Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fqBofmUkkm0RZM-lgA22vR23xAw.roa
File: fqBofmUkkm0RZM-lgA22vR23xAw.roa (raw, json)
Hash identifier: Ud54IsggbLUtQ/regitW4Ig7CEwy/D4e9tW4ZGUoo5o=
Subject key identifier: 7E:A0:68:7E:65:24:92:6D:11:64:CF:A5:80:0D:B6:BD:1D:B7:C4:0C
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186EAF7639E5F27D2FDE8B3C0BFF5954563
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fqBofmUkkm0RZM-lgA22vR23xAw.roa
Signing time: Thu 16 Mar 2023 15:08:46 +0000
ROA not before: Thu 16 Mar 2023 15:08:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 194.87.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 May 2023 15:03:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:f7:63:9e:5f:27:d2:fd:e8:b3:c0:bf:f5:95:45:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 16 15:08:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ea0687e6524926d1164cfa5800db6bd1db7c40c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d2:dd:99:fc:00:c8:22:52:e4:db:dc:5e:ef:
74:5c:34:ce:0a:cb:d5:39:6e:09:bb:6e:8a:98:a4:
c3:82:73:0d:3f:b8:c4:50:d5:f8:e9:dd:c2:04:a5:
79:fe:4d:1b:db:02:b8:ba:63:1a:ac:24:75:01:e7:
c8:d5:88:ab:f0:82:99:5e:8a:d2:2e:e2:6c:fd:22:
ab:04:33:bd:c9:f8:02:46:34:43:b5:65:49:c2:c3:
7f:1c:96:11:21:bf:18:a0:3c:13:e4:69:6f:b5:30:
e0:a7:b2:3c:58:ee:94:94:22:2c:4d:4a:a0:8f:39:
1b:a2:7e:8b:96:79:5d:71:10:cb:99:b5:46:3e:93:
80:57:41:15:24:9a:5c:f3:4b:e1:8f:76:e3:ab:14:
96:ba:8d:7b:48:74:84:3a:66:0c:ae:bb:d6:cd:e1:
90:1b:b9:38:c1:c0:ae:ae:14:45:fa:9c:7f:91:98:
c8:bb:b8:9d:7a:26:88:8d:e5:ee:9b:dc:fa:e3:c1:
0c:69:d6:40:33:8b:90:18:5b:ca:4c:a3:99:c8:24:
9d:a4:c6:a1:51:f7:11:8f:26:1b:cb:6b:cf:b7:46:
67:d6:3c:a6:9e:56:42:f2:bc:2e:5f:2b:0e:9e:66:
19:3c:2a:b7:38:b5:88:0b:89:23:95:c3:44:d2:57:
19:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A0:68:7E:65:24:92:6D:11:64:CF:A5:80:0D:B6:BD:1D:B7:C4:0C
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/fqBofmUkkm0RZM-lgA22vR23xAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.123.0/24
Signature Algorithm: sha256WithRSAEncryption
55:eb:d4:f8:0e:d8:bb:05:0b:09:23:03:63:b7:41:da:46:69:
6e:27:39:dc:59:27:71:c3:e5:08:ee:10:29:6f:34:b8:91:54:
ca:9b:ee:d9:a9:6f:bc:33:cc:42:c0:6c:95:70:3f:44:cb:99:
fc:ad:7f:66:be:d7:28:f3:48:0d:f4:00:cf:8b:9b:7d:bf:38:
8c:00:17:06:44:57:a9:a8:51:7e:55:ab:f2:45:06:4e:eb:45:
52:60:2d:8c:6d:c8:e6:8d:dd:6c:c1:eb:dc:1e:9a:d8:65:2c:
9f:5e:f6:15:f5:fa:9a:0c:3c:1a:66:69:5e:5a:2d:5c:25:9e:
16:85:ab:0f:ce:f0:8e:b7:e8:09:16:df:09:21:80:6d:26:6b:
a1:fd:fd:42:db:f3:72:cd:bb:3c:f0:38:0b:63:2e:e1:00:de:
71:22:41:9c:f7:f9:5d:6c:b5:2c:9c:68:1a:ca:c0:78:95:fd:
65:15:b8:97:78:44:69:e9:71:8f:b8:28:d0:a2:55:ca:e7:f9:
74:6b:a7:86:bf:da:90:b0:86:90:b8:6e:4a:96:88:b8:3d:78:
cd:dc:bc:0d:f0:1a:18:66:22:1b:c8:64:7e:9c:c4:80:34:69:
7f:b3:6b:05:39:51:b6:82:eb:27:22:54:80:9f:01:09:e4:38:
f5:f0:55:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:23 2024 by rpki-client on console-fra.rpki-client.org