Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/8W_eAlbeJ7C12MQZ8KKohmtWnH8.roa
File: 8W_eAlbeJ7C12MQZ8KKohmtWnH8.roa (raw, json)
Hash identifier: Un3w2mLLAELFppU9W2V9qdc3VKQ+sF1yKVnBKD9+MyQ=
Subject key identifier: F1:6F:DE:02:56:DE:27:B0:B5:D8:C4:19:F0:A2:A8:86:6B:56:9C:7F
Certificate issuer: /CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Certificate serial: 0192F8B5901D931D05FD0A5FE74A76BB8154
Authority key identifier: 13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/8W_eAlbeJ7C12MQZ8KKohmtWnH8.roa
Signing time: Mon 04 Nov 2024 19:45:01 +0000
ROA not before: Mon 04 Nov 2024 19:45:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 194.150.220.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Nov 2024 08:48:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f8:b5:90:1d:93:1d:05:fd:0a:5f:e7:4a:76:bb:81:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Validity
Not Before: Nov 4 19:45:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f16fde0256de27b0b5d8c419f0a2a8866b569c7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e0:92:21:0c:09:b0:98:e6:3f:63:97:8f:cf:
c8:1b:8a:ae:6a:5e:36:76:d2:89:69:1b:9d:82:66:
a2:cd:f8:0a:6c:df:a3:a4:8f:98:d8:a8:0c:bd:0d:
9d:27:b7:8b:79:ca:b0:60:cf:88:aa:f5:bd:47:fa:
fa:81:32:42:97:32:bd:78:33:75:c4:ae:49:ec:9b:
43:80:3c:7d:5a:16:32:45:e3:03:d9:e4:e9:9a:c1:
87:f0:92:43:c1:d1:eb:21:70:ab:17:07:68:45:cb:
4b:7c:cd:3f:47:f9:36:63:85:e0:e2:ec:65:21:d9:
bc:3f:e9:aa:32:ca:6b:fc:e2:27:98:fe:e4:95:73:
ce:b5:b9:74:85:de:9d:a6:bf:16:6e:65:0e:1a:aa:
dc:26:37:1a:af:13:a5:db:bd:e1:71:57:1a:31:c2:
f9:9c:d4:12:29:bd:b2:03:d2:7a:14:d4:38:dc:7b:
05:8d:79:ed:34:fb:6a:01:d9:00:8a:3e:9e:ce:a7:
21:72:5c:c1:8f:74:38:a6:3a:bb:2e:f9:00:5a:15:
da:c1:d8:d9:e0:30:85:f9:d5:e0:20:1b:35:bd:79:
8b:53:41:0d:92:d4:5a:a5:c5:76:4f:9f:0e:b0:ba:
33:f4:ab:c7:f4:d7:9d:54:c7:cb:93:fb:e4:18:72:
e7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6F:DE:02:56:DE:27:B0:B5:D8:C4:19:F0:A2:A8:86:6B:56:9C:7F
X509v3 Authority Key Identifier:
keyid:13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/8W_eAlbeJ7C12MQZ8KKohmtWnH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/E2a5YKbx8EQ58JGG-ez1ManOJkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.220.0/23
Signature Algorithm: sha256WithRSAEncryption
15:1d:5c:75:13:4d:38:57:57:ec:69:79:6e:67:b4:83:1c:cb:
4a:3e:38:66:68:a0:a3:c1:68:98:ea:77:99:c3:b6:15:63:b4:
9e:0e:57:fc:56:1d:e2:48:4d:0f:d8:d2:9f:13:4c:41:94:16:
a4:65:ae:f2:ab:b7:9c:4b:cf:63:d6:d8:1f:32:ed:16:a3:e9:
85:7a:22:74:0d:58:da:79:86:d8:17:b5:18:01:11:42:20:a1:
9b:fe:e9:c4:e7:1d:b4:d8:09:66:86:bd:66:0c:8d:96:be:d6:
63:93:74:61:6b:47:0d:ff:83:9a:4a:7f:37:f5:8e:d8:8e:a2:
10:0e:b6:e2:c8:66:52:99:bd:bd:0d:b6:47:27:f2:ee:df:78:
47:7c:39:21:8b:7b:ff:aa:8e:7d:8c:75:c6:60:86:5d:f1:28:
51:7c:f1:78:a2:e7:a2:09:e8:ff:cb:64:47:64:a4:13:86:e2:
03:14:87:6f:6d:0b:f8:56:c5:f9:d2:27:90:d7:fc:0a:c4:4f:
db:06:de:02:2f:c7:f5:11:4f:3c:90:c1:aa:a5:49:46:ad:5a:
b1:e1:a6:f9:8d:db:41:b7:7b:6a:ad:40:d4:9f:b1:ea:c9:a7:
2a:d0:dd:5a:f5:18:e4:62:e2:dd:8e:04:fb:ff:89:2f:46:16:
c9:fc:96:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:15 2025 by rpki-client