Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/V2sZkSDSvCaa-gENOnBLV59N5cs.roa
File: V2sZkSDSvCaa-gENOnBLV59N5cs.roa (raw, json)
Hash identifier: 3P0Nr46pVnsmAbVQkSY83wZYE3gUOLx7dS/+u9cSZSE=
Subject key identifier: 57:6B:19:91:20:D2:BC:26:9A:FA:01:0D:3A:70:4B:57:9F:4D:E5:CB
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018E37A68B7862AABBFE4495EA68085BBCB4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/V2sZkSDSvCaa-gENOnBLV59N5cs.roa
Signing time: Wed 13 Mar 2024 11:50:45 +0000
ROA not before: Wed 13 Mar 2024 11:50:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48011
IP address blocks: 193.124.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 11 May 2024 08:40:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:a6:8b:78:62:aa:bb:fe:44:95:ea:68:08:5b:bc:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 13 11:50:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=576b199120d2bc269afa010d3a704b579f4de5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e9:c2:60:f3:0b:cd:58:de:31:8c:60:7c:16:
15:ed:1a:00:0f:7b:e7:7f:49:62:b6:29:4f:7c:05:
dc:1d:b3:77:be:fa:eb:b6:e0:88:4e:75:c5:27:13:
1a:de:63:00:5e:15:44:bf:7d:64:a6:58:37:5c:40:
5a:11:af:c3:a4:04:90:ea:91:3c:2b:94:8c:22:d7:
d1:b2:a4:ec:c9:00:fe:d0:5c:bf:34:7f:09:76:1d:
3a:88:2f:0d:08:fc:cc:b6:bf:3e:02:a4:84:84:ed:
b4:f4:84:28:87:1c:0b:23:97:6f:7f:77:b3:07:6b:
f6:1b:9d:bf:9d:7f:2f:9f:6e:8f:2c:51:65:46:14:
6a:c0:12:c9:93:de:2b:09:7a:02:38:9d:57:b0:45:
36:ed:8b:2c:2e:24:68:0f:06:21:d0:f6:d3:04:40:
11:25:6e:23:76:7f:1a:8d:a3:d7:2b:08:08:56:5a:
dd:79:5c:a1:17:92:16:d5:5c:7a:ae:8f:a2:59:f8:
22:56:df:58:bf:30:9f:4c:4c:11:d4:12:6c:59:c4:
ef:7a:28:0c:96:e7:19:d4:2a:d5:b3:72:81:19:02:
2a:7f:f3:b3:a0:46:fe:dc:a9:45:d4:63:89:6d:63:
78:eb:07:95:d9:c0:12:cb:bf:9a:f3:73:b7:8a:6e:
94:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:6B:19:91:20:D2:BC:26:9A:FA:01:0D:3A:70:4B:57:9F:4D:E5:CB
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/V2sZkSDSvCaa-gENOnBLV59N5cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.207.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:65:9f:9c:8d:80:20:f2:23:ad:66:c9:fd:d0:1d:3f:ee:39:
c2:69:e3:79:11:fd:fd:fd:4e:a3:d6:13:a2:93:6d:c8:d6:35:
a6:38:1a:da:db:56:d9:66:13:69:dc:e6:d2:3b:bb:c2:ec:cc:
c1:f4:61:d5:f5:d7:c4:0c:cf:f0:c3:2b:ca:ed:66:fa:65:a9:
f7:ac:f5:41:c7:17:fe:41:60:db:0e:39:4a:65:c0:3e:17:2a:
95:58:5d:93:6c:b5:cc:d2:95:fe:d9:e6:80:86:48:f3:a0:5a:
37:77:38:62:59:ff:60:ca:0c:69:6c:df:93:f5:91:14:87:9a:
fb:2e:e9:c6:1f:1e:57:55:43:ea:ca:50:a0:0a:47:1e:2c:1d:
ea:45:36:48:c3:58:87:1a:f3:a4:c3:9a:ef:01:59:9e:4b:4c:
d6:9e:20:86:02:31:63:b3:f8:64:36:aa:b6:c5:26:b6:e2:fb:
c6:f7:b8:80:26:2b:b8:3a:ee:95:01:6d:95:33:2e:34:e7:c7:
c8:df:54:03:0d:0a:76:9b:ed:b1:a4:48:ef:ba:49:ce:d6:6b:
55:72:5b:ae:17:43:49:dd:c7:b3:81:6c:f7:02:c2:30:84:a8:
ce:75:b7:02:1f:2d:58:ba:29:79:e8:f4:9c:ac:ab:15:5a:d7:
db:a3:a5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 11 10:15:22 2024 by rpki-client on console-ams.rpki-client.org