Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rB3F3WM2HYfEIsNdiEQQurwAL88.roa
File: rB3F3WM2HYfEIsNdiEQQurwAL88.roa (raw, json)
Hash identifier: +iOPghEegAStvnvLMnGicl5Md6YkdrB3kR8pDqpJp2A=
Subject key identifier: AC:1D:C5:DD:63:36:1D:87:C4:22:C3:5D:88:44:10:BA:BC:00:2F:CF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018E74C5D239ABFDDEC54A8ADFEE6100AD44
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rB3F3WM2HYfEIsNdiEQQurwAL88.roa
Signing time: Mon 25 Mar 2024 08:41:45 +0000
ROA not before: Mon 25 Mar 2024 08:41:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198749
IP address blocks: 194.87.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 25 Aug 2024 09:08:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:74:c5:d2:39:ab:fd:de:c5:4a:8a:df:ee:61:00:ad:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 25 08:41:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac1dc5dd63361d87c422c35d884410babc002fcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1b:2d:fd:2f:78:32:78:9e:1a:a9:cf:07:13:
17:ea:c9:15:19:9e:c1:18:0c:dd:2f:6c:ae:7d:59:
11:a4:be:ce:2e:a4:24:b3:e8:d0:02:99:48:3d:c0:
3d:9d:bc:00:c6:2f:e1:15:0c:2c:50:c7:b1:6d:64:
df:c1:53:84:21:34:78:74:53:24:cd:62:5f:95:b0:
be:1f:19:b1:f4:a0:4d:cf:40:05:2a:2b:46:83:e6:
7a:b2:69:4f:f0:6d:3b:c7:a6:a8:db:22:44:2f:58:
5e:66:0f:3c:8b:1f:84:c1:fe:54:03:cd:e9:50:e5:
7c:6c:e8:5c:ff:c7:e3:92:95:b9:4a:80:36:5d:0d:
8d:76:b1:cd:0e:67:b4:91:b1:ae:31:99:53:b3:06:
05:89:d8:56:2b:91:96:84:70:a3:fd:09:06:b2:38:
bb:ec:01:b1:80:0e:be:3d:36:53:49:d2:b8:8c:1b:
de:62:a7:ef:93:6d:0c:ea:8d:d0:56:d0:49:22:8b:
ac:af:49:d6:bf:ac:78:e6:9a:79:62:34:98:bf:d1:
7a:6e:b7:d0:8a:ec:38:99:7c:5c:52:6b:8a:e8:42:
0f:13:35:13:0c:10:02:65:73:ce:9b:2f:ab:04:66:
d8:d6:e0:db:69:db:94:a2:5c:5a:e2:f0:69:74:fb:
a5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:1D:C5:DD:63:36:1D:87:C4:22:C3:5D:88:44:10:BA:BC:00:2F:CF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/rB3F3WM2HYfEIsNdiEQQurwAL88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.82.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:35:2e:48:75:fd:16:0d:84:b8:55:83:c4:31:35:71:92:55:
5d:dc:cd:a4:05:00:f6:46:ef:ed:be:7e:c2:9e:35:76:99:60:
f7:84:89:f9:ac:eb:3b:9d:84:fb:5b:88:02:95:48:fd:e5:81:
ce:4e:0c:a7:f0:3e:0e:ea:82:2d:2c:b5:69:06:91:98:bd:60:
b5:f5:85:f6:85:67:de:36:e5:9a:24:21:90:4d:ec:a7:81:37:
db:47:89:84:4c:4b:ff:e4:6e:8f:6f:9f:f6:2b:f0:d3:40:71:
1b:00:e1:c0:28:10:9c:07:ea:0f:29:a3:f6:fb:82:81:4a:90:
b3:69:4f:ea:c7:01:44:15:8e:20:58:1d:1f:96:43:b1:65:ee:
59:b1:19:ca:28:64:75:b9:cf:40:4a:40:d6:9b:46:65:2b:ef:
90:a9:25:26:10:2c:7d:1c:95:54:0c:c6:04:cc:5b:3d:40:12:
18:25:a4:93:1d:19:d2:e6:64:82:15:3a:c0:a2:8b:23:d1:fa:
f2:60:4e:43:32:a9:3d:35:11:56:9f:c9:bd:ca:46:5c:5c:50:
d6:b6:5e:c0:e4:d3:92:e0:0b:86:ed:2d:32:c4:0a:dc:40:6d:
35:ed:d4:df:a6:39:6f:18:02:22:dd:e2:a5:fd:fb:31:1b:61:
bf:ff:f4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 25 11:46:20 2024 by rpki-client on console-fra.rpki-client.org