Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/1GUBoCkTGq-X2BVNcK8vDe3qr0U.roa
File: 1GUBoCkTGq-X2BVNcK8vDe3qr0U.roa (raw, json)
Hash identifier: Rvm/mnYRdKMd+qQvEko8QrYkzgbv+wuKdbz9kQAL/fY=
Subject key identifier: D4:65:01:A0:29:13:1A:AF:97:D8:15:4D:70:AF:2F:0D:ED:EA:AF:45
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01900B407EF65DC56C78DE3C752D3FFFEFD5
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/1GUBoCkTGq-X2BVNcK8vDe3qr0U.roa
Signing time: Wed 12 Jun 2024 07:01:34 +0000
ROA not before: Wed 12 Jun 2024 07:01:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.79.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 12:58:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0b:40:7e:f6:5d:c5:6c:78:de:3c:75:2d:3f:ff:ef:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jun 12 07:01:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d46501a029131aaf97d8154d70af2f0dedeaaf45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b2:01:d4:21:8b:f1:a4:7d:53:a5:b9:f7:a9:
c0:de:0f:2c:b3:2d:10:97:0d:9f:13:90:28:2b:3b:
8f:4b:88:44:b1:71:6a:bf:33:95:65:8f:52:17:be:
29:bb:f8:c4:be:2b:01:b4:b5:75:ab:e1:e7:32:91:
a2:e0:55:dc:37:57:3c:a4:05:cd:d4:df:eb:e9:e3:
a1:43:7b:64:41:a5:cf:fd:81:d7:35:91:b1:5d:ef:
8b:83:4a:e1:99:21:42:b7:67:09:6c:f9:e7:1e:56:
b1:52:15:99:6c:63:23:10:3e:17:5e:33:79:61:2a:
b7:15:03:f1:ac:18:ec:3e:55:ec:b8:23:d4:2c:c0:
55:84:22:48:61:32:0a:73:03:68:db:9b:18:95:91:
d7:c5:ec:94:f4:2d:5e:e2:f7:b7:f9:fd:5b:a2:b5:
0f:fe:be:11:3e:f1:71:30:e3:49:b0:48:c4:93:df:
cd:1c:87:94:1f:8b:8a:d3:bc:ef:1f:ae:7a:29:78:
ff:b2:f7:1c:ea:4d:5f:86:9f:fb:6c:cd:a3:0c:bb:
1f:44:80:00:2c:fc:da:4e:27:7b:c4:1b:d4:b6:96:
8c:b2:2b:8f:6f:94:df:ca:0a:99:b6:27:4f:1a:78:
83:7c:16:3c:8b:90:ca:51:39:94:c4:ca:69:5a:5b:
c6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:65:01:A0:29:13:1A:AF:97:D8:15:4D:70:AF:2F:0D:ED:EA:AF:45
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/1GUBoCkTGq-X2BVNcK8vDe3qr0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.79.15.0/24
Signature Algorithm: sha256WithRSAEncryption
93:d5:30:94:dc:d2:12:31:3e:c1:e6:06:c2:cb:2d:c8:1d:2d:
67:a7:6a:9b:f4:b4:66:21:f9:7d:d8:91:ae:f1:54:a4:89:d1:
32:25:d8:a7:d6:ae:a7:1b:85:57:ce:f2:c2:bb:d3:42:4b:59:
6f:4e:8e:0a:e4:5f:4a:e7:52:da:07:74:69:59:f6:9c:de:23:
6c:4a:ed:16:13:c3:38:53:d8:10:73:4f:4b:ae:1a:cc:76:fb:
0c:65:0d:55:57:b3:7a:44:07:64:15:cd:61:46:59:56:8b:f0:
c8:1e:16:f8:02:3d:d9:5e:67:9d:c6:ec:1e:07:63:66:15:af:
b3:da:ab:3d:55:69:ce:3d:2c:24:5a:66:62:ec:d7:5b:dc:dd:
51:f7:4d:d1:19:53:af:95:ef:61:8c:1a:53:e3:b2:ba:07:53:
86:08:91:78:cc:f7:f5:80:4e:bf:e8:58:23:bf:80:c2:e6:7b:
5e:ec:0f:89:77:75:0c:c4:30:7d:1c:a5:c5:f7:b0:7a:2f:e2:
91:8f:c2:11:68:44:bd:af:96:ed:54:83:ba:ef:81:be:43:04:
3d:5d:d2:55:54:44:7c:34:ef:1c:89:33:c9:a0:a1:55:68:ce:
6c:ec:b5:26:8f:4a:44:1a:46:9c:d1:69:2b:35:95:16:69:be:
cb:61:68:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 18:13:03 2024 by rpki-client on console-ams.rpki-client.org