Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/ftFb5K7S2NkhJyoIg_OqGjw-quo.roa
File: ftFb5K7S2NkhJyoIg_OqGjw-quo.roa (raw, json)
Hash identifier: 8S4nyosuqo/VA/pVe1JQelglBXWsjTBBgy+H/oVQBak=
Subject key identifier: 7E:D1:5B:E4:AE:D2:D8:D9:21:27:2A:08:83:F3:AA:1A:3C:3E:AA:EA
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 018A37D4FBC93FB5FB238D80D794C102D010
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/ftFb5K7S2NkhJyoIg_OqGjw-quo.roa
Signing time: Sun 27 Aug 2023 16:30:19 +0000
ROA not before: Sun 27 Aug 2023 16:30:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202654
IP address blocks: 194.8.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:37:d4:fb:c9:3f:b5:fb:23:8d:80:d7:94:c1:02:d0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Aug 27 16:30:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ed15be4aed2d8d921272a0883f3aa1a3c3eaaea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9b:fd:65:bc:57:9b:d2:3a:bc:7a:d6:6d:42:
55:a4:3f:a7:cb:27:da:d0:49:bb:c7:0e:dd:8e:62:
0d:b6:9c:b6:86:a5:11:44:c4:fa:a0:2c:a5:19:5d:
93:8e:fc:fc:f3:6a:20:83:9b:2d:b0:12:d1:dd:34:
33:e9:b8:b5:70:ac:97:62:04:f5:e1:d1:39:15:df:
ae:57:8f:0b:c0:61:4a:56:ae:4e:81:ce:49:34:1a:
c6:c4:3e:92:5c:08:e0:dc:22:29:79:fd:8b:c1:e5:
39:4d:d6:30:24:10:fb:24:40:3c:74:c7:06:22:5e:
1d:40:5d:67:25:25:1a:9d:97:4c:c4:fe:fe:59:49:
7b:4a:d3:cb:0e:83:06:74:d4:41:11:f2:9e:6e:e7:
3c:5b:0d:ee:9b:bb:d8:9f:78:20:19:d5:82:66:06:
3d:8f:ba:fd:c4:90:6e:90:7b:43:79:01:66:a7:6c:
2c:fc:0e:52:ff:6f:d0:9d:a0:3a:ec:7b:82:fb:3a:
c9:34:dd:43:5e:44:af:d5:8c:01:15:a0:02:ee:20:
d8:27:8e:3b:5d:29:b8:c1:98:f8:9a:75:cb:ce:5c:
62:95:1e:b8:2a:4d:33:d6:41:3d:7d:72:f4:fc:67:
bc:cc:94:a3:aa:f3:65:b8:7c:ec:dd:4f:f7:17:cf:
d2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D1:5B:E4:AE:D2:D8:D9:21:27:2A:08:83:F3:AA:1A:3C:3E:AA:EA
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/ftFb5K7S2NkhJyoIg_OqGjw-quo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.239.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c4:15:47:e9:70:bc:2b:39:85:71:f4:45:dd:39:a6:cc:ef:
0a:96:a5:01:76:ee:4a:bf:25:b8:3e:ef:fe:df:4c:cb:77:3f:
1f:38:3c:d0:80:56:a3:34:a4:7f:b2:22:b7:ca:59:4f:0e:dd:
47:94:35:7f:20:f3:de:18:90:f0:1c:dc:84:78:2e:a7:63:3a:
30:44:82:aa:98:67:95:9c:0a:5e:1c:7b:d9:55:8c:8b:39:2b:
ea:cd:64:a0:fb:62:f0:b1:e6:02:1d:d6:93:5b:90:49:fd:d3:
be:b2:3d:1b:0a:4f:d9:4a:e0:00:60:30:57:c0:d3:81:af:43:
5c:18:e9:6e:33:1a:2b:93:73:cc:eb:83:ae:14:35:b5:90:ea:
59:bc:c4:58:c5:b1:11:f1:eb:b0:34:db:a4:30:0b:b6:8d:e8:
2c:c8:7e:dd:c7:f9:bb:15:8c:84:68:d0:e8:9f:08:e8:7f:5e:
9a:70:2c:3f:0f:12:3f:7b:2a:ef:d8:26:3b:dc:c3:b0:2e:91:
7f:41:70:7d:b5:46:f3:9f:c9:6c:ec:65:1c:48:c1:72:7a:d7:
82:7e:4d:26:5b:c4:13:68:94:f9:b4:1f:2b:3c:bb:44:ea:5f:
50:0b:ed:25:c3:76:be:5a:a0:f7:ba:f0:13:5c:2a:ff:06:a6:
95:f6:3f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:25 2024 by rpki-client on console-ams.rpki-client.org