Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/bYzqpKhaE62q1_x8_balU5qgq10.roa
File: bYzqpKhaE62q1_x8_balU5qgq10.roa (raw, json)
Hash identifier: Kp90QW00L8s3guYqXnMSYNzoYkKEYH+45k9PoOvICX4=
Subject key identifier: 6D:8C:EA:A4:A8:5A:13:AD:AA:D7:FC:7C:FD:B6:A5:53:9A:A0:AB:5D
Certificate issuer: /CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Certificate serial: 018CC7943D2C8F8BDED48485DDC4BE448B17
Authority key identifier: 27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/bYzqpKhaE62q1_x8_balU5qgq10.roa
Signing time: Tue 02 Jan 2024 00:30:30 +0000
ROA not before: Tue 02 Jan 2024 00:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 517
IP address blocks: 194.45.183.0/24 maxlen: 24
194.45.98.0/24 maxlen: 24
194.45.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 21:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:3d:2c:8f:8b:de:d4:84:85:dd:c4:be:44:8b:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=279dbfdf4c20bdae8d6118566ece76444e46d171
Validity
Not Before: Jan 2 00:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d8ceaa4a85a13adaad7fc7cfdb6a5539aa0ab5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:72:37:9a:b1:56:f4:9c:ce:85:37:85:88:6f:
4a:60:7c:8e:0d:7c:f1:db:3a:3e:83:83:c6:48:65:
7d:6a:9e:88:f8:e6:af:a9:4e:6a:e0:03:55:41:fd:
94:ff:ca:41:7d:e1:6d:89:d4:7b:5c:f8:7d:1b:4b:
94:43:e8:38:0f:01:ea:ca:ef:72:f8:3a:6c:c0:26:
f0:d5:af:3e:67:b9:29:29:79:37:38:f7:fc:f2:ee:
54:2a:63:d0:d2:97:b1:f7:d6:b6:80:4b:30:70:33:
71:d2:3b:34:1b:e5:de:02:25:1d:6a:cc:7b:6b:b1:
91:d6:76:c0:90:49:01:bf:1c:ff:17:aa:08:38:f2:
00:e3:dd:46:c4:4f:14:d2:0a:91:b7:b9:b1:d6:48:
76:59:07:6a:cb:de:30:a0:cc:6d:82:59:bd:4f:42:
b2:6f:ca:d7:a1:7c:f5:01:3f:19:94:ee:d6:ad:a9:
64:90:a5:fe:29:40:21:12:48:df:dc:49:ca:00:54:
5d:2f:fe:32:a7:60:52:1f:f8:33:a2:3b:85:36:db:
73:4d:db:80:f4:38:9e:b2:64:36:b7:b2:98:00:54:
1f:68:ac:40:e2:4b:9e:d0:69:92:57:f5:17:74:37:
bb:b9:08:a3:a6:4c:0f:6e:2f:07:aa:d1:97:91:fe:
c9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:8C:EA:A4:A8:5A:13:AD:AA:D7:FC:7C:FD:B6:A5:53:9A:A0:AB:5D
X509v3 Authority Key Identifier:
keyid:27:9D:BF:DF:4C:20:BD:AE:8D:61:18:56:6E:CE:76:44:4E:46:D1:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J52_30wgva6NYRhWbs52RE5G0XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/bYzqpKhaE62q1_x8_balU5qgq10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9d54a5-0135-4b18-961a-0cf1093d4548/1/J52_30wgva6NYRhWbs52RE5G0XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.98.0/23
194.45.183.0/24
Signature Algorithm: sha256WithRSAEncryption
62:4b:ca:e2:36:60:d2:6a:78:ec:ad:82:99:a3:7c:7e:5c:6a:
14:c5:a3:7b:fc:41:18:83:c8:4f:f1:1e:80:43:ba:df:fe:ff:
b5:a1:73:96:ff:ae:27:ab:49:88:e5:19:bd:1b:9f:06:b9:49:
9f:c2:6a:17:13:a1:60:f1:14:83:34:69:69:6d:b9:d0:27:73:
cc:1e:44:66:19:bd:39:09:72:32:4a:76:93:8a:64:ae:1b:54:
4b:ba:60:13:1a:1a:a2:d1:6e:a0:24:b6:6a:93:8a:03:8e:b7:
28:4e:76:e4:07:ac:72:32:c0:2b:2f:25:e8:82:8a:d6:42:d6:
0c:99:c7:fe:6c:1e:fc:79:4f:b9:bf:28:99:85:05:36:51:65:
3a:95:d5:54:4f:26:1e:4f:35:11:ae:07:95:44:4e:b0:11:d1:
4b:e4:38:fd:85:d8:f4:74:a5:08:e7:7e:ef:39:df:ba:b9:76:
c4:4e:48:d3:1d:74:70:a1:be:3f:54:f6:9b:48:29:b3:98:8a:
56:62:24:0c:a3:85:5c:d2:a6:ea:7d:c7:00:93:a5:23:9d:6e:
8a:98:f4:d1:b1:94:52:c9:be:9c:09:b7:3a:3a:61:80:30:fb:
94:0a:b6:40:29:19:ee:b6:4d:72:a6:fd:b2:2c:1c:90:56:95:
ec:6f:af:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:12 2024 by rpki-client on console-fra.rpki-client.org