Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/yM4Yn3QdRjDPQIlNBHMSDTUKC58.roa
File: yM4Yn3QdRjDPQIlNBHMSDTUKC58.roa (raw, json)
Hash identifier: g7yYdnpSx++kpYCaFiL5drX/1flf8Y+1jHpK44u4mG0=
Subject key identifier: C8:CE:18:9F:74:1D:46:30:CF:40:89:4D:04:73:12:0D:35:0A:0B:9F
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01856F6FF7A4B7E1C7B853FD05F031A6EEF0
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/yM4Yn3QdRjDPQIlNBHMSDTUKC58.roa
Signing time: Sun 01 Jan 2023 22:24:46 +0000
ROA not before: Sun 01 Jan 2023 22:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56703
IP address blocks: 194.26.117.0/24 maxlen: 24
31.40.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:f7:a4:b7:e1:c7:b8:53:fd:05:f0:31:a6:ee:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Jan 1 22:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8ce189f741d4630cf40894d0473120d350a0b9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:24:de:60:5e:d7:b3:15:6b:24:b4:a6:97:22:
5e:cf:3b:ce:19:fa:f1:62:06:20:98:4b:10:2f:ee:
93:b6:c3:85:12:c9:f5:bd:5c:25:98:65:ff:2b:5e:
01:53:29:b8:f9:b8:77:41:0a:0c:fb:d1:e9:df:ba:
3c:d0:5a:a0:d7:29:6a:7d:4e:d3:b0:be:eb:80:79:
63:2a:4e:4d:88:a0:77:42:6e:72:79:3c:83:ec:25:
6f:62:25:80:5a:4d:09:35:c4:69:3b:26:2c:41:8e:
49:7c:91:80:65:47:08:7e:c6:36:98:bf:ab:5e:c7:
9d:23:e5:8c:b9:50:f6:1d:60:42:16:06:22:12:0d:
3a:a8:06:58:1a:33:80:56:b1:10:e4:67:4f:ad:0d:
f8:b7:94:e1:33:a0:4a:6e:27:43:bb:b1:f3:96:31:
4c:77:0d:3a:f2:93:20:5a:f5:17:d5:81:4e:e5:79:
3e:23:d6:ad:f1:e5:90:17:ab:a0:97:16:d6:86:48:
01:a5:e6:82:ea:93:92:7e:42:d5:eb:aa:71:47:d6:
4c:47:b0:b3:a0:ec:69:63:17:57:3b:08:a4:2c:4d:
68:d2:e4:b4:b5:54:81:a2:c6:4d:2a:65:7f:80:40:
28:fe:71:a4:5c:92:48:18:b4:1e:a3:fd:41:5d:72:
8c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:CE:18:9F:74:1D:46:30:CF:40:89:4D:04:73:12:0D:35:0A:0B:9F
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/yM4Yn3QdRjDPQIlNBHMSDTUKC58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.0.0/23
194.26.117.0/24
Signature Algorithm: sha256WithRSAEncryption
03:55:2b:e3:5a:e4:c5:97:86:9b:49:c4:23:32:d0:a6:77:93:
35:93:2d:5d:c3:c9:9f:ce:83:07:0b:88:88:00:5d:64:fb:22:
3f:a7:72:a8:bc:2d:89:93:44:e4:9d:13:9b:55:d6:6d:22:6d:
45:01:b4:6d:fe:f6:5e:4d:bf:75:6a:9b:ed:7f:c6:2d:ae:57:
be:8b:50:13:70:c2:4a:12:24:10:e1:80:7f:e3:bf:91:ff:6d:
b7:e2:ab:f8:83:0c:e3:b9:7e:09:cf:fd:b1:03:cc:37:ae:16:
6f:9b:49:f5:3f:34:44:8e:38:62:2d:37:27:04:78:52:8e:90:
46:51:4f:81:40:d6:60:5e:00:28:9a:4e:ee:fc:b1:23:7a:61:
4d:89:9c:ac:9b:ea:b2:b2:ab:9c:04:cf:cf:d4:79:55:34:e9:
2c:e8:01:10:13:36:40:18:67:18:f0:ac:c8:31:4e:d0:b9:e0:
54:29:fb:85:34:3c:76:8c:c9:02:00:2b:87:fb:be:da:1a:43:
53:3d:f5:c5:89:8a:45:a1:79:6d:79:36:84:1a:27:d9:52:ea:
b7:21:32:55:c2:fa:8f:1e:f3:c6:ca:b1:40:74:ea:1f:49:07:
3a:8e:10:e4:45:43:40:29:04:89:7b:26:1e:4a:1b:6f:ea:82:
ae:68:94:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org