Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/a6076e-1510-488c-b7fb-c94fe4c971d4/1/SR6OhaVIWB6PFYEclstUF54dzGQ.roa
File: SR6OhaVIWB6PFYEclstUF54dzGQ.roa (raw, json)
Hash identifier: U7oqq3sMQwxyxaUPa8HEo9uaGlbeOnWxKeQV07X0Mww=
Subject key identifier: 49:1E:8E:85:A5:48:58:1E:8F:15:81:1C:96:CB:54:17:9E:1D:CC:64
Certificate issuer: /CN=7607ccc309291dc81b19143d4d3fe28d01c6bebd
Certificate serial: 0185710C1F5DE9A6174659558CC1C2E17DFC
Authority key identifier: 76:07:CC:C3:09:29:1D:C8:1B:19:14:3D:4D:3F:E2:8D:01:C6:BE:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgfMwwkpHcgbGRQ9TT_ijQHGvr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/a6076e-1510-488c-b7fb-c94fe4c971d4/1/SR6OhaVIWB6PFYEclstUF54dzGQ.roa
Signing time: Mon 02 Jan 2023 05:54:57 +0000
ROA not before: Mon 02 Jan 2023 05:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210728
IP address blocks: 194.26.103.0/24 maxlen: 24
2a11:2440::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:1f:5d:e9:a6:17:46:59:55:8c:c1:c2:e1:7d:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607ccc309291dc81b19143d4d3fe28d01c6bebd
Validity
Not Before: Jan 2 05:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=491e8e85a548581e8f15811c96cb54179e1dcc64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:45:8f:68:59:a9:83:87:f1:9b:37:c1:5c:c3:
a4:c3:c4:bf:e0:92:48:b2:e0:2c:95:e8:1a:24:f1:
8d:07:23:55:65:d2:21:0c:5a:28:ba:3f:b3:30:61:
69:5d:93:34:d2:80:da:88:fa:34:07:7b:40:13:40:
50:f3:a5:f3:b7:2f:63:b7:26:b5:ea:22:e3:84:c2:
ee:f1:20:84:65:56:df:2b:79:df:64:8a:5b:c6:a3:
af:ae:f0:d2:65:1f:8a:0f:92:8f:50:30:01:d3:cd:
0e:fe:8e:df:a6:27:fb:12:c1:49:4f:a3:f6:f4:71:
d6:11:5c:ba:27:52:63:f2:95:0d:b1:18:ac:d7:f0:
3d:9e:2a:ce:88:c2:36:0a:02:4b:85:c8:29:28:e2:
59:d7:ea:fc:d4:9c:43:ff:3d:da:99:2c:94:bf:15:
dc:88:12:b5:94:65:f9:fa:07:47:cc:94:43:fb:b9:
83:34:5e:4c:b1:09:72:3e:18:dd:1d:38:72:40:16:
70:05:5f:5b:2a:07:db:2b:c8:35:83:8e:3f:62:f1:
59:1b:34:9e:9f:15:cc:80:a7:44:7b:29:21:1b:43:
3f:7c:c3:aa:12:7b:dc:5e:60:6b:84:67:7e:c3:d2:
70:21:de:12:37:85:2b:b8:9e:7d:b4:c0:1e:04:0e:
bb:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1E:8E:85:A5:48:58:1E:8F:15:81:1C:96:CB:54:17:9E:1D:CC:64
X509v3 Authority Key Identifier:
keyid:76:07:CC:C3:09:29:1D:C8:1B:19:14:3D:4D:3F:E2:8D:01:C6:BE:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgfMwwkpHcgbGRQ9TT_ijQHGvr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/a6076e-1510-488c-b7fb-c94fe4c971d4/1/SR6OhaVIWB6PFYEclstUF54dzGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/a6076e-1510-488c-b7fb-c94fe4c971d4/1/dgfMwwkpHcgbGRQ9TT_ijQHGvr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.103.0/24
