Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yL5Q9ADPMbwmZec8z0eQgnos0gU.roa
File: yL5Q9ADPMbwmZec8z0eQgnos0gU.roa (raw, json)
Hash identifier: SoQi7MsYjbkJrml3GjWxTxem2k4gTz9koAfCZzFTavg=
Subject key identifier: C8:BE:50:F4:00:CF:31:BC:26:65:E7:3C:CF:47:90:82:7A:2C:D2:05
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018BAE0BE98069E5227B821636D6570862F7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yL5Q9ADPMbwmZec8z0eQgnos0gU.roa
Signing time: Wed 08 Nov 2023 08:28:18 +0000
ROA not before: Wed 08 Nov 2023 08:28:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60528
IP address blocks: 194.87.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:0b:e9:80:69:e5:22:7b:82:16:36:d6:57:08:62:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 8 08:28:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8be50f400cf31bc2665e73ccf4790827a2cd205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f7:01:ef:23:a0:8d:2a:0c:86:f0:ff:3d:0c:
67:00:a9:5b:bd:af:50:6a:3a:a8:a6:27:e1:c6:aa:
53:a3:f3:bd:8e:d5:cf:05:b7:ed:50:43:da:5c:02:
35:8f:b6:59:13:26:69:7d:61:00:03:ca:02:2a:2d:
64:ab:3b:8e:ce:00:c3:8c:c9:26:50:47:2d:12:e1:
4a:02:11:91:c4:02:c0:ba:d9:c1:5e:c9:cb:15:68:
04:79:33:48:a0:17:fe:8c:11:22:71:1f:b9:44:cc:
29:18:4f:28:bf:f4:61:37:0a:f4:a4:dd:99:cc:6c:
36:7d:8b:9b:db:f7:11:88:cc:3e:fc:70:d6:76:44:
7a:74:df:20:85:3d:bc:ae:98:eb:b0:12:a5:f4:3e:
e3:0d:d9:3c:a7:9f:a1:e5:32:56:56:23:20:f6:d6:
dd:e0:31:ab:55:e4:c4:f9:6b:cb:17:55:0f:f0:bc:
94:4a:32:92:e3:03:b3:72:3d:91:6e:22:af:b2:32:
e2:c2:15:3b:b7:ed:69:df:1b:71:fe:be:c0:36:02:
f6:d8:6d:06:0c:38:18:9d:2c:32:ed:fe:bc:60:aa:
73:ab:87:98:17:08:1b:d2:4f:88:99:8a:f3:e2:36:
78:50:d1:fd:1a:4a:3f:e3:01:3b:7b:cc:59:9e:70:
05:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:BE:50:F4:00:CF:31:BC:26:65:E7:3C:CF:47:90:82:7A:2C:D2:05
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yL5Q9ADPMbwmZec8z0eQgnos0gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.222.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:d6:13:90:92:71:86:2b:ef:ad:98:d7:dc:67:9f:74:e2:41:
39:3c:01:9d:11:14:f8:41:a0:05:51:dd:27:e1:a5:94:13:0a:
c8:20:58:ec:d2:ee:05:35:df:5d:dc:65:1e:14:a2:e7:28:c1:
71:0d:a8:39:4c:bb:a4:06:ed:67:f0:22:8d:04:51:94:5c:1d:
d1:f1:7b:fe:da:69:50:e4:6a:a5:d5:55:37:00:28:99:44:7b:
e7:12:c2:e2:3b:2d:dd:8b:0b:cb:de:da:5c:d5:46:3b:1e:4c:
56:37:68:ed:d7:4c:d4:45:ab:ec:fb:50:18:97:f9:54:11:1f:
44:c7:7f:46:4a:0d:5b:f8:41:77:75:a7:cd:0a:46:ce:0d:0d:
88:e3:bf:ba:6b:d1:04:98:c1:40:0e:1d:d5:ef:9e:ca:a7:93:
72:0f:6a:f2:f2:7a:43:69:8d:de:a4:f5:2b:47:13:bf:ee:87:
7a:e3:cd:fe:68:c1:cf:47:a7:80:98:77:72:17:94:25:a9:52:
e9:e8:09:90:9f:e8:5b:13:0f:4b:b4:7a:5b:72:82:8e:ee:f9:
9e:61:51:1f:7f:ad:0b:ca:14:1e:0f:d9:97:76:42:8e:5a:e5:
3f:2d:26:45:1c:3d:21:13:69:a2:e7:72:85:a6:ee:dc:73:c4:
5a:7f:99:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:30 2024 by rpki-client on console-fra.rpki-client.org