Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ynpxTvP7i03hyzLif3wIwIbu-Uo.roa
File: ynpxTvP7i03hyzLif3wIwIbu-Uo.roa (raw, json)
Hash identifier: 4rcX8O5Gxt/7jTF7nACpYnEE7d451ssTdgnKZ/MJMhg=
Subject key identifier: CA:7A:71:4E:F3:FB:8B:4D:E1:CB:32:E2:7F:7C:08:C0:86:EE:F9:4A
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018CF3665BC7EB92A1F2F67BF1DE7E0F3450
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ynpxTvP7i03hyzLif3wIwIbu-Uo.roa
Signing time: Wed 10 Jan 2024 12:43:40 +0000
ROA not before: Wed 10 Jan 2024 12:43:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 194.146.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 18:50:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:66:5b:c7:eb:92:a1:f2:f6:7b:f1:de:7e:0f:34:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 10 12:43:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca7a714ef3fb8b4de1cb32e27f7c08c086eef94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b8:4b:8b:11:a8:8b:c7:7f:88:78:56:d7:3e:
f8:ae:77:7d:87:a7:6f:b2:4f:4d:70:0a:14:aa:2d:
c3:75:44:32:74:ae:74:a4:e5:e8:d8:b7:8f:ef:2f:
3c:01:1a:d3:1d:c6:0b:2a:bf:ef:73:29:e8:c6:3e:
d2:da:6d:d9:48:a4:06:5b:98:93:0f:de:5a:5e:a6:
8f:c0:95:c8:8a:d1:4d:f1:9f:a4:f0:64:1e:05:c1:
aa:38:23:04:86:37:c4:ad:42:0b:be:fc:f5:5e:28:
ec:88:cb:74:62:1f:5b:4e:1c:88:8e:13:c0:77:80:
0f:c0:56:13:cb:7b:40:19:41:8b:96:10:87:5c:34:
79:fe:e5:22:5c:3f:f3:c5:8d:5e:92:ef:e6:a7:86:
0a:41:01:af:b8:28:8d:f2:55:7b:4b:dd:59:ad:94:
56:56:43:15:dc:32:bc:f6:f0:d4:6a:36:04:27:70:
04:8d:fd:3a:ea:98:a3:94:13:9b:7e:95:82:d5:ef:
63:ba:fa:8d:5d:7b:83:bd:6b:11:d4:23:32:f5:0d:
47:d5:ae:cb:2d:2e:c1:d8:3f:01:07:b3:4c:3c:6d:
a1:61:85:60:61:a5:f5:26:ae:d0:05:3e:74:32:d4:
15:12:aa:09:17:69:45:36:67:f9:6c:a5:54:8b:58:
a7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7A:71:4E:F3:FB:8B:4D:E1:CB:32:E2:7F:7C:08:C0:86:EE:F9:4A
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/ynpxTvP7i03hyzLif3wIwIbu-Uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:72:c2:37:6b:87:35:4f:eb:26:49:13:f7:27:f8:2c:c8:01:
0f:ad:84:d2:8b:74:d2:ee:e7:e7:cc:26:89:bc:c7:dc:30:7a:
0b:1e:73:bd:c6:bf:2c:07:0a:3d:9e:a1:f6:69:a4:d4:56:f2:
24:c4:42:b3:fa:f7:44:3e:70:e3:c2:87:66:05:70:b9:c5:40:
54:f5:86:5f:ad:48:74:8b:1c:c1:e5:86:0f:e6:fa:5e:4a:34:
92:2d:96:7a:61:21:8e:65:09:06:90:e5:77:c9:04:3d:50:e8:
f1:69:8a:90:c4:3f:02:e3:61:cb:cc:64:d5:b6:ff:13:33:07:
38:4b:3d:4b:11:f8:99:e1:e0:a0:07:63:d5:44:a0:0c:cf:01:
be:b4:70:3b:4c:e4:0b:45:38:7e:52:0a:b6:84:ab:86:51:c0:
3c:39:5b:f8:b6:07:de:d2:72:69:ec:00:90:c2:bb:4c:71:70:
ab:41:85:2e:d2:24:d7:44:0d:62:c0:ce:27:b9:ac:03:fe:41:
3c:24:4f:8a:3c:72:ca:15:64:86:83:b2:db:c7:31:0d:19:df:
bc:bd:35:f7:2d:55:95:47:ef:28:b9:db:52:f8:88:d8:67:ac:
8c:b1:6b:cd:2a:d5:cf:85:de:98:13:25:35:9c:70:e1:e0:27:
53:8e:a6:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 20:32:44 2024 by rpki-client on console-fra.rpki-client.org