Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/aNWQ_FeLe9iYeKOkbxk35z7tkx8.roa
File: aNWQ_FeLe9iYeKOkbxk35z7tkx8.roa (raw, json)
Hash identifier: jCEZ1R1iHEk7iU6tO8bjIDWfBS22rdwEH2nmQImg7S4=
Subject key identifier: 68:D5:90:FC:57:8B:7B:D8:98:78:A3:A4:6F:19:37:E7:3E:ED:93:1F
Certificate issuer: /CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Certificate serial: 0193083F8784C3450B740A10A97ACC7953D9
Authority key identifier: 11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/aNWQ_FeLe9iYeKOkbxk35z7tkx8.roa
Signing time: Thu 07 Nov 2024 20:10:01 +0000
ROA not before: Thu 07 Nov 2024 20:10:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213911
IP address blocks: 194.59.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Nov 2024 15:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:08:3f:87:84:c3:45:0b:74:0a:10:a9:7a:cc:79:53:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=117f9d55826b42486dfc84d35c1a63a5ce87507c
Validity
Not Before: Nov 7 20:10:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68d590fc578b7bd89878a3a46f1937e73eed931f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:ee:dd:20:ea:ea:95:45:2d:1f:38:21:31:
16:a0:6b:4a:1e:4b:73:3b:86:ff:53:82:a6:8e:3d:
8b:a6:7f:84:71:3e:08:1a:34:d8:8c:6a:31:6d:be:
dd:7c:40:24:5b:16:1e:41:7f:a4:c3:55:68:2a:a7:
03:36:de:09:22:79:ac:2c:7b:c7:e1:a5:d0:f8:10:
1f:6b:c2:5a:f9:cd:14:53:e4:f5:c6:0e:d2:c6:e8:
df:d4:14:fe:1e:a5:53:60:4d:27:bb:cf:b7:47:dc:
e2:4c:9c:90:11:d9:a9:5c:04:f4:81:63:ea:72:27:
b1:51:4c:5a:7b:d8:bc:17:40:b5:46:3c:97:6a:54:
ab:e1:d1:5c:1e:7e:6c:b2:3a:a2:13:a3:60:d0:a6:
86:0d:d4:5b:37:15:5c:e8:d5:e9:92:85:02:79:c1:
c2:72:80:ab:49:88:b7:1a:2d:b9:fe:7c:c2:d6:de:
0c:d3:55:1e:ce:63:1f:08:3f:23:ef:3c:e3:37:91:
b3:0e:03:cc:25:7d:75:4d:d1:48:ee:91:d3:a4:0c:
df:e3:72:df:2a:4a:4a:21:cd:64:33:0a:29:b9:fd:
38:90:ec:6b:4a:b1:c3:07:bf:74:0c:f6:97:2a:69:
59:ba:13:d5:ca:bc:f1:dc:f3:c0:6c:cd:48:5d:3a:
0a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D5:90:FC:57:8B:7B:D8:98:78:A3:A4:6F:19:37:E7:3E:ED:93:1F
X509v3 Authority Key Identifier:
keyid:11:7F:9D:55:82:6B:42:48:6D:FC:84:D3:5C:1A:63:A5:CE:87:50:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EX-dVYJrQkht_ITTXBpjpc6HUHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/aNWQ_FeLe9iYeKOkbxk35z7tkx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/eafc41-c358-4b51-9b1c-3fbbba9249cd/1/EX-dVYJrQkht_ITTXBpjpc6HUHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.186.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:76:b3:d4:22:3a:1b:cd:48:59:96:4d:4d:bb:f8:2a:2a:c0:
30:50:ec:a3:78:e1:38:c6:df:f5:ed:da:16:71:e3:2f:bc:76:
9e:1b:c3:85:54:44:b1:e0:e9:cb:b6:92:76:be:80:5a:9b:cd:
71:1c:e4:7e:8c:1a:5e:6a:30:06:9f:93:45:2d:df:b8:0c:8b:
f4:04:76:e1:b7:87:2b:9f:7e:3a:7c:9a:df:c9:bd:e9:f7:ad:
03:9b:2f:91:3d:df:93:61:17:e4:9d:e6:ce:d8:6d:ff:a9:1f:
b9:7b:1e:b0:7b:d7:a3:8f:dc:cf:9e:9f:d2:1b:a4:c0:bd:d5:
5a:c3:fe:5e:08:9e:b5:03:cb:8d:36:b3:5c:04:65:a9:6f:02:
ff:c9:d9:ae:36:b6:b3:a4:d1:73:7c:65:2f:93:25:e1:8a:ad:
52:26:99:a3:db:73:a4:73:26:fa:2a:5f:1b:bd:ee:3d:79:66:
85:0a:05:ba:58:81:0d:ec:b6:4c:24:bf:b5:5f:00:51:30:d0:
38:48:19:dd:eb:e7:03:67:6c:52:e8:ca:d1:9b:5e:af:4b:2d:
4d:ff:e6:ce:09:41:c8:f7:f4:f9:fd:67:cc:da:74:03:ee:eb:
5e:e9:c0:04:22:35:c9:aa:f0:82:7e:07:36:d0:63:a6:ae:b4:
ae:bd:c9:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 19:43:13 2024 by rpki-client on console-fra.rpki-client.org