Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/XFT_hb56wYHM6dYktGWfOBXnSVc.roa
File: XFT_hb56wYHM6dYktGWfOBXnSVc.roa (raw, json)
Hash identifier: McG+Ob5uMZ6gfDeEBFLqfC51ewi1x98+u/pJhzKAYz8=
Subject key identifier: 5C:54:FF:85:BE:7A:C1:81:CC:E9:D6:24:B4:65:9F:38:15:E7:49:57
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0187322C92D4608497453669DB9EEC14B9A6
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/XFT_hb56wYHM6dYktGWfOBXnSVc.roa
Signing time: Thu 30 Mar 2023 10:59:54 +0000
ROA not before: Thu 30 Mar 2023 10:59:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2614
IP address blocks: 194.102.61.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:32:2c:92:d4:60:84:97:45:36:69:db:9e:ec:14:b9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Mar 30 10:59:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c54ff85be7ac181cce9d624b4659f3815e74957
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:20:2b:2f:2a:7c:9d:40:0c:5f:e0:b4:4d:aa:
85:c3:bd:ce:d4:e0:dd:b5:df:c6:27:45:9f:60:f1:
86:b6:ae:db:57:ff:59:f2:2b:3f:e1:cc:96:3b:ab:
cc:8d:f3:2b:ba:8f:44:65:2e:b5:90:d8:7f:2b:ba:
95:26:39:fe:13:67:5f:02:45:5f:21:87:ea:d7:80:
08:f8:50:ba:68:d8:8e:6c:b4:78:cf:e6:22:9e:b9:
ba:a9:83:c6:cc:c8:0c:c3:85:9f:38:32:ed:15:d1:
1c:49:fd:48:01:18:b1:38:4d:1b:da:e0:a3:a3:02:
42:1f:c0:c3:95:27:a1:bc:e3:02:05:70:71:65:d7:
fc:0c:dd:f8:dc:4c:6b:e8:13:60:bb:3b:c2:ed:8a:
fe:39:49:96:44:7a:c7:e4:4f:d7:19:98:a2:00:7a:
49:02:8b:b3:85:38:3a:2c:50:be:47:cc:48:bc:64:
d1:68:2a:63:b4:2d:fe:13:9d:f1:45:06:5e:68:0f:
c7:e7:e7:5e:bc:94:86:f3:27:1a:26:ab:17:c8:31:
fd:aa:5e:f8:ce:3e:19:3f:9b:6b:52:9d:38:b2:f3:
7e:60:19:d2:dc:c7:2b:e1:98:04:a2:dc:fc:d3:c2:
2d:ef:f8:d8:6a:28:8d:a8:dd:df:59:22:22:7c:bc:
26:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:54:FF:85:BE:7A:C1:81:CC:E9:D6:24:B4:65:9F:38:15:E7:49:57
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/XFT_hb56wYHM6dYktGWfOBXnSVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.61.0/24
Signature Algorithm: sha256WithRSAEncryption
af:05:a9:c5:74:1e:fe:86:5e:32:85:0b:19:e2:ca:97:ea:73:
e6:6e:14:d6:d9:ca:56:b1:46:fe:6b:62:7e:9c:6e:ab:b9:77:
be:fa:6d:5e:0a:ae:98:eb:c6:05:6b:17:77:ed:cd:c5:2f:31:
18:57:a2:0e:71:67:ee:e5:4f:47:8d:04:12:0c:4b:32:cd:9c:
c6:c4:22:32:9f:58:d4:51:7b:b5:06:61:f7:33:28:34:89:9b:
31:31:2a:ee:45:62:dd:15:81:d1:4b:bd:07:1d:df:97:c1:af:
3b:70:9d:fd:80:9f:0c:b0:c7:cf:7b:e8:40:85:da:92:ce:01:
e3:0d:92:0f:82:c4:41:79:9d:37:ec:49:6a:a5:df:21:f5:56:
fe:ff:6d:78:33:e7:04:64:c6:34:50:ee:7c:d5:02:68:b0:8d:
fa:70:92:9d:7c:6e:90:b3:aa:a6:ae:3c:af:64:be:52:a2:12:
50:91:aa:48:2e:a9:c9:5b:45:04:81:fa:b1:67:38:bf:b9:27:
55:4f:21:e3:fa:63:6d:d4:2f:5f:61:ee:12:ac:aa:c9:26:fc:
23:0f:3b:42:8b:3e:af:df:3d:f1:c5:c1:44:76:0e:18:33:c0:
44:d7:28:6e:40:cf:de:42:d6:5b:2c:28:b5:db:fa:77:70:88:
da:6d:67:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org