Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/n5aBRBc7tKfMfQxSmrUJfFdOp5w.roa
File: n5aBRBc7tKfMfQxSmrUJfFdOp5w.roa (raw, json)
Hash identifier: esze+THtUKC8LJv96NkOEkq6xWBrcmqj/8505u6zCho=
Subject key identifier: 9F:96:81:44:17:3B:B4:A7:CC:7D:0C:52:9A:B5:09:7C:57:4E:A7:9C
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 018570F0843ABFCDA91AA10AA19058CB38E1
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/n5aBRBc7tKfMfQxSmrUJfFdOp5w.roa
Signing time: Mon 02 Jan 2023 05:24:48 +0000
ROA not before: Mon 02 Jan 2023 05:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9211
IP address blocks: 194.156.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:84:3a:bf:cd:a9:1a:a1:0a:a1:90:58:cb:38:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Jan 2 05:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f968144173bb4a7cc7d0c529ab5097c574ea79c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2e:e2:ff:72:8d:69:46:0c:8e:26:0b:c9:4e:
7d:63:22:04:cb:eb:a7:b9:0c:11:76:84:a1:a6:a1:
22:03:db:bc:42:af:a6:ed:16:6a:43:8a:58:2f:9d:
b3:7b:04:e2:52:11:93:87:90:0d:cc:ca:6e:bd:a1:
2a:5f:e6:cb:23:a6:15:cf:d3:7a:91:36:37:fa:fd:
e4:08:18:45:fe:f5:57:4d:6f:09:3a:4e:a4:d3:29:
55:44:68:ce:ad:b3:e2:5f:8a:c9:76:62:ca:39:09:
1b:9a:56:e6:d4:24:e5:76:f3:10:15:5b:41:64:cb:
15:30:c7:62:c8:34:78:b2:88:f9:e8:9d:d5:3c:ad:
16:da:c5:b0:71:64:a1:6f:83:74:a2:d2:f9:a9:42:
0c:63:79:17:45:60:5e:78:9e:51:63:00:97:da:f4:
21:de:aa:b0:35:58:6b:c8:c3:bc:90:09:7a:e7:31:
5b:c3:16:39:5f:a1:c9:19:ac:98:2e:26:b8:5f:75:
eb:71:b8:1e:2b:ba:60:c8:cb:37:7f:53:06:13:ef:
38:69:11:93:c2:cf:ff:d5:57:e1:f8:33:9c:b4:50:
89:6a:ed:43:85:46:e5:2e:e8:01:36:d8:15:bc:28:
75:b2:60:4b:7d:8d:27:ea:ac:a1:43:a7:43:9e:29:
dc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:96:81:44:17:3B:B4:A7:CC:7D:0C:52:9A:B5:09:7C:57:4E:A7:9C
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/n5aBRBc7tKfMfQxSmrUJfFdOp5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.189.0/24
Signature Algorithm: sha256WithRSAEncryption
df:9e:90:17:af:0f:46:83:72:1e:e1:17:b1:da:1c:80:20:ae:
81:a4:ae:b7:12:fe:37:74:58:82:b0:28:a5:08:f8:91:3b:1c:
97:7b:eb:96:9d:05:ac:4b:b1:fa:8a:ed:60:7b:62:20:d8:99:
b1:3a:eb:03:0e:15:d4:43:c5:21:33:46:36:1f:bc:cf:ff:97:
4f:76:b2:7c:da:6d:2f:84:b7:40:2c:6a:6b:af:83:73:00:3d:
46:2a:17:b7:ee:70:66:76:03:f6:22:83:68:cb:50:22:39:60:
c7:37:20:31:d5:12:e6:42:a1:d2:7d:95:38:09:79:ca:cc:03:
66:26:b4:3f:b1:aa:77:7d:92:6e:9b:78:ab:a4:2f:c1:b9:65:
47:fd:26:1e:d2:68:67:a2:ff:94:46:a0:66:65:ff:63:a9:6e:
ef:1c:b6:b0:b1:58:a5:a6:3f:8b:da:c6:7a:32:c8:e3:e9:e3:
89:64:b1:52:16:f2:e8:67:c4:60:f0:aa:de:5d:13:c6:9f:00:
de:f1:58:aa:9a:53:43:0d:a2:fc:35:3e:e7:77:a5:de:4f:ad:
11:58:1c:72:e0:51:92:f7:55:fe:c0:54:0e:87:87:87:0b:97:
00:26:94:35:fe:a7:b0:3c:35:c3:6d:f4:1b:5f:65:bb:87:80:
ff:e8:c6:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:04 2024 by rpki-client on console-ams.rpki-client.org