Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c5c6a7-710c-490e-89da-119820b522ad/1/1-tWcNXFQrMJThyvgzO_9gYndGRs.roa
File: 1-tWcNXFQrMJThyvgzO_9gYndGRs.roa (raw, json)
Hash identifier: ty8Pu4uLhw7d8yKbnchJFuGwHNVY81lmpXpAddB9A/M=
Subject key identifier: FA:D5:9C:35:71:50:AC:C2:53:87:2B:E0:CC:EF:FD:81:89:DD:19:1B
Certificate issuer: /CN=2dc955f4c2c7157abbdbfe809cf195605949a698
Certificate serial: 0192714EF132B589E8C60D32308923787707
Authority key identifier: 2D:C9:55:F4:C2:C7:15:7A:BB:DB:FE:80:9C:F1:95:60:59:49:A6:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LclV9MLHFXq72_6AnPGVYFlJppg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c5c6a7-710c-490e-89da-119820b522ad/1/1-tWcNXFQrMJThyvgzO_9gYndGRs.roa
Signing time: Wed 09 Oct 2024 12:44:11 +0000
ROA not before: Wed 09 Oct 2024 12:44:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8652
IP address blocks: 194.164.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 10:55:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:4e:f1:32:b5:89:e8:c6:0d:32:30:89:23:78:77:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dc955f4c2c7157abbdbfe809cf195605949a698
Validity
Not Before: Oct 9 12:44:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fad59c357150acc253872be0cceffd8189dd191b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:12:c1:e6:c0:f3:84:91:1d:e6:d9:2e:b2:03:
d2:9b:72:31:33:5c:5e:ff:bf:95:36:ea:74:1b:c2:
56:e2:18:27:6e:65:03:3a:80:20:33:90:75:c6:e1:
75:fb:0e:08:09:50:f0:13:62:86:55:61:cc:ba:b7:
06:21:71:1f:c2:33:56:b7:68:b9:f5:e2:83:d4:37:
c2:ba:43:6c:aa:31:e6:6b:32:7f:ea:ed:4b:ea:58:
0f:ec:79:f2:dd:6c:8f:96:37:86:51:bd:21:6a:79:
03:0d:91:be:c7:4b:6b:67:ca:3d:cd:82:3e:4c:36:
2c:b8:d2:2e:be:f3:23:ba:6d:84:3f:eb:0d:d3:91:
5b:19:dd:bb:d6:43:08:91:ef:37:ee:84:06:a8:16:
32:7b:c1:75:1b:d0:db:af:d8:9e:0f:51:d6:fe:1e:
b7:f9:95:1e:e6:8b:59:9c:2a:fb:68:a5:34:83:51:
dc:94:86:52:2f:8e:f8:da:b3:b3:c2:d9:7c:e6:e5:
9e:f2:a5:44:c8:9e:c8:d7:36:70:a0:f3:cd:d1:fc:
66:29:d0:7a:64:3a:e4:b4:c7:23:eb:07:7d:a4:49:
e1:5a:b3:c3:ee:81:94:79:a3:cc:28:13:ba:b5:4a:
b3:ee:22:e9:24:27:11:d0:3f:04:87:75:f1:47:27:
ba:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:D5:9C:35:71:50:AC:C2:53:87:2B:E0:CC:EF:FD:81:89:DD:19:1B
X509v3 Authority Key Identifier:
keyid:2D:C9:55:F4:C2:C7:15:7A:BB:DB:FE:80:9C:F1:95:60:59:49:A6:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LclV9MLHFXq72_6AnPGVYFlJppg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c5c6a7-710c-490e-89da-119820b522ad/1/1-tWcNXFQrMJThyvgzO_9gYndGRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c5c6a7-710c-490e-89da-119820b522ad/1/LclV9MLHFXq72_6AnPGVYFlJppg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.164.146.0/24
Signature Algorithm: sha256WithRSAEncryption
20:85:1a:80:20:0f:ac:97:fc:22:d9:02:58:05:f5:ce:eb:21:
f5:a8:e4:1c:4d:dd:82:f0:96:9a:a1:ee:ea:74:3a:cb:09:99:
4b:65:05:91:c7:a4:1d:79:38:07:a7:21:01:8e:ec:18:d3:27:
98:fc:dc:84:9c:1e:3f:ab:eb:d1:07:18:c0:37:ff:8a:63:02:
e2:b7:73:89:a7:24:7c:71:e6:fd:03:f5:05:28:2e:97:ff:59:
43:0e:af:29:e1:4f:c1:df:38:73:4f:3f:b1:68:df:a4:f0:79:
14:86:70:b7:14:9c:ae:97:b9:3d:8a:6b:db:46:df:45:be:23:
f6:73:69:be:9d:2e:8d:c6:69:96:cb:b1:8d:1d:a2:81:29:96:
47:16:20:19:45:e3:dc:77:8d:16:36:6f:d3:52:9b:0d:8f:09:
3b:7e:f3:68:1c:0f:f6:06:c0:98:29:bd:3e:b5:c0:25:e9:2a:
29:ff:32:5a:0f:d6:db:59:8a:39:ab:18:16:05:99:e1:34:e1:
2a:e4:a5:2b:38:64:09:00:9e:f8:f1:14:ec:a7:0c:4a:a0:05:
26:e3:57:22:05:9e:e5:fa:4d:e0:45:12:c0:02:7a:1c:3a:7f:
76:10:d3:c5:42:26:32:8a:17:06:21:1e:f2:39:03:fc:79:40:
33:6a:62:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 16:08:16 2024 by rpki-client on console-fra.rpki-client.org