Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IVWpS8eKxVakxp3Mb3jhOQIhP8M.roa
File: IVWpS8eKxVakxp3Mb3jhOQIhP8M.roa (raw, json)
Hash identifier: ZAtBA5leWFplNUrnO+f0ldifsQmTQ0Ni0devlvmg93A=
Subject key identifier: 21:55:A9:4B:C7:8A:C5:56:A4:C6:9D:CC:6F:78:E1:39:02:21:3F:C3
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018829A44FFFD1F1108871D7DAB0BCECC20B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IVWpS8eKxVakxp3Mb3jhOQIhP8M.roa
Signing time: Wed 17 May 2023 12:16:54 +0000
ROA not before: Wed 17 May 2023 12:16:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 194.87.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Jun 2023 10:17:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:a4:4f:ff:d1:f1:10:88:71:d7:da:b0:bc:ec:c2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 17 12:16:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2155a94bc78ac556a4c69dcc6f78e13902213fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:59:28:fe:23:c5:3e:67:be:76:4c:d1:fe:b0:
b7:eb:7a:7c:f0:5c:50:ab:21:1b:ff:a9:0c:97:f3:
0f:00:af:8b:28:b0:62:22:ef:d0:c3:17:fe:c4:1c:
87:45:dc:af:59:b7:f9:ae:28:4f:fe:31:60:8b:bb:
f3:fa:40:c4:23:65:e1:54:cd:e8:b9:92:83:9c:90:
e9:ca:00:f5:06:c9:dd:38:cc:55:fd:ad:89:db:7a:
18:0a:b4:75:c4:b1:43:21:46:80:8a:08:d6:22:8e:
23:24:33:79:0d:e9:11:63:f0:39:8c:60:b8:bd:97:
60:da:bb:04:9e:d7:b1:d0:89:65:7b:92:e7:c4:95:
2b:31:99:95:35:50:02:04:e0:4e:79:6c:07:0e:39:
24:9a:f9:2a:1f:96:d4:5d:3c:9b:b9:73:ef:e8:f0:
92:2d:ee:74:9c:c0:2a:91:1f:a6:70:5a:6b:10:97:
31:b6:b3:08:d6:12:42:2b:18:6f:68:59:89:4b:eb:
b0:0c:60:22:93:4c:68:5e:6e:9b:44:a4:7a:de:b0:
89:ab:84:c2:49:06:5c:4b:04:86:55:d5:cd:f6:ff:
fe:e8:2c:01:40:e1:5f:f8:18:4b:10:f2:83:b0:8c:
c1:c6:b6:c9:6f:08:b2:3a:85:60:5e:33:d2:e9:d8:
06:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:55:A9:4B:C7:8A:C5:56:A4:C6:9D:CC:6F:78:E1:39:02:21:3F:C3
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IVWpS8eKxVakxp3Mb3jhOQIhP8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.181.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bb:df:91:10:05:46:ec:28:1a:36:95:94:44:1d:03:0b:7c:
6e:f7:19:c0:87:eb:f2:cb:26:67:b6:a6:8c:e7:37:57:5a:f2:
44:7a:26:6f:e4:53:29:52:33:99:84:fe:5a:e9:87:ca:dd:dd:
a7:77:47:19:ff:9d:d6:68:0f:5d:9e:60:17:35:e1:6a:74:68:
a4:2b:22:99:5f:bd:68:c0:9c:ef:1c:31:58:a8:db:74:2a:03:
86:02:bc:d9:6d:69:bb:ff:ef:b9:68:c1:4b:02:59:86:e5:fb:
f9:e7:e3:78:d5:24:52:b7:9a:a1:ee:c4:fc:d0:a9:0c:65:17:
5e:64:30:a8:bf:b7:f3:18:de:ed:59:6f:9b:a3:ee:63:14:0f:
c6:be:42:a9:6d:8e:bf:0c:e7:b4:fa:2d:52:b8:18:a8:fa:89:
2a:8d:3d:3f:5e:6a:fb:91:e1:24:2e:f0:f4:33:b1:e7:3b:46:
db:d4:b1:ef:b6:ef:33:32:a5:de:8b:14:23:a7:34:dc:63:13:
89:71:92:fb:f3:c9:1d:3f:eb:08:ed:fc:ce:28:f1:ff:a7:cb:
7e:ec:43:70:ef:21:7c:ac:0f:8a:3e:69:29:6c:34:76:6f:aa:
a8:74:b7:cf:9a:03:d9:9f:4f:73:cb:53:79:0f:6d:ab:3f:49:
b6:d9:5f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:12 2024 by rpki-client on console-fra.rpki-client.org