Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/UtIa6yd1awJZGEzSOJ4-rC8tGvI.roa
File: UtIa6yd1awJZGEzSOJ4-rC8tGvI.roa (raw, json)
Hash identifier: mocBRG0pKkeUETsGrWl9+pEFrDVjyoPYoYI/EIOK3fA=
Subject key identifier: 52:D2:1A:EB:27:75:6B:02:59:18:4C:D2:38:9E:3E:AC:2F:2D:1A:F2
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 019016B4EE72A4425F23501B30E7A19A5721
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/UtIa6yd1awJZGEzSOJ4-rC8tGvI.roa
Signing time: Fri 14 Jun 2024 12:24:34 +0000
ROA not before: Fri 14 Jun 2024 12:24:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 94.124.160.0/23 maxlen: 24
193.160.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jul 2024 05:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:16:b4:ee:72:a4:42:5f:23:50:1b:30:e7:a1:9a:57:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jun 14 12:24:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52d21aeb27756b0259184cd2389e3eac2f2d1af2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:69:48:58:18:ed:d1:da:41:f0:24:92:5b:a5:
d9:15:63:6e:46:82:85:fc:44:d0:22:b8:56:34:b6:
32:52:5e:f8:da:18:52:70:e7:a9:b3:69:f6:53:7b:
bc:6b:58:22:0f:3a:fe:8f:ce:03:ed:37:55:32:5a:
0f:11:7f:34:ba:3f:43:29:7d:9a:92:30:15:23:79:
5d:4f:75:65:c9:21:83:01:ef:8e:a2:d7:c6:3e:e6:
3a:55:d1:ee:7e:f3:e2:72:a7:7d:6c:98:d8:1d:89:
c2:ef:18:03:50:a6:ed:86:aa:55:bb:8d:49:23:d0:
10:db:20:69:63:a5:91:d0:4f:b4:6c:27:01:fe:4d:
2e:86:d8:8f:74:e2:3a:50:76:41:4c:64:0a:52:f2:
b9:77:ec:ed:b5:74:ab:3a:da:4e:11:24:24:e9:76:
bd:60:c1:33:bc:39:13:6e:23:ac:a0:cd:cd:7d:36:
28:b9:ae:11:b4:38:37:3f:4a:0e:16:eb:f0:ad:6c:
0e:f9:f2:d8:98:4c:e6:eb:a0:34:b1:eb:77:f3:b3:
b0:54:bd:fa:e4:22:95:be:3d:4f:88:34:d4:e1:df:
f4:7a:07:39:e6:13:7a:51:6b:94:c5:a3:d2:80:cc:
6c:53:05:2a:25:7b:a5:0c:7a:3d:ea:4d:1f:b3:14:
8c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D2:1A:EB:27:75:6B:02:59:18:4C:D2:38:9E:3E:AC:2F:2D:1A:F2
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/UtIa6yd1awJZGEzSOJ4-rC8tGvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.160.0/23
193.160.8.0/24
Signature Algorithm: sha256WithRSAEncryption
72:c0:a9:d6:cc:8a:14:ae:3f:b8:dd:6c:96:41:8a:05:fe:0e:
f8:dc:f9:79:20:f3:dc:cb:6f:ce:3b:fa:5f:66:de:69:a5:63:
43:50:91:8a:d7:d8:13:f6:09:49:60:0d:0f:75:dc:09:46:ff:
11:4a:b3:60:fd:7f:a4:8a:1d:17:17:b7:0e:f7:6c:6d:b6:c3:
9e:8a:ce:f3:6b:a6:53:e5:96:0f:e9:ac:b7:33:40:f4:8a:78:
d6:02:0a:7e:5c:a3:8a:5d:af:ef:f3:5c:f6:84:07:8d:a1:fd:
95:1c:3d:e3:e4:aa:d5:7f:11:a3:7a:a5:dc:7c:3e:45:89:b6:
d1:9c:47:50:ef:2b:4a:04:62:d3:a4:3c:23:36:1f:f8:54:a2:
d4:02:52:14:f0:ac:6b:7b:e9:33:5c:3c:6f:30:b7:97:40:8f:
44:d6:0f:de:89:f5:d4:28:be:e8:78:f8:36:46:97:9a:0f:4c:
45:f7:5b:0c:a7:58:cc:5c:bb:78:56:28:45:4e:4d:86:62:e1:
5c:4c:d4:17:fa:ff:6f:d0:62:49:ab:93:6f:01:8d:1c:66:3c:
56:ee:ed:52:0e:da:f0:4b:ac:df:99:75:40:02:77:1f:ec:4b:
da:46:6f:8e:2d:a3:fe:11:08:13:05:22:45:dc:1a:e5:15:e2:
e3:e6:46:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 07:26:22 2024 by rpki-client on console-ams.rpki-client.org