Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_5_G1W9nL-YqGGVeF5WvMRxMMkQ.roa
File: _5_G1W9nL-YqGGVeF5WvMRxMMkQ.roa (raw, json)
Hash identifier: vTQuRlwECtqX2VvSH/Ze+334UJHMwURbhc5sTXWZpnw=
Subject key identifier: FF:9F:C6:D5:6F:67:2F:E6:2A:18:65:5E:17:95:AF:31:1C:4C:32:44
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018752799CC82D9BF404A92E2C89CF27E430
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_5_G1W9nL-YqGGVeF5WvMRxMMkQ.roa
Signing time: Wed 05 Apr 2023 17:31:54 +0000
ROA not before: Wed 05 Apr 2023 17:31:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211252
IP address blocks: 194.87.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 15:44:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:52:79:9c:c8:2d:9b:f4:04:a9:2e:2c:89:cf:27:e4:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 5 17:31:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff9fc6d56f672fe62a18655e1795af311c4c3244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:aa:0b:5c:d2:b1:45:d0:e1:97:43:48:89:ca:
78:e7:90:03:d9:9a:9c:89:0f:6f:c8:00:fb:e1:12:
a8:0c:ce:1f:24:fe:b1:4e:30:3f:da:89:bd:e4:ed:
c1:c3:94:f4:14:33:82:bd:f0:62:68:00:5a:2b:8d:
29:1a:4b:b5:f0:7f:4f:13:de:f8:00:b8:8d:17:9c:
7c:d6:4f:de:c1:28:74:33:66:59:1f:67:c3:7f:47:
fd:55:36:22:e6:e1:f7:d1:7e:00:e2:19:40:65:2c:
48:43:e6:e6:c4:ee:86:84:be:5c:32:67:32:64:34:
2c:16:de:4f:d8:d8:54:8c:87:06:38:6e:49:c3:6c:
de:7b:f4:32:33:2f:37:1c:f0:f4:5d:d4:8c:5c:f6:
d1:b7:f3:69:92:3d:54:c2:b2:8b:c5:7c:2d:7d:06:
cf:76:f3:b4:71:58:95:ec:66:a7:cd:64:de:4c:ba:
d5:a0:f1:eb:2b:a3:c5:00:1e:e0:7c:08:51:83:e0:
ac:e9:29:fb:3d:fd:f3:c8:1e:ab:fa:69:fb:39:a9:
ab:90:96:10:77:2a:3d:82:71:fe:b3:1b:7f:b0:66:
c6:c4:00:25:71:a4:71:d6:15:c7:8e:17:73:13:ae:
14:53:af:d5:0f:f7:ff:58:95:08:b2:2d:26:4f:07:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:9F:C6:D5:6F:67:2F:E6:2A:18:65:5E:17:95:AF:31:1C:4C:32:44
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/_5_G1W9nL-YqGGVeF5WvMRxMMkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.151.0/24
Signature Algorithm: sha256WithRSAEncryption
35:8a:09:bb:c2:5e:9f:9d:29:ab:ba:3b:c1:3a:59:d9:7b:94:
f9:fc:59:c0:b1:d9:55:c9:36:ef:d0:58:63:8a:5b:74:94:68:
b0:09:bf:2a:73:16:45:06:12:1f:86:71:0b:c0:d9:8f:b6:59:
c6:b2:d3:59:8e:d6:b1:6a:d5:88:84:ad:a9:36:c7:ee:bc:f9:
79:76:bc:f1:d2:d5:04:74:02:21:be:86:70:6a:35:7d:bf:7c:
f9:28:8a:ae:24:e2:f8:62:ae:55:3c:18:8b:4d:b3:6a:2a:35:
ea:a5:e5:22:86:87:5e:a3:87:a0:65:a8:58:29:b7:ea:99:f8:
2b:7a:8b:f0:bf:40:c5:ca:23:82:da:5d:6f:ae:45:0b:92:08:
46:20:be:07:bf:bc:e2:fe:72:d3:de:64:f7:34:4c:4f:19:93:
15:dd:07:80:b8:07:5b:fa:71:43:ec:59:fa:cd:82:58:be:5f:
4a:61:67:ab:a3:54:9c:dd:8b:f9:91:86:26:7b:8a:91:a1:48:
3e:d8:58:b7:51:63:5b:96:49:f2:b7:3d:3e:42:f7:c1:01:12:
40:f9:c5:6d:ac:93:55:94:f4:2b:45:9c:0d:2a:23:bb:32:eb:
bf:ea:ed:53:ba:17:c5:32:e3:b4:52:de:88:ee:18:72:50:84:
ad:1d:c2:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:20 2024 by rpki-client on console-fra.rpki-client.org