Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vYjHQBiVz4vIObEvlRxK9S9Vpj8.roa
File: vYjHQBiVz4vIObEvlRxK9S9Vpj8.roa (raw, json)
Hash identifier: u9oMdb245JoxQl5Sf1QwSs8Z818dRdH2ZX+pLnvgJxI=
Subject key identifier: BD:88:C7:40:18:95:CF:8B:C8:39:B1:2F:95:1C:4A:F5:2F:55:A6:3F
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018C3EF1FB578EA9C8B3AAAAAC237AFA4052
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vYjHQBiVz4vIObEvlRxK9S9Vpj8.roa
Signing time: Wed 06 Dec 2023 11:44:55 +0000
ROA not before: Wed 06 Dec 2023 11:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 146943
IP address blocks: 194.87.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:f1:fb:57:8e:a9:c8:b3:aa:aa:ac:23:7a:fa:40:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 6 11:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd88c7401895cf8bc839b12f951c4af52f55a63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:89:49:d1:55:c1:87:37:d6:7d:c3:3b:17:35:
ef:88:68:b3:b8:0d:04:42:07:54:d3:05:e2:ca:4f:
7d:3a:59:34:86:8b:dd:fb:2c:2d:79:e9:da:d3:e8:
ff:1b:78:f0:99:bf:5c:41:12:c8:2c:93:08:b4:4e:
80:77:e9:80:da:9a:12:17:60:17:0b:df:a1:79:18:
ab:54:42:92:d1:67:f9:4d:8c:e5:17:1e:99:e0:7f:
f8:9e:80:52:11:65:83:33:34:d2:5a:3f:16:95:be:
3c:3f:9f:82:d9:48:96:db:b8:70:c1:de:dd:8b:89:
d0:e5:02:6b:a3:e1:05:a6:7e:4c:07:8a:c8:c1:94:
9f:68:95:81:fe:65:5c:9e:42:95:4b:00:6f:9a:ff:
ae:03:31:8f:a0:e9:3a:25:23:90:ef:c6:90:7b:53:
c9:b6:01:c2:0a:72:bf:b8:95:84:39:7c:ba:d0:b6:
54:e1:ad:50:1e:eb:c4:b1:dc:2a:c1:fd:6e:d0:b9:
f7:dd:4e:f1:92:3e:b6:08:b9:48:86:fe:cf:e7:78:
1f:e1:0a:fd:5c:da:71:cc:2b:62:64:e0:19:20:b6:
fc:39:ae:a3:44:7c:93:8e:c8:18:50:83:ae:6a:8a:
f0:bc:c5:a6:81:ba:2f:52:4f:86:51:19:48:49:a3:
d6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:88:C7:40:18:95:CF:8B:C8:39:B1:2F:95:1C:4A:F5:2F:55:A6:3F
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/vYjHQBiVz4vIObEvlRxK9S9Vpj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
07:d8:46:7a:41:c3:6a:60:86:22:8e:b7:2f:82:0c:38:18:25:
cc:a0:96:ef:ea:a9:d8:f3:75:ae:93:2a:fe:05:4b:95:93:32:
31:f7:e3:2b:03:8e:7b:a4:25:4c:ac:17:6e:48:e9:3f:96:52:
b9:75:ab:0b:76:53:1e:5f:73:ea:0a:44:96:92:67:f3:48:ac:
c5:da:f5:61:13:cd:c8:77:40:43:40:e0:28:7d:4f:39:dc:75:
db:1e:aa:bd:ad:94:74:db:37:53:4d:59:13:71:f7:f8:80:3d:
8b:46:d3:09:4e:62:9a:69:b8:6d:bc:b9:de:ef:bd:58:ee:d4:
e1:3d:83:b8:70:56:fc:c8:5d:e9:08:ff:5b:fd:5a:6b:14:74:
97:bb:0f:95:18:4d:66:87:9f:29:ef:23:23:d5:1b:14:4b:92:
0a:3b:12:ae:4b:e9:86:8a:cc:3d:35:39:53:8c:df:d7:1e:2f:
75:c9:e8:89:cc:11:9a:5b:3f:1b:a1:2c:b1:b6:4c:67:9a:07:
76:ba:14:14:b7:f2:ec:9b:c8:d4:a7:a7:e7:c8:be:29:ae:99:
72:97:b7:7b:b9:93:b9:76:3c:98:85:a2:dd:c3:92:40:05:89:
1f:c6:8f:6c:07:2e:fb:d1:c6:16:98:b2:14:4b:db:a3:30:7b:
a7:f7:dd:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:29 2024 by rpki-client on console-fra.rpki-client.org