Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/r_EBDyzd0u0pIpUAptlW9eTmPIU.roa
File: r_EBDyzd0u0pIpUAptlW9eTmPIU.roa (raw, json)
Hash identifier: sZu2vYmBELWHWSNlU/b6mfHL0+bzVmaWECwYiYTt/ls=
Subject key identifier: AF:F1:01:0F:2C:DD:D2:ED:29:22:95:00:A6:D9:56:F5:E4:E6:3C:85
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C3A6742D2EBEC8EA09E18827A540DD916
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/r_EBDyzd0u0pIpUAptlW9eTmPIU.roa
Signing time: Tue 05 Dec 2023 14:34:55 +0000
ROA not before: Tue 05 Dec 2023 14:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211849
IP address blocks: 194.87.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Dec 2023 03:28:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3a:67:42:d2:eb:ec:8e:a0:9e:18:82:7a:54:0d:d9:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 5 14:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aff1010f2cddd2ed29229500a6d956f5e4e63c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0a:e2:ce:01:70:88:90:9b:fb:65:2f:ef:21:
62:ee:05:74:8e:90:36:63:40:e1:c7:32:73:57:9a:
f5:1a:13:a7:b6:ef:85:32:97:58:0b:4d:62:45:5d:
c0:8e:c2:32:32:92:68:49:5f:c0:f2:8a:b2:d7:ec:
c5:01:71:89:5c:08:f7:27:f9:28:4e:81:29:b7:95:
32:c0:40:8f:67:46:2f:05:27:88:8c:92:b6:28:7f:
f4:ea:9f:a4:f9:4a:62:95:ba:43:26:59:59:83:de:
54:ec:ca:3d:9d:e7:e1:87:02:46:85:98:97:a9:39:
e9:de:67:b5:43:f4:76:f7:69:ec:ee:8c:1a:b4:87:
81:b8:1e:5d:0a:fd:ab:95:a0:ed:60:f6:18:5c:ec:
79:33:8b:eb:a9:3f:fd:85:fa:7b:7a:4a:00:03:f0:
39:ec:4a:d6:37:5c:b8:c6:a1:bc:85:5f:74:7c:32:
f8:a7:81:49:6d:44:7e:2a:3d:cb:85:08:22:25:93:
b8:5f:6f:2f:8a:3b:50:65:78:cf:32:27:4e:c5:65:
37:2d:96:73:ac:6f:2b:64:b0:c9:0c:e2:3e:10:39:
30:ee:63:14:0a:0f:66:f4:e0:aa:16:f5:d4:a7:bb:
eb:08:a1:c0:6f:b0:f4:3f:bf:fc:94:57:47:0b:ce:
60:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F1:01:0F:2C:DD:D2:ED:29:22:95:00:A6:D9:56:F5:E4:E6:3C:85
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/r_EBDyzd0u0pIpUAptlW9eTmPIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.32.0/24
Signature Algorithm: sha256WithRSAEncryption
24:6a:30:a1:ab:85:01:30:34:11:19:ca:24:bd:22:66:46:5b:
95:19:df:9b:f7:c0:f2:ff:1f:cb:b6:d1:ee:25:97:27:7d:97:
83:f2:78:a6:ec:73:69:df:6f:3a:b0:0e:59:c8:b0:4e:d6:56:
1f:09:71:96:d9:48:b3:bd:55:2a:dd:e6:eb:ff:ff:c1:ae:db:
81:0e:ca:8d:f6:13:2e:da:80:b6:0d:af:f3:ab:62:d4:c4:e7:
59:a0:79:38:8f:0f:90:86:41:0f:d5:2e:ad:16:bd:1d:e4:bd:
81:d2:5d:55:31:d8:b4:c0:28:fd:2e:17:b3:76:93:7c:22:f0:
57:79:23:44:b6:48:12:f6:f4:ed:45:5e:be:a0:21:a8:f2:93:
97:74:c7:53:de:99:5b:0b:c3:7e:ef:ab:ec:20:bb:34:f1:e8:
e9:59:a2:d2:2a:d6:25:92:69:67:66:05:80:b7:0e:b8:4c:17:
07:52:32:86:9e:e6:12:27:aa:51:7b:00:07:58:f3:9e:e1:5d:
83:ee:78:ce:71:44:f7:1f:76:d1:26:91:c3:7f:a9:29:14:e2:
74:48:8f:25:6e:ba:ec:44:9a:e1:54:66:6d:60:68:eb:dd:33:
6d:8d:45:20:8f:95:ca:1f:87:cc:15:d7:6a:88:44:ef:8e:a3:
c4:e7:a2:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:28 2024 by rpki-client on console-fra.rpki-client.org