Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/1-iKiVBXJxByuP3EIqqcbZxyEWDY.roa
File: 1-iKiVBXJxByuP3EIqqcbZxyEWDY.roa (raw, json)
Hash identifier: Mx+TouokzyBjKlH5ZZ/VKoXJAM1Jw7vu7gniVrMtzsM=
Subject key identifier: FA:22:A2:54:15:C9:C4:1C:AE:3F:71:08:AA:A7:1B:67:1C:84:58:36
Certificate issuer: /CN=6b7d1f1e877c12798274e01334554f899f38eac1
Certificate serial: 018A8ED2BD2B5124E30B37D89D37285EC5B9
Authority key identifier: 6B:7D:1F:1E:87:7C:12:79:82:74:E0:13:34:55:4F:89:9F:38:EA:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a30fHod8EnmCdOATNFVPiZ846sE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/1-iKiVBXJxByuP3EIqqcbZxyEWDY.roa
Signing time: Wed 13 Sep 2023 13:54:50 +0000
ROA not before: Wed 13 Sep 2023 13:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53856
IP address blocks: 194.145.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8e:d2:bd:2b:51:24:e3:0b:37:d8:9d:37:28:5e:c5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7d1f1e877c12798274e01334554f899f38eac1
Validity
Not Before: Sep 13 13:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa22a25415c9c41cae3f7108aaa71b671c845836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c6:ea:0f:4e:d6:b1:eb:e7:57:f2:d1:2e:1b:
65:ed:5a:70:5d:2b:e8:a6:10:b9:47:68:43:e0:f8:
98:1d:17:1b:5f:8f:da:63:50:ac:7e:69:9d:25:c6:
bd:42:0a:61:bd:f2:57:8c:78:f4:96:90:03:57:d7:
00:46:96:1b:44:eb:bb:4f:53:65:d6:8a:61:e2:03:
a6:79:2a:03:c6:da:70:68:e6:99:fc:76:fc:c8:cc:
ac:24:69:30:96:9b:c5:e4:94:7f:2a:be:77:cd:59:
55:b2:28:fe:83:62:25:25:d2:3d:dc:f5:0e:81:b0:
13:ec:9c:75:62:0b:c3:fa:de:41:ee:32:16:7a:d0:
e5:72:7a:a5:c1:6f:cd:d9:13:94:4c:dc:df:82:01:
60:87:bf:b9:ac:dc:2a:b4:62:fd:99:5c:8e:bb:ec:
3a:1c:bd:5e:31:70:56:4e:c9:9d:b1:65:2b:c7:ff:
9d:54:54:c0:35:e6:bb:41:24:08:9d:e6:c0:8d:d8:
39:bd:d6:ae:e6:44:0d:16:2c:af:53:d0:e8:17:bb:
a4:69:b6:aa:3f:24:59:cb:d1:51:fb:d4:92:f7:f4:
4f:3e:af:ab:09:ce:ea:13:e8:8a:e3:31:67:bd:54:
e9:c9:65:38:e8:cb:9c:1e:d5:3e:c5:05:f4:69:00:
20:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:22:A2:54:15:C9:C4:1C:AE:3F:71:08:AA:A7:1B:67:1C:84:58:36
X509v3 Authority Key Identifier:
keyid:6B:7D:1F:1E:87:7C:12:79:82:74:E0:13:34:55:4F:89:9F:38:EA:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a30fHod8EnmCdOATNFVPiZ846sE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/1-iKiVBXJxByuP3EIqqcbZxyEWDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/a13c40-dc67-423c-979e-2fad9a2fc3ef/1/a30fHod8EnmCdOATNFVPiZ846sE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.117.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f1:e6:71:4f:cd:3a:70:50:14:03:df:45:3c:2e:41:01:55:
99:bd:ce:32:75:8e:27:e2:6c:9b:2e:31:17:40:f6:0b:aa:0b:
6b:35:83:b9:92:4d:a0:2d:1a:a9:48:5c:83:88:91:fb:55:b3:
eb:a6:14:92:2d:98:1a:f9:fa:2a:58:13:6d:21:64:15:94:74:
2b:c5:a8:17:c9:8d:9f:38:0c:39:b7:1e:80:3e:4a:b0:46:e3:
94:d1:f2:b1:84:44:6d:56:21:36:a7:d8:60:15:ec:03:51:c5:
9c:9f:40:6a:0e:3c:17:f0:7e:bc:7f:5a:16:fa:d8:e7:16:1d:
11:15:22:2a:41:af:41:88:a7:8c:85:35:2b:cb:1a:db:c4:70:
d2:1e:1a:46:b0:85:50:db:76:53:67:c1:bd:dc:db:12:e1:c4:
ac:62:b4:94:7d:97:59:08:d0:20:0c:ec:02:f5:35:f0:5f:1c:
37:d7:c9:c8:0a:b1:51:8d:71:7f:ea:16:78:35:7e:a8:1c:78:
fd:93:34:27:3f:0f:a6:4d:4c:f4:27:6b:99:24:a6:c5:63:42:
86:10:76:ad:32:81:05:c0:0f:b9:ce:e1:44:2b:0f:e7:e7:7e:
53:d3:a3:4b:23:ec:10:6f:bb:fc:01:66:da:f9:ca:a2:0b:40:
c5:3f:e6:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:19 2024 by rpki-client on console-fra.rpki-client.org