Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/1CfKBtjE7vOUlXgSzRT3NBGWKP8.roa
File: 1CfKBtjE7vOUlXgSzRT3NBGWKP8.roa (raw, json)
Hash identifier: z9j6uwABq4cROp6qENd36dj1duWK3Ujz7azZjS+3v58=
Subject key identifier: D4:27:CA:06:D8:C4:EE:F3:94:95:78:12:CD:14:F7:34:11:96:28:FF
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 01911761B3CFBF93187EA6FBFE96B040FEB0
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/1CfKBtjE7vOUlXgSzRT3NBGWKP8.roa
Signing time: Sat 03 Aug 2024 08:36:04 +0000
ROA not before: Sat 03 Aug 2024 08:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55286
IP address blocks: 194.62.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 03 Aug 2024 13:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:17:61:b3:cf:bf:93:18:7e:a6:fb:fe:96:b0:40:fe:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Aug 3 08:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d427ca06d8c4eef394957812cd14f734119628ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4a:e0:1d:4a:27:10:ac:ed:56:76:36:26:17:
3a:27:29:cf:63:e1:61:c4:5c:f7:84:af:cf:5c:eb:
10:b2:1e:09:66:a6:db:58:5a:6c:b9:2d:f5:1c:62:
07:b5:ae:26:df:de:34:bd:cc:16:0d:d2:a0:4c:fd:
dd:3d:b9:2d:52:02:cd:59:86:99:d8:42:9f:e1:cf:
20:23:c6:46:dd:b0:fa:ad:16:9b:e4:d3:d3:ac:df:
8e:c9:0e:ab:2a:70:84:a2:99:f7:8b:36:c0:97:66:
01:db:95:cd:fd:12:f0:11:03:e7:eb:80:75:03:16:
28:23:e5:ba:84:4f:93:84:dd:24:cc:98:96:77:eb:
d3:a0:a0:00:81:3c:3b:3e:bc:0d:33:ad:d9:1b:80:
e5:5b:92:24:5c:67:ca:ef:77:df:e3:0d:49:34:b5:
34:2f:35:f1:c6:72:98:3b:91:f7:c7:6d:cd:b2:5c:
77:40:8e:c4:1f:f4:a8:5b:29:6f:54:2a:95:fe:ab:
dc:e1:39:2f:1f:22:f8:2b:46:6e:b1:2f:86:7d:ab:
9a:25:7c:ef:80:fa:88:da:e8:f9:72:2d:ca:85:6c:
16:05:53:92:15:6d:ba:de:13:bc:c4:6c:8e:b7:12:
c3:90:a3:15:de:a9:d4:07:a1:19:06:6b:d7:68:82:
7b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:27:CA:06:D8:C4:EE:F3:94:95:78:12:CD:14:F7:34:11:96:28:FF
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/1CfKBtjE7vOUlXgSzRT3NBGWKP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.16.0/24
Signature Algorithm: sha256WithRSAEncryption
45:7a:39:42:63:a5:22:9a:dc:15:e6:e3:2f:e0:b6:84:c7:d2:
09:97:42:34:f4:0e:c3:1a:c2:ee:ec:7f:35:cc:8f:c8:6f:3a:
62:0f:28:fa:e2:6f:38:8f:b0:25:66:1d:b1:bf:cf:5c:ce:e6:
eb:ba:08:25:b6:e9:9f:a3:0a:00:11:38:09:15:89:de:fc:4a:
92:0f:44:ab:8e:af:9b:dd:4c:03:1a:ac:a1:a6:8e:88:cc:26:
ba:c9:6e:dd:9d:76:ce:a9:82:c7:97:99:98:47:46:c6:79:0c:
c5:51:c2:6c:0a:15:79:77:66:b9:1f:f7:af:8c:15:c6:a8:05:
45:70:1b:98:63:73:05:c4:a7:46:cf:2e:d6:00:72:f8:13:ad:
f7:f1:55:2b:5e:a6:e1:73:26:9e:da:d7:4e:70:d2:55:a9:f4:
3a:ef:3a:34:e0:05:76:80:50:c9:ad:2d:1a:a9:b3:15:98:10:
14:46:8b:29:93:7b:b7:5b:49:81:a2:f0:9e:87:1d:09:27:cd:
13:02:67:4e:36:25:27:99:01:5b:45:9c:cd:01:81:5a:3f:6c:
ff:89:68:64:28:b9:46:80:87:74:78:99:4d:0c:f3:47:8a:28:
d9:06:5e:52:74:41:ac:63:18:a6:b4:b9:8d:03:b0:a6:d5:65:
32:2d:13:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 15:16:21 2024 by rpki-client on console-fra.rpki-client.org