Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/bNw-xF7VrgFSZQRXMYVyuLRveVI.roa
File: bNw-xF7VrgFSZQRXMYVyuLRveVI.roa (raw, json)
Hash identifier: NOmaFF82shM5alM6OTDw5lRSRQ9IeGdYSYq5fqfUWfs=
Subject key identifier: 6C:DC:3E:C4:5E:D5:AE:01:52:65:04:57:31:85:72:B8:B4:6F:79:52
Certificate issuer: /CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Certificate serial: 018570F0A9A0D0CF191AD3F8384D351862C5
Authority key identifier: 3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/bNw-xF7VrgFSZQRXMYVyuLRveVI.roa
Signing time: Mon 02 Jan 2023 05:24:58 +0000
ROA not before: Mon 02 Jan 2023 05:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8298
IP address blocks: 194.126.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:a9:a0:d0:cf:19:1a:d3:f8:38:4d:35:18:62:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae145fe3b79b2bf68aadbe007def6d72aef2ac3
Validity
Not Before: Jan 2 05:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cdc3ec45ed5ae0152650457318572b8b46f7952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3b:49:9f:3a:1e:8c:6d:b1:21:6f:e2:28:9b:
cc:ca:75:bd:10:37:ab:59:1a:a7:70:83:0f:63:36:
59:b1:be:54:55:0c:2b:ef:71:9d:35:f8:60:ae:d6:
00:dd:7c:eb:0f:28:d7:c0:c7:59:ae:f4:cd:05:0c:
ae:ea:0b:42:ef:a1:23:35:da:97:40:a1:99:d0:75:
76:00:81:90:3e:1b:13:ca:38:14:63:85:f6:15:ad:
d4:cc:7b:fa:5a:71:c4:ce:72:1d:51:45:a8:7f:b9:
b7:7a:55:62:95:b4:55:1f:9c:89:3c:3e:a4:9b:51:
fb:2c:ab:33:2c:7d:35:32:96:ff:f9:1c:64:e7:8f:
14:f3:e6:d8:c7:d9:48:d1:69:dc:89:a6:92:d9:ce:
d2:93:3a:bb:f9:64:9d:c9:63:df:7f:2c:88:72:17:
8a:63:61:c7:74:29:1a:38:a2:68:c7:ad:b2:87:b9:
fc:38:8b:b6:0c:f4:70:0e:04:26:11:e2:72:69:cd:
b0:a0:a1:ae:aa:52:aa:12:62:b9:4f:21:8f:7c:d7:
ef:87:d0:f2:d8:f0:cf:0d:9c:8c:ec:03:8b:88:85:
ad:bc:00:21:17:75:62:e5:96:d3:fe:5b:0d:f6:43:
00:46:0e:9c:c3:5c:39:f2:16:25:e3:34:6d:9b:79:
a7:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DC:3E:C4:5E:D5:AE:01:52:65:04:57:31:85:72:B8:B4:6F:79:52
X509v3 Authority Key Identifier:
keyid:3A:E1:45:FE:3B:79:B2:BF:68:AA:DB:E0:07:DE:F6:D7:2A:EF:2A:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuFF_jt5sr9oqtvgB9721yrvKsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/bNw-xF7VrgFSZQRXMYVyuLRveVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/82f0f1-2147-49fd-a4d6-b7b574eedc33/1/OuFF_jt5sr9oqtvgB9721yrvKsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.235.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:99:e0:56:60:65:fd:8f:d0:ce:50:39:d8:a7:20:0d:4c:62:
f1:73:91:91:98:27:e1:26:6d:46:aa:6d:3a:44:e7:2b:bf:df:
11:f0:44:82:2d:46:63:b8:a4:f2:db:35:14:b5:7d:aa:db:fd:
9f:18:5b:bb:27:58:f1:a1:aa:1a:27:ec:4c:b2:91:d7:26:f6:
9c:58:f1:06:35:68:71:0f:ea:17:37:c2:5b:d5:32:d8:c9:ef:
a6:a2:fb:19:7a:cf:4d:1d:3f:59:32:ba:fa:21:da:1f:90:6f:
c3:10:2d:70:6e:49:f5:f0:ab:eb:c0:9f:f0:86:49:00:ee:20:
3b:0d:fa:cc:cc:7e:39:c6:16:cb:ef:34:26:76:ea:55:28:63:
02:58:64:f6:18:50:1a:6a:46:82:4e:2f:0a:b1:db:0b:26:a5:
60:50:79:f8:18:8a:7b:57:d5:0a:72:5a:4e:06:a4:38:87:3a:
b9:6f:b7:2b:6b:b8:a3:78:fa:81:f1:04:ba:92:67:c3:5f:7c:
89:64:b3:2c:dc:c9:ca:7d:d4:6e:da:95:a8:2d:a8:6c:5b:0d:
60:72:4b:57:a2:dc:6f:2b:c1:a0:33:aa:8c:60:f8:33:4e:83:
21:92:a2:da:b8:27:ce:fd:c8:18:ad:92:ff:6a:09:90:d4:ce:
25:4f:82:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:40 2024 by rpki-client on console-fra.rpki-client.org