Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/af1b93-d6e3-453d-91cc-41d735bd8c03/1/d72InbULucvDvs7QefyQkPK26cg.roa
File: d72InbULucvDvs7QefyQkPK26cg.roa (raw, json)
Hash identifier: tCGclZ6dD7/d3G02Uin3groBVjfXaa/0qzaGZBXYcHM=
Subject key identifier: 77:BD:88:9D:B5:0B:B9:CB:C3:BE:CE:D0:79:FC:90:90:F2:B6:E9:C8
Certificate issuer: /CN=e4f51741df136f9389254efde4ba9adcfb0de6bf
Certificate serial: 018BA9BB0301DF3C6EA7FF08B2AF038A0778
Authority key identifier: E4:F5:17:41:DF:13:6F:93:89:25:4E:FD:E4:BA:9A:DC:FB:0D:E6:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PUXQd8Tb5OJJU795Lqa3PsN5r8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/af1b93-d6e3-453d-91cc-41d735bd8c03/1/d72InbULucvDvs7QefyQkPK26cg.roa
Signing time: Tue 07 Nov 2023 12:21:27 +0000
ROA not before: Tue 07 Nov 2023 12:21:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20712
IP address blocks: 194.62.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a9:bb:03:01:df:3c:6e:a7:ff:08:b2:af:03:8a:07:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f51741df136f9389254efde4ba9adcfb0de6bf
Validity
Not Before: Nov 7 12:21:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77bd889db50bb9cbc3beced079fc9090f2b6e9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:b4:9d:1b:30:aa:60:a9:b3:71:a3:f3:df:87:
5f:9d:db:95:b4:c5:4c:12:25:d4:ea:9f:1b:3f:cb:
ec:76:14:1c:3c:9e:04:59:c1:e0:dd:18:2a:72:c0:
1c:e3:aa:c9:a9:5c:c1:0e:95:4e:6a:db:45:9c:83:
b0:fa:86:a4:4c:3f:50:24:24:0a:25:43:24:87:9a:
dd:c1:86:7a:42:bb:c9:9d:b3:ab:58:a8:a6:a5:66:
0e:2e:b1:c0:0e:8e:14:61:f0:65:25:4e:4a:99:fd:
29:0d:e5:bd:73:15:58:b1:82:c1:b2:df:b9:03:a4:
d7:c8:b6:90:77:c2:a5:4d:14:fe:bc:00:7a:49:49:
f4:ea:e4:0b:07:73:87:a6:41:20:fe:7a:8c:ed:da:
0b:39:2e:74:d8:26:59:e2:dd:b3:14:2f:c3:e3:27:
72:4e:d6:49:5d:39:dc:09:a4:b0:14:4a:a8:4e:ac:
47:85:b5:6a:45:29:93:21:10:73:b7:79:20:f2:dd:
1a:06:23:7b:d5:b9:42:66:c2:97:7c:bc:c3:2a:d6:
69:15:ca:f1:dd:6e:74:8b:d8:44:af:1b:27:d2:9a:
2d:bc:c9:b0:40:41:ca:f6:90:5a:5d:44:c1:b1:d8:
e9:23:2b:53:3d:8e:61:3a:cb:ba:90:61:b8:ef:28:
41:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BD:88:9D:B5:0B:B9:CB:C3:BE:CE:D0:79:FC:90:90:F2:B6:E9:C8
X509v3 Authority Key Identifier:
keyid:E4:F5:17:41:DF:13:6F:93:89:25:4E:FD:E4:BA:9A:DC:FB:0D:E6:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PUXQd8Tb5OJJU795Lqa3PsN5r8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/af1b93-d6e3-453d-91cc-41d735bd8c03/1/d72InbULucvDvs7QefyQkPK26cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/af1b93-d6e3-453d-91cc-41d735bd8c03/1/5PUXQd8Tb5OJJU795Lqa3PsN5r8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.124.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ec:fe:59:f3:c1:63:bc:e4:e8:c0:fe:08:ae:4c:00:0b:b0:
7c:34:db:63:6b:af:f8:f1:97:ef:f2:23:f2:55:fa:9c:f8:98:
03:ea:8a:98:72:bc:62:58:5b:b1:a5:ac:01:86:b4:52:ea:2c:
f4:2a:52:7a:1e:91:5a:a6:ad:ba:34:73:a3:d1:51:75:cd:bc:
d0:af:68:5c:fe:8e:a7:ec:28:9a:65:7b:4c:3a:38:d7:95:b8:
91:41:0f:25:52:b4:31:2f:b0:79:b1:0a:fa:38:81:0d:9b:40:
56:d7:a7:ac:6c:e3:7a:c0:9c:48:92:e1:1c:5b:30:12:87:6d:
0a:14:1e:4c:7c:3a:a7:4f:14:37:da:c4:61:62:b7:c0:53:69:
89:b7:20:e5:0d:41:be:d8:0b:b2:53:76:81:20:ed:8b:f2:59:
93:88:d3:0d:2b:85:b2:e8:39:1d:32:3e:41:e5:12:a8:7d:72:
73:c0:b3:2e:70:58:84:21:3b:5c:1a:08:85:34:e8:13:55:71:
84:1e:e4:e7:80:44:3a:dd:01:6e:9b:1d:fa:20:f5:a9:05:1e:
72:3a:cd:0e:3a:85:33:03:08:e5:70:d9:94:29:af:d7:32:ba:
32:fc:b6:f5:d0:58:63:2e:d3:46:0e:b4:6d:11:0c:9a:4e:60:
39:f5:98:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org