Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/Un7xbe1H3XLC842J5hxAG1PHOtQ.roa
File: Un7xbe1H3XLC842J5hxAG1PHOtQ.roa (raw, json)
Hash identifier: PhRVSWdKWjTVP3xtwbrnvCSGmyeJABHdiTKkr+8bujQ=
Subject key identifier: 52:7E:F1:6D:ED:47:DD:72:C2:F3:8D:89:E6:1C:40:1B:53:C7:3A:D4
Certificate issuer: /CN=b8943754e92345a8bbab3db2bc36d618e5ecc0e8
Certificate serial: 01857227EE4C571C21AAB396A6B48DE40208
Authority key identifier: B8:94:37:54:E9:23:45:A8:BB:AB:3D:B2:BC:36:D6:18:E5:EC:C0:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uJQ3VOkjRai7qz2yvDbWGOXswOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/Un7xbe1H3XLC842J5hxAG1PHOtQ.roa
Signing time: Mon 02 Jan 2023 11:04:57 +0000
ROA not before: Mon 02 Jan 2023 11:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 194.156.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:ee:4c:57:1c:21:aa:b3:96:a6:b4:8d:e4:02:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8943754e92345a8bbab3db2bc36d618e5ecc0e8
Validity
Not Before: Jan 2 11:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=527ef16ded47dd72c2f38d89e61c401b53c73ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:9d:78:bc:a0:a5:36:6b:a7:9f:34:de:19:bd:
09:46:0c:27:25:23:e8:5d:cd:c2:f5:94:d0:47:76:
52:ec:95:9d:c7:75:8e:65:e1:cb:7d:d5:66:55:7c:
87:8e:66:7b:df:b8:fa:4b:a4:2c:c6:47:81:92:aa:
b9:20:60:ab:0c:7c:75:d7:43:5f:e0:12:8d:ce:09:
95:6f:79:34:35:b9:f2:3b:a8:c1:f1:63:d2:5e:87:
8f:91:ba:e9:af:18:5f:ed:ec:40:6a:e0:32:98:cd:
3f:c7:fe:2e:67:98:aa:b9:78:c0:ef:1a:3e:5f:f8:
e8:d4:40:91:dc:90:96:bd:c0:fc:a6:02:b3:03:dd:
57:76:be:64:53:8e:52:ad:37:eb:53:cf:76:dc:a6:
0c:4e:72:2a:34:78:47:8c:de:a0:59:07:ee:c0:c1:
67:e4:03:ae:9c:e8:9f:76:9b:1f:f2:01:78:be:c5:
f1:a6:c5:af:de:2a:29:d3:b7:12:0f:86:10:63:64:
65:6a:02:d6:ac:a1:98:18:99:20:9b:2e:32:23:f4:
32:3a:3c:57:ed:07:da:be:d7:a4:9d:b8:d5:3e:4f:
8d:69:9c:56:05:d9:5a:66:99:53:b6:0f:71:00:20:
9c:36:3e:0b:d4:51:3a:cd:6a:58:47:f6:2d:0f:b8:
b5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:7E:F1:6D:ED:47:DD:72:C2:F3:8D:89:E6:1C:40:1B:53:C7:3A:D4
X509v3 Authority Key Identifier:
keyid:B8:94:37:54:E9:23:45:A8:BB:AB:3D:B2:BC:36:D6:18:E5:EC:C0:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uJQ3VOkjRai7qz2yvDbWGOXswOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/Un7xbe1H3XLC842J5hxAG1PHOtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/uJQ3VOkjRai7qz2yvDbWGOXswOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.234.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:0f:28:87:6a:af:ec:69:ca:6e:eb:19:8f:89:8c:b3:ab:b3:
ef:b0:2a:a6:ce:8f:59:cb:63:06:a6:00:d2:57:7a:23:f5:37:
08:85:ca:93:f1:60:4a:d7:8f:e7:5c:3a:a8:f9:fc:96:21:91:
79:a1:c4:07:f1:77:5b:ad:5c:fb:d5:f7:8b:18:f6:ff:58:96:
4e:67:fc:fe:d4:9a:73:9e:80:cc:a1:72:3e:68:8c:21:88:24:
3c:cb:f7:bb:35:bf:f8:ec:69:97:22:aa:e5:d1:4f:09:f4:ef:
dd:a9:68:d4:87:15:ae:46:72:a8:0a:66:97:3e:72:99:4d:ff:
ea:05:da:3e:c8:30:f6:0e:da:48:12:55:1c:2f:77:a0:ed:3b:
dd:bf:6c:02:3f:62:01:5c:04:40:cd:27:a1:44:97:e1:32:dc:
c2:e9:45:e1:f0:9f:53:cf:70:dd:10:7c:b0:25:3e:61:5c:87:
d5:83:7f:c5:e3:9b:48:d1:27:18:1c:a7:27:2d:28:7a:da:60:
e6:e1:0a:a6:60:03:8e:a7:be:3b:b8:03:a2:78:87:9d:dd:56:
58:83:d4:2d:75:a7:8a:90:39:25:21:fa:4b:3c:2e:f3:da:42:
27:c9:8e:33:dc:7f:da:1f:83:4b:9f:3a:0d:ba:8a:1f:16:23:
fc:56:c0:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:10 2024 by rpki-client on console-fra.rpki-client.org