IPv6:
2a11:2440::/32
Signature Algorithm: sha256WithRSAEncryption
b4:b2:e7:86:af:54:6c:4a:e1:23:8e:20:0f:88:c3:77:d9:df:
f4:09:39:fd:99:d3:ef:6f:bb:b4:d8:42:3f:09:f1:65:f0:d7:
25:07:81:eb:62:9e:c6:af:66:d8:66:5a:c9:e5:70:4a:01:b3:
68:f0:bb:f8:bd:fb:43:a0:3a:86:7b:70:03:97:14:bb:4a:44:
96:e7:39:6b:47:ad:a7:d1:54:c7:89:e1:f4:22:3e:43:b1:e1:
6f:09:96:76:5e:a7:ff:b0:90:35:54:d6:14:08:08:4e:0a:20:
c0:70:15:27:7a:03:a6:0d:4f:48:a0:30:c9:7f:51:b2:42:f4:
2e:9d:a1:d0:39:01:69:0e:bc:a9:84:72:47:09:ff:95:5b:23:
59:5c:1c:07:e7:12:8d:56:6b:38:74:b6:e0:74:84:8d:f9:c0:
e9:38:76:50:81:db:6b:1e:33:ae:c0:3f:c4:00:01:ab:d0:d6:
78:ca:1e:71:d6:8f:b1:f5:e9:71:a5:22:9f:df:9f:c5:ac:c2:
bd:2d:25:be:03:47:5e:23:39:d7:ee:67:52:a5:75:0b:48:4e:
71:ca:df:c3:85:ed:af:d4:c6:f8:b0:9e:38:1b:e8:8a:81:da:
39:fb:68:d3:f6:f8:7b:ae:cc:96:4a:a4:c6:fb:d9:23:da:30:
63:a4:f1:82
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVxDB9d6aYXRllVjMHC4X38MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MDdjY2MzMDkyOTFkYzgxYjE5MTQzZDRkM2ZlMjhkMDFj
NmJlYmQwHhcNMjMwMTAyMDU1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTFlOGU4NWE1NDg1ODFlOGYxNTgxMWM5NmNiNTQxNzllMWRjYzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEWPaFmpg4fxmzfBXMOkw8S/4JJI
suAslegaJPGNByNVZdIhDFoouj+zMGFpXZM00oDaiPo0B3tAE0BQ86Xzty9jtya1
6iLjhMLu8SCEZVbfK3nfZIpbxqOvrvDSZR+KD5KPUDAB080O/o7fpif7EsFJT6P2
9HHWEVy6J1Jj8pUNsRis1/A9nirOiMI2CgJLhcgpKOJZ1+r81JxD/z3amSyUvxXc
iBK1lGX5+gdHzJRD+7mDNF5MsQlyPhjdHThyQBZwBV9bKgfbK8g1g44/YvFZGzSe
nxXMgKdEeykhG0M/fMOqEnvcXmBrhGd+w9JwId4SN4UruJ59tMAeBA67fQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEkejoWlSFgejxWBHJbLVBeeHcxkMB8GA1UdIwQY
MBaAFHYHzMMJKR3IGxkUPU0/4o0Bxr69MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGdmTXd3a3BIY2diR1JROVRUX2lqUUhHdnIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9hNjA3NmUtMTUxMC00ODhjLWI3ZmIt
Yzk0ZmU0Yzk3MWQ0LzEvU1I2T2hhVklXQjZQRllFY2xzdFVGNTRkekdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9hNjA3NmUtMTUxMC00ODhjLWI3ZmItYzk0ZmU0Yzk3MWQ0
LzEvZGdmTXd3a3BIY2diR1JROVRUX2lqUUhHdnIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwhpnMA0E
AgACMAcDBQAqESRAMA0GCSqGSIb3DQEBCwUAA4IBAQC0sueGr1RsSuEjjiAPiMN3
2d/0CTn9mdPvb7u02EI/CfFl8NclB4HrYp7Gr2bYZlrJ5XBKAbNo8Lv4vftDoDqG
e3ADlxS7SkSW5zlrR62n0VTHieH0Ij5DseFvCZZ2Xqf/sJA1VNYUCAhOCiDAcBUn
egOmDU9IoDDJf1GyQvQunaHQOQFpDryphHJHCf+VWyNZXBwH5xKNVms4dLbgdISN
+cDpOHZQgdtrHjOuwD/EAAGr0NZ4yh5x1o+x9elxpSKf35/FrMK9LSW+A0deIznX
7mdSpXULSE5xyt/Dhe2v1Mb4sJ44G+iKgdo5+2jT9vh7rsyWSqTG+9kj2jBjpPGC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:31 2024 by rpki-client on console-fra.rpki-client.org