Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gADKg7dBa9yXE00EcPKjK4yby6w.roa
File: gADKg7dBa9yXE00EcPKjK4yby6w.roa (raw, json)
Hash identifier: ++M2QOvgs2mImxmlx+U7bQLGsNXcitvzQJifNfJkhSA=
Subject key identifier: 80:00:CA:83:B7:41:6B:DC:97:13:4D:04:70:F2:A3:2B:8C:9B:CB:AC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F6714A73B445CD69946B3BF7DD21574
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gADKg7dBa9yXE00EcPKjK4yby6w.roa
Signing time: Sun 01 Jan 2023 22:15:04 +0000
ROA not before: Sun 01 Jan 2023 22:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211484
IP address blocks: 194.87.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 06:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:14:a7:3b:44:5c:d6:99:46:b3:bf:7d:d2:15:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8000ca83b7416bdc97134d0470f2a32b8c9bcbac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:c3:ea:ae:fa:d2:a9:a9:11:11:df:09:e5:19:
9f:7b:10:8d:6a:d6:2d:d5:a6:08:d2:02:01:bf:f0:
eb:6a:05:2e:1e:46:2b:47:94:68:99:33:00:ff:cc:
41:cf:2f:77:0c:fe:af:26:ae:ca:5e:d3:a1:84:e8:
64:7f:98:71:ea:74:25:78:ae:a8:a9:35:a4:25:f5:
c1:f0:6a:ca:f8:25:28:1f:9d:ae:53:bc:77:4d:c4:
7b:e7:f8:2a:4f:33:e2:8c:fb:23:52:96:f4:04:90:
ff:80:8a:b5:93:e1:56:30:fd:0d:6f:3a:7a:e8:4f:
0b:8e:b8:c7:10:f6:9f:bd:cd:7a:0f:89:fa:07:0b:
60:4a:92:22:6b:c2:eb:fa:76:a0:a0:0b:67:a2:e1:
02:f1:b1:8d:3c:87:24:a9:a7:e5:8e:f2:d3:b8:9b:
06:2e:f3:14:9c:98:5a:1f:33:33:fa:dd:b3:3d:d8:
a5:92:a3:cd:2b:54:ec:73:9f:ee:da:d0:79:0c:e2:
4e:2c:36:d3:85:e6:64:d2:49:27:de:1a:d7:5f:0a:
42:31:b2:45:51:d0:8f:e5:bd:f2:d1:c4:e0:f4:a2:
9a:05:c3:53:a5:3b:a4:8e:6c:8f:d4:22:91:7e:0c:
ec:0a:c3:ea:dd:d3:7c:02:86:e1:9c:3e:75:e0:67:
e8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:00:CA:83:B7:41:6B:DC:97:13:4D:04:70:F2:A3:2B:8C:9B:CB:AC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/gADKg7dBa9yXE00EcPKjK4yby6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.78.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:98:bb:54:9b:f3:a7:23:93:0f:e5:e0:bf:4c:9a:75:12:5a:
69:d2:5c:c1:1a:74:72:06:12:3a:7a:93:b6:5e:b4:3a:5b:6a:
b7:96:05:77:de:3d:3f:06:1c:aa:8c:81:8a:3b:f2:aa:20:c7:
21:fd:16:26:99:4b:93:9f:61:42:2d:d2:72:9b:a4:c4:45:f6:
96:25:36:cc:08:f9:21:5b:33:6e:3c:49:03:c7:79:c5:81:1a:
d1:d7:a6:6c:71:db:01:91:4b:c1:cc:06:3d:a8:f1:6e:21:1b:
a6:2e:a2:fd:7c:a8:a2:0c:84:e8:63:85:ad:82:20:51:8f:52:
57:31:d8:87:6b:89:49:d8:43:ab:fc:f8:98:81:d3:ed:f5:59:
9d:d5:49:43:b1:6d:fa:5c:95:0a:e6:83:f4:6d:f6:87:90:d2:
59:01:52:70:06:c7:4c:e2:b3:87:f7:1b:72:02:94:f2:e7:40:
9b:45:69:cd:db:d9:fe:ee:5a:69:dc:56:44:7d:47:eb:ff:0e:
bb:23:54:25:f7:a6:54:e5:0e:c6:9e:e5:08:5f:a3:e9:12:68:
05:51:5e:c9:09:a9:0b:fd:c2:b1:9f:a1:38:2d:5a:00:74:f8:
55:b8:0b:74:46:b6:29:e6:9a:6a:00:b3:dc:fe:79:dc:7b:c7:
2e:a3:31:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:23 2024 by rpki-client on console-fra.rpki-client.org