Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/yqNIJA2zB_OrfyRWzzma4-Zkt2Q.roa
File: yqNIJA2zB_OrfyRWzzma4-Zkt2Q.roa (raw, json)
Hash identifier: gRNtkZXkQH/dp9Eo5TBZynjJc28vIRmR3ZnLNWI3zkY=
Subject key identifier: CA:A3:48:24:0D:B3:07:F3:AB:7F:24:56:CF:39:9A:E3:E6:64:B7:64
Certificate issuer: /CN=64c5fd1dc0c457d9ec113d23bd4935c723e9ecf4
Certificate serial: 01856E7907809D68CA5AA37139AD5F661134
Authority key identifier: 64:C5:FD:1D:C0:C4:57:D9:EC:11:3D:23:BD:49:35:C7:23:E9:EC:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZMX9HcDEV9nsET0jvUk1xyPp7PQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/yqNIJA2zB_OrfyRWzzma4-Zkt2Q.roa
Signing time: Sun 01 Jan 2023 17:55:03 +0000
ROA not before: Sun 01 Jan 2023 17:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211465
IP address blocks: 194.42.126.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:79:07:80:9d:68:ca:5a:a3:71:39:ad:5f:66:11:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64c5fd1dc0c457d9ec113d23bd4935c723e9ecf4
Validity
Not Before: Jan 1 17:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caa348240db307f3ab7f2456cf399ae3e664b764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:dd:fb:8d:0a:c6:14:4b:6f:ed:73:e9:b2:64:
68:a1:35:1c:fa:33:86:90:2b:d7:25:5e:26:82:22:
99:62:f5:d5:be:8b:7d:dc:d6:29:35:fe:3b:5c:6a:
6f:84:fa:87:bd:3a:25:7c:66:16:ff:51:06:fd:e7:
5c:9c:16:42:43:ec:d7:ab:f6:35:5a:82:f8:99:45:
1f:63:bc:df:ef:9e:60:a2:d9:ec:7b:14:89:82:2f:
27:98:88:ed:c5:4b:13:8a:72:09:de:a9:71:d4:e9:
4b:93:8c:93:2f:8f:22:47:0a:4c:46:b6:31:fd:f6:
45:ac:19:17:5b:7b:13:78:60:90:0d:cd:08:57:0e:
30:11:6d:6f:a1:bb:dc:ca:4c:e9:a8:6a:29:c0:98:
34:f6:4d:24:78:06:ea:e5:12:de:cd:ae:1a:5d:3b:
4e:3b:95:14:2a:2f:32:a3:e8:53:ea:fb:63:6c:c2:
50:df:4f:1a:bf:3e:25:14:d4:d0:1b:5f:69:5d:eb:
c2:83:ee:37:78:2b:c4:dd:13:f8:55:18:8f:bd:53:
e9:2c:ac:1f:1f:41:49:f5:ba:ea:b4:50:5b:50:c9:
94:ec:c4:e7:5c:ce:fe:52:9c:2d:f9:e7:27:e9:5d:
61:ed:1b:a9:8e:e7:2a:00:60:16:81:56:70:b9:ac:
76:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A3:48:24:0D:B3:07:F3:AB:7F:24:56:CF:39:9A:E3:E6:64:B7:64
X509v3 Authority Key Identifier:
keyid:64:C5:FD:1D:C0:C4:57:D9:EC:11:3D:23:BD:49:35:C7:23:E9:EC:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZMX9HcDEV9nsET0jvUk1xyPp7PQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/yqNIJA2zB_OrfyRWzzma4-Zkt2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/ZMX9HcDEV9nsET0jvUk1xyPp7PQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.42.126.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:98:bc:8a:ce:f5:c1:75:cb:1a:8c:82:b2:5a:d2:c1:e4:10:
51:68:ac:f0:08:85:4e:ba:fe:ec:41:54:1d:67:0e:f7:c2:e9:
49:55:a9:d5:f7:58:eb:de:07:89:01:ae:de:e8:f1:6b:cf:55:
3c:6e:ab:c1:ad:6a:0d:bb:89:ff:dd:1f:6f:7f:dd:35:e6:1e:
dd:d1:87:ef:2f:ab:08:b0:c5:5f:65:a8:c0:ef:86:aa:a1:97:
1f:cd:59:4b:8c:32:f7:9b:d6:6d:5b:e5:94:a4:0e:71:5d:1e:
70:94:ef:e1:6d:3a:23:c2:8f:76:dc:8f:c8:47:a0:7c:cb:a3:
d1:79:85:f5:02:1e:9c:63:10:43:cb:9f:83:2b:de:36:eb:17:
f9:bf:07:be:07:fd:53:a2:52:03:d2:b7:a2:71:41:2d:b9:67:
88:4d:af:ea:1e:62:06:9d:bc:fe:8c:e0:11:31:32:b3:5d:3d:
51:04:aa:bc:fe:68:b9:b0:12:fc:cb:d3:2b:27:a0:dc:fa:18:
15:c1:38:10:10:59:ea:a2:fa:3f:4a:40:84:09:90:fd:bc:ae:
c6:73:4b:8b:0e:a0:01:f6:78:9b:bb:da:a5:a3:4e:70:2f:46:
76:e3:ce:f7:c6:96:b4:b8:d5:65:3f:aa:db:83:5a:bb:d1:72:
42:4b:28:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:09 2024 by rpki-client on console-fra.rpki-client.org