Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/DQioYYYY8VNP4Df6UUhIXP5CqEk.roa
File: DQioYYYY8VNP4Df6UUhIXP5CqEk.roa (raw, json)
Hash identifier: tRQTVbM6MiVIhFl8gr0DAo9Rl/qLd2c5JNnX4prINOg=
Subject key identifier: 0D:08:A8:61:86:18:F1:53:4F:E0:37:FA:51:48:48:5C:FE:42:A8:49
Certificate issuer: /CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Certificate serial: 018571BA16D5DEF4DB1BB57AA09CF826D814
Authority key identifier: 4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/DQioYYYY8VNP4Df6UUhIXP5CqEk.roa
Signing time: Mon 02 Jan 2023 09:04:59 +0000
ROA not before: Mon 02 Jan 2023 09:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2877
IP address blocks: 194.50.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:16:d5:de:f4:db:1b:b5:7a:a0:9c:f8:26:d8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c1740cef9749dc2b0f5f88cdf1034da81d606dc
Validity
Not Before: Jan 2 09:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d08a8618618f1534fe037fa5148485cfe42a849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:cc:b7:c5:3c:23:ca:0e:4b:09:3e:de:4f:1d:
39:7d:43:e0:6f:39:59:e5:f7:69:87:2c:74:5b:8b:
74:4d:e4:e0:f6:e7:ba:19:9f:55:99:6e:e7:c0:8c:
b2:d9:0c:91:e9:10:5e:d4:bc:d8:df:ee:f9:96:4d:
03:a3:4b:0d:ac:8d:eb:ce:c1:20:4e:17:9b:d2:05:
a9:27:1c:ac:62:17:30:19:74:90:59:08:a2:8e:93:
bd:e0:02:df:85:96:b9:50:cc:65:88:07:4b:62:49:
fb:5d:ad:68:36:43:58:46:d7:56:84:f3:f9:28:0d:
48:06:12:2c:fd:4b:0d:e3:85:8d:ab:ac:ce:84:71:
b7:b0:80:27:65:c6:8a:84:61:11:4d:b5:85:13:7c:
6f:dd:88:3f:bb:7a:11:a0:3b:6c:7e:99:89:e7:5f:
e6:50:1b:34:a0:ba:b4:a1:25:10:35:d3:de:35:06:
e4:0a:ab:ef:05:c0:3f:d8:19:e4:83:6b:b9:e4:e3:
5b:64:31:b4:49:4b:f9:22:f0:c0:09:2f:85:1d:12:
62:94:89:22:c0:c8:aa:92:af:7f:c1:6d:07:82:54:
1d:15:63:28:37:16:e1:09:9f:58:70:f6:61:cf:ab:
65:6b:22:8b:c1:92:81:31:54:73:8f:48:79:6f:59:
b7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:08:A8:61:86:18:F1:53:4F:E0:37:FA:51:48:48:5C:FE:42:A8:49
X509v3 Authority Key Identifier:
keyid:4C:17:40:CE:F9:74:9D:C2:B0:F5:F8:8C:DF:10:34:DA:81:D6:06:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TBdAzvl0ncKw9fiM3xA02oHWBtw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/DQioYYYY8VNP4Df6UUhIXP5CqEk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1a15fa-ace6-464d-8969-e4928180033c/1/TBdAzvl0ncKw9fiM3xA02oHWBtw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.105.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:cf:92:86:56:49:10:2e:e6:31:86:84:6a:74:10:00:ee:3d:
05:68:e3:1d:c7:be:87:16:ce:3d:ae:a3:19:a5:49:f6:ea:c4:
2b:11:fd:de:1e:bc:42:0f:78:80:b5:41:20:c3:20:c5:ca:b1:
22:ae:cd:f6:38:18:0d:e7:44:0f:26:02:6a:c4:5c:b7:01:d0:
30:4d:dd:8d:55:fd:ce:c1:8f:06:92:19:5d:97:f7:6b:b8:63:
ab:64:a9:c8:66:de:2d:65:27:ca:bc:1f:53:d2:39:83:cc:5e:
59:1d:a9:9a:a5:69:d5:05:2e:e7:78:2d:7f:84:9d:e3:fa:49:
2f:e6:dd:a4:eb:c7:43:cd:33:9b:ab:ee:d5:8c:ce:6a:36:86:
c3:2b:9d:65:e2:4d:17:06:87:f7:77:30:5f:cf:c3:ee:05:86:
7e:d3:3b:e2:65:a6:9e:9b:f3:e2:c5:0a:7b:10:ff:69:a9:80:
da:f9:d2:fe:9b:ba:27:46:f0:e5:c5:fa:f9:12:12:8f:da:4c:
70:da:34:1b:3b:f8:43:75:f0:3d:b0:a8:d4:85:b0:99:50:7a:
43:d9:7e:04:5a:25:53:aa:87:52:70:5d:6b:0e:05:1c:71:3d:
86:ab:1f:fd:f7:94:41:b7:ec:81:1f:78:ae:ec:79:82:ef:85:
89:9d:c6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:34 2024 by rpki-client on console-fra.rpki-client.org