DF
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Brp2F_t6ZVFRGPJIokhc2c6dp6Y.roa
Signing time: Mon 19 Feb 2024 10:58:22 +0000
ROA not before: Mon 19 Feb 2024 10:58:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 194.87.31.0/24 maxlen: 24
194.87.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 09:25:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:04:51:94:9f:94:9f:2b:5c:da:cd:60:66:9c:71:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Feb 19 10:58:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06ba7617fb7a65515118f248a2485cd9ce9da7a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:77:1c:7d:d5:fd:b6:e3:d6:51:43:b4:ca:a0:
e0:3c:62:e8:61:55:e2:39:ba:47:ba:d8:b9:0f:01:
64:3b:c3:d9:f0:92:a4:eb:37:4f:6d:2d:70:3e:ee:
80:b4:19:17:0f:fc:b3:69:7f:d8:60:b5:17:21:c5:
86:54:d4:ec:c5:10:8d:5a:f9:25:92:9b:86:9f:e4:
b7:d7:62:48:81:3b:c8:32:92:31:a6:d7:e7:02:71:
54:62:5f:b5:b1:22:32:d7:fd:f7:98:3a:67:8b:51:
f1:6b:21:83:31:fd:e5:3f:70:d1:b7:a7:dd:4a:d4:
94:67:f2:15:7c:ba:82:41:9d:dc:f8:d2:22:db:1b:
d0:bc:b1:af:cb:1e:e6:85:b4:a5:fa:7d:29:90:ae:
c1:b5:11:14:2a:51:03:eb:1f:b4:de:e6:13:11:fc:
60:52:83:6d:c0:1a:03:05:3c:4b:ba:03:54:a9:49:
ec:8f:8c:c7:88:de:ed:dd:64:d6:0d:45:bb:14:5a:
3a:c0:1d:b2:33:d1:58:55:e0:4b:6f:c5:b8:80:78:
6c:2f:a6:5e:fe:6e:a0:2c:a4:ac:dd:78:b1:c2:b8:
dd:7d:6e:03:83:ee:1d:76:85:94:e0:82:50:70:4a:
7d:26:e9:f0:a9:3e:26:a2:64:fd:81:89:5b:d7:bc:
9a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BA:76:17:FB:7A:65:51:51:18:F2:48:A2:48:5C:D9:CE:9D:A7:A6
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Brp2F_t6ZVFRGPJIokhc2c6dp6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.31.0/24
194.87.216.0/24
Signature Algorithm: sha256WithRSAEncryption
88:e3:07:01:e5:e8:ec:01:d7:aa:c9:1d:37:c7:ea:c4:ff:18:
c1:67:9b:33:e5:3a:4c:3c:40:42:a6:6b:71:11:c9:f0:d1:57:
1c:fd:94:26:e4:41:a8:c8:a0:b3:5f:fd:64:b8:fb:bf:c0:86:
2c:5d:3a:d8:a9:bc:b4:03:6e:a5:d5:98:ea:ef:cf:8b:95:a5:
85:2b:0b:bf:69:ff:3f:33:12:c6:03:0c:17:a2:f3:e1:03:42:
f0:b4:6f:46:c1:99:e9:7c:bc:7e:8f:b7:94:84:93:ba:46:a6:
b0:bf:fe:e3:9b:f9:09:94:03:bb:94:3d:5f:f9:95:2e:bf:09:
10:8f:e7:6c:7d:c8:df:02:6a:90:1d:5b:21:88:5e:60:a0:04:
47:06:fc:b7:a8:2b:8e:03:9a:14:b0:f2:cd:0d:c1:8e:20:f0:
72:cc:e1:a9:52:e1:b6:a3:1f:16:3d:98:f9:25:0d:ba:e1:4b:
a6:72:5f:e1:ca:7c:88:cc:1a:06:1a:8f:0b:a3:90:76:d4:7d:
f3:17:20:c6:db:a8:9b:be:01:5d:cd:97:40:8b:99:3b:4f:70:
2c:8d:e1:cc:86:0d:60:a0:1d:ab:b7:9f:c2:db:cc:38:aa:0e:
9d:a0:be:71:1a:93:37:88:fa:cc:58:cf:0c:fc:59:c0:99:ec:
7d:83:c6:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:09 2024 by rpki-client on console-fra.rpki-client.org