Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/IJuil_yWcbkomHJAidv4th3maS0.roa
File: IJuil_yWcbkomHJAidv4th3maS0.roa (raw, json)
Hash identifier: XfILobXmNb8tYR3TWta1yxIzUtrf6ewLOct0lnRCp+A=
Subject key identifier: 20:9B:A2:97:FC:96:71:B9:28:98:72:40:89:DB:F8:B6:1D:E6:69:2D
Certificate issuer: /CN=49ea50a1c62082762afda007d6fc8b4bdb05749f
Certificate serial: 01856C6F2BDFBDB6ACDCB1EF78D5CD65C45D
Authority key identifier: 49:EA:50:A1:C6:20:82:76:2A:FD:A0:07:D6:FC:8B:4B:DB:05:74:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SepQocYggnYq_aAH1vyLS9sFdJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/IJuil_yWcbkomHJAidv4th3maS0.roa
Signing time: Sun 01 Jan 2023 08:25:03 +0000
ROA not before: Sun 01 Jan 2023 08:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207796
IP address blocks: 194.50.204.0/24 maxlen: 24
194.50.209.0/24 maxlen: 24
194.50.218.0/24 maxlen: 24
194.50.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:2b:df:bd:b6:ac:dc:b1:ef:78:d5:cd:65:c4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ea50a1c62082762afda007d6fc8b4bdb05749f
Validity
Not Before: Jan 1 08:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=209ba297fc9671b92898724089dbf8b61de6692d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:97:54:f5:3c:23:5f:c6:09:13:e5:71:5a:22:
97:e5:20:33:ec:49:09:f1:3a:f2:ac:36:c3:9d:bb:
50:1d:ff:d4:c2:29:de:a1:be:37:06:92:dc:bd:c6:
26:e8:64:35:8a:d0:5f:70:47:e3:48:ce:eb:60:7d:
ab:c2:44:5b:a1:6c:51:98:a0:2a:f1:61:77:44:bc:
30:a1:88:8b:ba:29:c8:53:34:44:4e:d8:98:88:aa:
f8:87:00:81:67:a0:eb:a3:14:05:54:8b:af:0f:b0:
64:b0:43:cc:1c:e1:53:a8:51:6e:32:b1:4e:c1:86:
39:07:97:c9:e3:a7:0a:d1:00:d6:fc:af:a7:45:ff:
0b:77:e7:99:5f:d5:68:c6:67:93:cc:d8:26:da:93:
fa:8d:dc:85:54:f6:7f:cf:50:94:a7:28:1f:1d:7e:
9f:70:8e:dd:66:68:ca:c6:f9:89:08:bf:35:4a:8d:
23:f7:7d:e1:45:21:f8:ba:65:8b:e4:a4:5d:5a:c6:
98:59:ed:59:35:51:2c:9c:16:10:4c:0d:f5:85:45:
3c:d9:0d:fc:a3:5a:57:4d:50:43:30:cc:31:f5:83:
2e:cd:af:b6:df:41:07:36:df:4e:ac:86:cc:ac:30:
02:15:d9:d6:64:86:3c:87:78:bb:37:2c:05:ba:92:
d7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9B:A2:97:FC:96:71:B9:28:98:72:40:89:DB:F8:B6:1D:E6:69:2D
X509v3 Authority Key Identifier:
keyid:49:EA:50:A1:C6:20:82:76:2A:FD:A0:07:D6:FC:8B:4B:DB:05:74:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SepQocYggnYq_aAH1vyLS9sFdJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/IJuil_yWcbkomHJAidv4th3maS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/48a9eb-18db-4f92-9580-272dab5afa66/1/SepQocYggnYq_aAH1vyLS9sFdJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.204.0/24
194.50.209.0/24
194.50.216.0/24
194.50.218.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:4a:22:ce:cf:d3:6a:c1:0d:75:9f:ce:ca:6c:e0:5c:23:f6:
a6:bc:15:18:ee:8d:4f:40:ee:26:b8:96:0f:37:6c:d9:19:32:
40:24:77:b9:26:39:0f:39:d3:d8:1b:18:69:5e:45:49:3f:9d:
5b:2b:ad:59:fc:41:d2:dc:d4:cd:4d:8a:36:cc:46:fa:f9:65:
d6:90:10:76:e8:37:37:7c:12:18:91:f4:47:01:88:18:a6:b6:
ca:9c:da:f8:f2:56:ea:ab:84:33:18:c4:4f:e5:85:cc:a9:80:
1b:02:f7:ef:07:68:c8:27:21:68:58:00:d1:33:0a:c3:28:73:
96:f0:28:0e:00:e8:7a:ba:67:28:5d:81:69:51:5d:94:4e:b7:
b7:41:75:f4:65:35:3a:9d:ec:cd:4a:2e:b3:9e:44:70:12:56:
a9:ae:af:c3:c3:31:06:29:5f:05:b5:5f:45:bd:a6:57:e9:f9:
a2:1b:e9:6c:e8:70:1b:6d:60:d7:b6:87:22:9c:4d:0a:fd:c6:
ca:b1:e1:a6:9e:24:92:92:87:50:1d:07:d4:c8:2d:69:e2:73:
51:63:45:f6:62:8d:3f:15:fb:51:4d:9c:75:0a:63:37:e3:dd:
e2:8f:d9:78:99:06:ff:56:25:72:ba:48:67:82:13:ea:57:87:
a7:95:06:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:48 2024 by rpki-client on console-fra.rpki-client.org