Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5d9f57-0f10-4e14-b4af-25a15a524f87/1/dwLPDLsESLwlvGCT2pqSfTq1k-U.roa
File: dwLPDLsESLwlvGCT2pqSfTq1k-U.roa (raw, json)
Hash identifier: 82wBAaIGyI9dLdrKsvfbmurL5PyEZHtnDQqZ3G2kRtg=
Subject key identifier: 77:02:CF:0C:BB:04:48:BC:25:BC:60:93:DA:9A:92:7D:3A:B5:93:E5
Certificate issuer: /CN=f8ae9881bf112098a2bfd49a0bcffdccce7bc208
Certificate serial: 01856E264CD4BE10B1AED110EE74C33CCCBB
Authority key identifier: F8:AE:98:81:BF:11:20:98:A2:BF:D4:9A:0B:CF:FD:CC:CE:7B:C2:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-K6Ygb8RIJiiv9SaC8_9zM57wgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5d9f57-0f10-4e14-b4af-25a15a524f87/1/dwLPDLsESLwlvGCT2pqSfTq1k-U.roa
Signing time: Sun 01 Jan 2023 16:24:41 +0000
ROA not before: Sun 01 Jan 2023 16:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 194.145.240.0/24 maxlen: 24
194.145.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:4c:d4:be:10:b1:ae:d1:10:ee:74:c3:3c:cc:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8ae9881bf112098a2bfd49a0bcffdccce7bc208
Validity
Not Before: Jan 1 16:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7702cf0cbb0448bc25bc6093da9a927d3ab593e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:83:b7:24:94:67:51:c7:66:d4:85:c9:e8:34:
79:30:a0:2a:ad:6c:3c:24:33:71:ab:d0:d7:69:57:
88:3c:46:15:b2:98:2b:a0:8e:63:0f:d7:00:41:d8:
c0:6c:96:1d:40:c8:98:7c:26:30:88:94:a1:7b:2c:
b6:44:8e:f0:72:be:25:c3:ed:6a:cf:26:8c:f1:b0:
78:7e:dc:bf:0d:4d:b7:69:40:9b:72:23:31:21:16:
5e:d7:34:aa:cc:67:80:5b:9c:b3:ef:34:45:b0:59:
20:b7:9f:03:1b:3a:c2:25:06:59:59:52:07:e8:b1:
eb:d1:71:fc:22:f9:98:63:26:69:f7:73:17:38:12:
de:c0:57:25:7f:11:cf:d4:90:7b:2f:16:81:0d:f4:
66:c3:fa:96:2a:4e:37:d5:1e:40:ef:03:38:d4:70:
49:c4:0f:8a:17:d8:25:33:50:08:35:78:7f:bd:42:
0e:b5:1e:cc:f5:ee:ee:6e:24:46:2f:d3:42:24:a5:
d5:f5:07:2c:22:d6:e6:71:54:29:c9:a7:e3:2b:15:
6d:29:f3:f6:49:a5:7d:ac:65:0c:ab:c5:e7:a1:5f:
97:36:94:83:78:c8:8b:07:84:21:1a:ed:1f:d4:c9:
6e:88:9c:a9:79:1a:eb:cc:35:af:81:22:65:96:4a:
f2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:02:CF:0C:BB:04:48:BC:25:BC:60:93:DA:9A:92:7D:3A:B5:93:E5
X509v3 Authority Key Identifier:
keyid:F8:AE:98:81:BF:11:20:98:A2:BF:D4:9A:0B:CF:FD:CC:CE:7B:C2:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-K6Ygb8RIJiiv9SaC8_9zM57wgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5d9f57-0f10-4e14-b4af-25a15a524f87/1/dwLPDLsESLwlvGCT2pqSfTq1k-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5d9f57-0f10-4e14-b4af-25a15a524f87/1/1-K6Ygb8RIJiiv9SaC8_9zM57wgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.240.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:27:ae:24:51:05:4d:c1:ae:66:52:b9:27:78:a3:25:62:6d:
81:b1:8b:72:83:b9:e8:2e:6e:f6:3d:5c:a4:41:1d:6b:31:ba:
e5:fd:ad:68:c5:b4:bc:7b:57:9e:28:b9:5a:c6:5c:71:40:53:
82:59:94:a2:48:f5:ab:07:05:75:42:d8:4c:d0:c9:e1:6a:4e:
bb:1d:cd:94:aa:ad:88:38:60:55:98:a7:08:e4:57:7a:19:d1:
6f:2b:6c:e2:a4:4c:3d:c2:e0:b7:b7:ca:cb:e4:21:a5:c9:b5:
6b:02:9f:9b:1c:67:b5:35:30:5f:7a:04:42:95:9f:0f:cc:15:
f1:66:28:61:e2:fa:11:d5:76:d4:85:49:a0:ff:32:df:c4:e9:
34:16:99:65:57:6d:b4:b5:24:16:a0:5c:55:a3:5f:4e:56:db:
29:7a:92:f9:03:50:14:ce:20:20:44:dd:93:25:dc:24:6c:49:
bc:3e:44:c3:25:b4:66:e6:3d:b2:20:36:fe:ef:a3:1a:be:9d:
c6:31:b7:a6:77:c8:81:ab:61:c4:28:fb:d0:a8:19:c8:72:e9:
79:57:cb:e4:da:12:93:b1:60:63:17:be:92:15:10:49:bf:e7:
7d:2c:25:73:92:41:62:a0:38:2c:84:4c:16:2c:52:d6:75:13:
05:9f:3a:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:14 2024 by rpki-client on console-fra.rpki-client.org