Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/dAn9LXjp9x3JuA7Oaon5ZYND3SY.roa
File: dAn9LXjp9x3JuA7Oaon5ZYND3SY.roa (raw, json)
Hash identifier: +QoKxutNGilGU0hL4wOuukdI5/TXgLKRFX4OkG1YueE=
Subject key identifier: 74:09:FD:2D:78:E9:F7:1D:C9:B8:0E:CE:6A:89:F9:65:83:43:DD:26
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 0191B670F95EA679B8434E39EAEDF55CF050
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/dAn9LXjp9x3JuA7Oaon5ZYND3SY.roa
Signing time: Tue 03 Sep 2024 05:52:22 +0000
ROA not before: Tue 03 Sep 2024 05:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10103
IP address blocks: 194.33.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 14:05:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b6:70:f9:5e:a6:79:b8:43:4e:39:ea:ed:f5:5c:f0:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Sep 3 05:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7409fd2d78e9f71dc9b80ece6a89f9658343dd26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:11:1c:26:41:da:cc:47:f1:11:d0:86:2b:fd:
82:64:8d:a5:f3:9f:6b:c2:62:c3:51:cc:45:bc:90:
55:a5:7a:99:aa:ea:2e:6b:5a:93:12:52:19:6c:0b:
8c:1f:12:b4:3b:b2:3f:16:fa:72:72:29:f8:12:a8:
ae:29:b0:b5:43:20:c9:ae:7c:1b:af:e6:5e:9c:39:
d6:b1:74:75:ac:bd:78:43:83:0c:dc:0b:c4:c0:b7:
0c:de:d3:1d:74:ee:a0:35:1b:d2:24:bb:65:79:b6:
27:69:9b:23:1c:79:22:d0:b1:86:f6:06:a8:9c:09:
90:56:23:ee:ec:e5:61:4f:d6:2b:7e:0a:23:a0:17:
c1:f9:50:a3:5c:16:05:d5:70:65:96:26:95:73:91:
f1:c1:4b:99:c5:92:09:e5:79:ab:a6:f0:00:1e:ce:
90:0e:1c:1b:a5:e5:8b:95:8b:6e:25:24:7e:00:c5:
19:a2:41:c9:90:fb:cb:7f:4c:b8:a4:c5:97:2b:9d:
1e:cf:54:ee:84:90:c6:4f:79:ce:2d:bc:ef:ac:1f:
85:22:04:92:10:51:c4:2a:ca:af:32:c0:e3:88:d8:
1c:b0:50:17:6c:c6:53:5a:a4:e9:fd:99:df:d5:63:
d5:54:f4:41:66:7c:87:dd:f2:0f:65:89:fa:94:90:
a7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:09:FD:2D:78:E9:F7:1D:C9:B8:0E:CE:6A:89:F9:65:83:43:DD:26
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/dAn9LXjp9x3JuA7Oaon5ZYND3SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.150.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:f7:41:04:c1:73:7d:3d:0d:f7:19:4f:fb:11:b8:6f:c5:05:
0b:e8:87:3d:a0:62:0a:12:c7:60:67:f0:3e:8a:90:a2:8b:b3:
a8:b3:7a:86:bd:26:3d:af:0c:a5:f4:41:81:5a:c0:a5:f6:e6:
94:67:5e:73:0e:43:f7:12:b9:3f:1b:3b:b0:03:56:12:d3:7e:
1a:a8:18:ab:b6:93:32:23:4a:6f:25:ee:59:55:00:84:eb:dc:
c7:56:25:b7:6c:8c:79:77:ee:58:2a:1c:c7:26:6e:c6:e5:b3:
39:72:96:43:b8:63:fd:24:9e:a5:12:84:04:e5:65:ba:b0:e7:
c9:f9:e8:e6:f0:97:2c:fd:ec:26:ff:7a:05:12:b0:4d:3a:2c:
d2:83:51:ad:0c:14:8e:18:d2:65:bc:8b:d5:1b:e0:d2:be:5e:
60:45:2a:79:87:19:14:c1:3d:2f:b0:c8:b8:3a:b7:f0:a2:11:
36:0c:c5:5b:18:9c:58:bb:e0:7d:25:de:48:78:56:c1:03:cc:
8a:d1:8e:10:51:fa:bc:b6:e8:9b:94:8f:78:6f:2e:2b:87:36:
e7:64:73:c1:e9:7c:52:86:6e:b1:42:33:b5:1b:65:37:d7:b8:
ce:da:9e:dd:36:2b:bf:6c:af:c9:1a:5a:36:d3:8a:58:6e:65:
d3:5d:4c:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:59 2024 by rpki-client on console-fra.rpki-client.org