Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/jghlDd5N6UwYno8CaCQpB_kdDmU.roa
File: jghlDd5N6UwYno8CaCQpB_kdDmU.roa (raw, json)
Hash identifier: hMap2SyWOT5IPMfv2ETFXrdlueau3AIEdqck7uplnhs=
Subject key identifier: 8E:08:65:0D:DE:4D:E9:4C:18:9E:8F:02:68:24:29:07:F9:1D:0E:65
Certificate issuer: /CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Certificate serial: 018BC909FE7930EFD0C5E34B878CC7DF6902
Authority key identifier: 72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/jghlDd5N6UwYno8CaCQpB_kdDmU.roa
Signing time: Mon 13 Nov 2023 14:15:57 +0000
ROA not before: Mon 13 Nov 2023 14:15:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 194.213.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:09:fe:79:30:ef:d0:c5:e3:4b:87:8c:c7:df:69:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e4baf99ab840129133285fe9ad7b83fd130c39
Validity
Not Before: Nov 13 14:15:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e08650dde4de94c189e8f0268242907f91d0e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:25:ef:8d:7b:f2:dc:b8:ab:06:2c:70:57:44:
1e:11:bf:f8:9d:e2:fe:e0:88:ca:a4:4a:29:3a:71:
4d:8b:2b:a7:22:56:e9:ad:cd:d0:66:db:71:c6:3d:
a8:6c:ce:37:ce:74:e5:ba:a2:69:3d:97:a4:07:1f:
93:e0:0b:3f:df:33:56:24:8d:46:8a:1b:d1:2e:58:
24:68:3f:b6:6e:59:e5:39:ca:f7:0d:e5:d2:f3:ec:
29:b3:15:b8:5f:7a:61:d8:bc:68:c8:e5:06:4f:97:
3a:aa:0f:80:fc:b1:44:aa:10:10:29:8c:d4:5a:28:
59:0a:2d:d3:a7:ec:21:d6:d9:a2:82:89:be:2e:9f:
e3:9e:be:75:7a:c1:8c:e3:ad:63:a0:8a:ac:b6:3d:
36:73:c6:fb:86:4e:0e:86:13:2b:a3:be:c6:00:4d:
8a:ec:32:3e:9c:d3:1e:ed:d9:9e:c0:77:ee:fc:7a:
e5:8a:ae:02:0f:c3:d8:cc:70:53:dc:75:24:5d:ac:
2d:6d:f1:02:95:1f:2e:20:a2:88:28:02:e4:88:bb:
79:35:5d:7b:02:b4:bf:f5:de:b7:10:1c:0d:a3:fa:
74:4e:26:52:5e:c9:5f:1e:3d:c2:ae:76:73:b4:be:
66:f6:8b:21:32:b1:1d:9b:a1:ea:21:fe:3f:c2:31:
95:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:08:65:0D:DE:4D:E9:4C:18:9E:8F:02:68:24:29:07:F9:1D:0E:65
X509v3 Authority Key Identifier:
keyid:72:E4:BA:F9:9A:B8:40:12:91:33:28:5F:E9:AD:7B:83:FD:13:0C:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cuS6-Zq4QBKRMyhf6a17g_0TDDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/jghlDd5N6UwYno8CaCQpB_kdDmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/66b74c-81c1-410e-957d-a8d65dccb96b/1/cuS6-Zq4QBKRMyhf6a17g_0TDDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
69:ff:ab:c4:1a:c0:d1:f0:81:5c:2c:9b:6c:e8:7d:12:2c:a6:
4f:f5:45:10:b2:f9:16:89:4d:c9:37:e9:e1:f6:a9:49:66:6f:
62:06:09:20:03:23:25:db:46:50:65:57:87:43:cd:3f:1c:0a:
f8:18:17:dd:b3:f2:0e:6c:fe:09:c7:29:a8:cf:e0:23:e8:be:
b7:2f:2a:6a:fa:58:01:29:99:5a:db:0b:b9:48:e1:19:51:bf:
11:f7:50:96:4d:d3:f4:2d:92:c7:50:01:0b:d6:f7:ca:42:57:
f7:80:2a:24:66:22:11:63:fa:1b:bb:6d:f6:ea:08:b0:b4:5d:
36:dc:a0:86:02:36:9b:d8:c2:c9:40:7c:99:d3:11:27:ea:1e:
fa:66:88:a9:b4:a3:2d:a5:79:47:53:15:8d:5e:7a:19:4d:ed:
8f:d1:98:85:d6:18:f5:da:ab:6f:29:1a:1b:d2:86:87:12:1c:
d9:f6:da:7d:e6:76:98:5e:bc:db:33:5c:be:5f:9a:09:0b:62:
af:ca:7c:e0:60:5d:9f:27:7d:7e:ac:02:00:fd:7e:43:16:51:
62:e8:e6:17:bf:99:eb:a6:7d:c6:82:39:99:f4:47:e0:e8:f5:
d4:67:66:7a:dc:74:ba:fe:3a:23:88:c3:28:82:02:6f:d7:f1:
77:f1:07:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:21 2024 by rpki-client on console-fra.rpki-client.org