Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/vXI0oMB0sd6X9nMEpAZSvuFOW0w.roa
File: vXI0oMB0sd6X9nMEpAZSvuFOW0w.roa (raw, json)
Hash identifier: 6ruYyManmUK4Y3yoypI5eSr/cw2Ax9/Bg1eBr42vPzM=
Subject key identifier: BD:72:34:A0:C0:74:B1:DE:97:F6:73:04:A4:06:52:BE:E1:4E:5B:4C
Certificate issuer: /CN=cd108c225f2478cd4230179890d07284be1636cd
Certificate serial: 018C8C9D74EBA3FAC7CD029CBC2504F87633
Authority key identifier: CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/vXI0oMB0sd6X9nMEpAZSvuFOW0w.roa
Signing time: Thu 21 Dec 2023 13:42:58 +0000
ROA not before: Thu 21 Dec 2023 13:42:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35478
IP address blocks: 194.126.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 16:10:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:9d:74:eb:a3:fa:c7:cd:02:9c:bc:25:04:f8:76:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd108c225f2478cd4230179890d07284be1636cd
Validity
Not Before: Dec 21 13:42:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd7234a0c074b1de97f67304a40652bee14e5b4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cd:39:e6:e2:bf:05:05:78:02:75:bd:32:93:
2a:8c:23:9b:0c:e5:b3:2b:c8:c0:f7:70:a4:05:1e:
de:e0:7c:ee:b3:9f:85:90:87:07:cb:3a:48:26:58:
6b:68:25:fb:eb:bd:fd:b3:a1:23:6e:d4:78:2a:89:
fa:5f:49:39:61:02:d3:cf:bd:26:d5:4b:99:03:ea:
3d:39:03:d1:ef:65:ad:79:6a:c4:e3:a7:32:27:95:
b7:c7:c0:45:ad:d8:8f:53:0e:b9:6a:02:2d:bf:2d:
e7:5f:4e:a8:ac:eb:96:84:52:93:49:78:b1:db:c9:
50:63:fd:d5:d3:81:1f:6d:6d:2e:64:54:be:bf:b5:
81:92:d0:26:0c:0a:6b:cd:20:a9:83:16:18:d9:f8:
88:5d:49:5a:08:7b:5c:f8:1e:71:0a:d8:67:11:7c:
28:f7:94:26:56:ba:84:fd:47:a7:2e:3b:28:77:24:
6c:5c:dc:f6:cb:77:d5:25:ad:78:39:33:c8:38:45:
75:64:bf:10:c9:e2:ab:03:7f:bd:e3:f4:48:dd:c9:
1c:1c:05:37:73:05:12:81:4d:cf:17:56:a1:40:ba:
7c:0c:06:3b:8c:bf:f4:2b:1b:3c:fe:d8:41:a3:56:
37:7c:cc:7f:6d:c2:e9:46:f6:8b:16:cf:64:69:44:
6a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:72:34:A0:C0:74:B1:DE:97:F6:73:04:A4:06:52:BE:E1:4E:5B:4C
X509v3 Authority Key Identifier:
keyid:CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/vXI0oMB0sd6X9nMEpAZSvuFOW0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.219.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b9:a6:0b:11:5e:0c:81:36:2b:cd:11:82:75:b9:78:64:f8:
47:f8:8f:44:27:5c:21:dc:b0:90:44:24:69:3c:9b:51:7f:49:
6c:03:da:61:c3:0f:50:df:2e:a5:47:b7:99:a9:97:12:a1:28:
b2:e8:36:b4:57:c9:92:fe:c4:4d:2b:df:ac:95:ce:fb:e8:0d:
fa:db:d8:3a:e0:40:4f:76:33:b1:dd:de:e5:4b:d3:69:53:1f:
53:9f:91:3b:61:5c:8d:b4:ef:be:96:f3:5a:c0:9c:d9:75:10:
b3:05:15:4b:4a:76:e2:1d:c6:17:2b:76:aa:46:8f:26:36:4a:
e5:64:48:28:3d:a0:55:7a:e5:9c:02:e2:1e:ab:eb:69:6d:e0:
5d:ff:5c:9f:b6:4c:9f:b8:af:2e:f5:a8:e8:e6:8c:4c:44:be:
ee:ba:11:c2:74:de:aa:38:08:ba:26:5c:fb:7e:bc:a0:c2:20:
07:19:7d:a6:6d:f0:46:dd:23:cb:c4:12:97:ca:63:bc:52:1c:
e8:73:1c:47:bc:f4:5d:fc:c4:49:1c:0a:7d:21:2b:19:af:4a:
16:4b:2c:df:e9:de:7f:1a:a1:f4:4b:63:29:3b:94:e5:b0:ec:
5d:55:ca:0d:35:c7:a3:4c:a4:00:26:ef:c6:fc:67:98:fd:29:
f2:ad:73:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:03 2024 by rpki-client on console-ams.rpki-client.org