Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/feLdYDXgDcdrRKS2myY1fPndKTg.roa
File: feLdYDXgDcdrRKS2myY1fPndKTg.roa (raw, json)
Hash identifier: WooeDox7ddjN/WeEXlop3UoJ8ifLbuXGLyJK2SUDg3w=
Subject key identifier: 7D:E2:DD:60:35:E0:0D:C7:6B:44:A4:B6:9B:26:35:7C:F9:DD:29:38
Certificate issuer: /CN=6f930698733bad33c081719c7b68bd19723a5a77
Certificate serial: 018CC2DB157D9B8DE89E0C658B181DA66D2E
Authority key identifier: 6F:93:06:98:73:3B:AD:33:C0:81:71:9C:7B:68:BD:19:72:3A:5A:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b5MGmHM7rTPAgXGce2i9GXI6Wnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/feLdYDXgDcdrRKS2myY1fPndKTg.roa
Signing time: Mon 01 Jan 2024 02:29:46 +0000
ROA not before: Mon 01 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207928
IP address blocks: 194.153.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Jan 2024 12:58:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:15:7d:9b:8d:e8:9e:0c:65:8b:18:1d:a6:6d:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f930698733bad33c081719c7b68bd19723a5a77
Validity
Not Before: Jan 1 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7de2dd6035e00dc76b44a4b69b26357cf9dd2938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:af:c5:ba:f0:4d:e7:6d:de:e7:7b:31:d8:53:
85:f9:b3:00:4a:46:d2:96:22:95:36:4f:52:0e:59:
bc:ff:df:60:cb:d8:e1:18:cc:b2:a9:78:cb:4d:9b:
d1:ea:67:9b:12:fc:06:81:8c:f6:5d:c3:b3:25:40:
e0:ba:d2:90:a1:c7:18:95:3f:4d:29:0c:36:f4:ef:
dd:d0:e4:7e:12:7a:ac:63:63:27:a2:f6:a1:0f:a5:
ad:24:35:a5:97:b0:91:98:77:9d:13:67:6b:77:91:
4f:53:62:df:e4:93:31:b6:ba:7c:83:db:3d:ac:6f:
7c:45:8b:b3:df:b8:21:da:f6:f0:02:37:f5:f0:6d:
49:f1:57:16:70:6e:bb:5b:65:85:62:9d:de:94:d9:
6e:71:a5:0c:41:24:51:93:e7:7b:bb:f5:ec:24:39:
54:1d:25:f5:92:2b:e7:a8:1f:b3:ea:7a:4a:e6:3c:
96:c5:b5:17:15:d2:66:2e:27:4a:5c:fe:9c:3f:40:
cd:07:7c:6d:20:19:5e:a5:65:bb:9c:3d:77:81:2b:
e1:d1:69:5f:26:93:3c:b3:c3:ae:b2:28:73:f7:25:
d0:62:2b:61:37:40:44:ce:10:76:35:3f:0f:73:32:
9e:c7:1a:8e:13:9b:70:e6:7d:9a:e4:71:29:0e:bf:
94:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:DD:60:35:E0:0D:C7:6B:44:A4:B6:9B:26:35:7C:F9:DD:29:38
X509v3 Authority Key Identifier:
keyid:6F:93:06:98:73:3B:AD:33:C0:81:71:9C:7B:68:BD:19:72:3A:5A:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5MGmHM7rTPAgXGce2i9GXI6Wnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/feLdYDXgDcdrRKS2myY1fPndKTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5e61f7-8363-4acc-b8a4-fe103fd3857c/1/b5MGmHM7rTPAgXGce2i9GXI6Wnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.103.0/24
Signature Algorithm: sha256WithRSAEncryption
77:74:43:80:eb:63:35:b9:7b:b7:f2:be:f8:c8:1a:35:12:d8:
db:d6:a7:ad:ad:89:1a:3f:91:66:6a:83:be:53:4b:60:6e:ab:
84:86:b8:27:c4:55:6c:79:48:c1:79:cd:dd:9d:08:d7:4d:59:
39:7f:8e:27:ac:fb:8a:b6:86:57:c4:c3:d0:80:03:58:be:bf:
74:2f:ad:4a:cb:de:b1:da:9c:5e:cb:dd:2b:d6:63:84:69:d4:
bb:e7:cd:22:0e:bc:b5:90:bc:25:9b:14:f5:b0:d6:aa:7a:ae:
0f:3b:df:64:d5:b9:a5:f4:45:c3:28:e8:e7:90:35:46:15:2e:
52:ec:e9:ec:1a:9b:7a:30:fc:c8:5b:4a:f6:f3:fd:48:82:8e:
19:88:cb:89:64:aa:4f:0b:46:c4:47:aa:69:68:8d:53:97:14:
6b:b9:0f:7d:d1:da:9b:1b:9f:ee:d3:3b:da:16:b8:f5:a9:54:
d5:f0:3f:1a:9c:2a:61:48:b1:f2:ff:03:f1:fe:90:62:16:2d:
ea:f3:d6:6c:8a:dc:01:cb:48:d8:e1:e1:10:c2:a7:88:f0:91:
ed:1a:b3:ea:10:2a:5c:e7:81:11:be:3c:46:0c:31:71:29:79:
ec:4b:49:b7:5b:6b:0b:1c:a3:93:ec:1f:aa:75:cb:57:bf:e6:
de:07:73:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:19 2024 by rpki-client on console-ams.rpki-client.org