Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/CJYtgWLXE0LjQKHv19S-PdljBgA.roa
File: CJYtgWLXE0LjQKHv19S-PdljBgA.roa (raw, json)
Hash identifier: A9sBKkaMFedOPB6wAw7q92nuVF/aHZQ169N7If3nUOg=
Subject key identifier: 08:96:2D:81:62:D7:13:42:E3:40:A1:EF:D7:D4:BE:3D:D9:63:06:00
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 018CC56ECD760DC151760A5F88D3CD48D212
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/CJYtgWLXE0LjQKHv19S-PdljBgA.roa
Signing time: Mon 01 Jan 2024 14:30:22 +0000
ROA not before: Mon 01 Jan 2024 14:30:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 194.213.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 11:35:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:cd:76:0d:c1:51:76:0a:5f:88:d3:cd:48:d2:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Jan 1 14:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08962d8162d71342e340a1efd7d4be3dd9630600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b8:23:db:39:c2:e6:16:bc:2c:77:6f:a8:62:
39:06:35:f0:4f:80:85:69:41:9e:3c:c3:4b:98:30:
af:3c:65:e0:b2:2d:1e:3a:dc:21:40:90:05:da:ec:
11:aa:42:bd:9c:09:cb:f1:e5:92:75:a6:9d:ce:f6:
e3:c0:c2:f2:12:0c:55:95:b3:8f:1e:e8:e8:cd:94:
03:e0:6a:a5:6e:dc:94:ed:7c:35:85:14:b7:c0:5f:
19:74:fc:60:c7:8f:53:2d:7b:d7:4a:be:14:24:86:
62:2a:52:d5:90:b8:65:c9:82:c9:91:fc:80:44:c5:
e2:e6:16:f1:5a:8a:c4:78:95:e1:5a:61:2b:af:99:
6e:d6:be:7a:cb:2e:e4:d1:05:20:79:aa:e1:9e:ee:
1e:5a:f7:65:6b:03:27:fa:ff:46:0a:27:93:bc:9d:
e6:6b:4b:17:48:a8:77:58:3e:85:92:56:a7:a5:67:
44:26:73:34:70:df:c3:a1:ea:cc:22:ab:cb:55:95:
0b:42:c9:44:20:89:65:93:cb:b5:73:e5:7a:08:86:
43:90:07:72:cf:4e:6d:77:aa:90:9c:05:3c:9c:76:
ca:1b:fa:89:84:c3:e3:6e:8d:e8:05:ff:e9:50:0f:
a6:49:99:c8:9e:b8:42:ce:b7:ff:e6:92:fa:a7:68:
91:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:96:2D:81:62:D7:13:42:E3:40:A1:EF:D7:D4:BE:3D:D9:63:06:00
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/CJYtgWLXE0LjQKHv19S-PdljBgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:90:81:5e:a5:2c:d0:74:d7:61:62:fa:1c:2e:cd:21:dc:c6:
4a:52:b9:e6:07:52:f2:06:df:95:db:ad:fb:71:0d:14:f0:ac:
2f:08:d2:4f:d7:e1:fd:df:19:7e:11:9e:e4:d0:a7:c5:cd:2b:
34:33:3c:b6:fb:59:c7:75:d3:35:40:40:4f:e5:2b:c3:89:dd:
b1:05:d6:b3:6c:5f:fa:e8:e8:74:f8:cf:39:87:0d:d0:9f:5f:
d6:d3:97:ee:91:a6:37:d6:32:e2:7b:70:51:be:04:5f:38:42:
fe:c4:40:06:9b:94:dc:27:9d:80:54:bb:f6:56:6f:45:14:6e:
0e:fa:70:73:0d:14:34:91:80:62:7c:26:35:ad:04:b2:e5:5e:
90:a6:d2:b8:a2:2f:dd:0b:a9:00:19:e8:41:f4:ac:4d:b8:11:
8a:62:c0:1d:9a:d7:d7:2f:76:17:a6:fe:b9:59:f2:d2:c4:91:
3a:2f:6b:ca:13:ce:d9:77:15:08:05:b7:60:d9:9e:af:22:44:
10:70:b7:cf:5f:74:96:6e:df:31:04:bc:89:ca:17:10:83:e9:
ca:b0:1c:69:82:ed:a9:9f:61:5b:2e:e5:0d:4a:2b:35:0a:a8:
fc:6f:81:62:fd:0a:9e:49:ff:0c:e9:7c:5d:1a:b0:f4:e9:23:
4a:4e:67:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:21 2024 by rpki-client on console-fra.rpki-client.org