Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/8AJNG4UZ3b9lvj7ibuPqt_pdNrE.roa
File: 8AJNG4UZ3b9lvj7ibuPqt_pdNrE.roa (raw, json)
Hash identifier: CPCrz6TI6kK6QXgij6utKXlUT625DS59khUx5UALBX8=
Subject key identifier: F0:02:4D:1B:85:19:DD:BF:65:BE:3E:E2:6E:E3:EA:B7:FA:5D:36:B1
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018CF33894BD822A1CD88639C570F8E1E746
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/8AJNG4UZ3b9lvj7ibuPqt_pdNrE.roa
Signing time: Wed 10 Jan 2024 11:53:40 +0000
ROA not before: Wed 10 Jan 2024 11:53:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.79.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 09:56:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f3:38:94:bd:82:2a:1c:d8:86:39:c5:70:f8:e1:e7:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 10 11:53:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0024d1b8519ddbf65be3ee26ee3eab7fa5d36b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:65:d5:a9:a6:e7:6e:53:27:35:2c:05:d9:43:
01:59:25:b7:54:c0:ea:aa:a9:d5:c2:76:fa:2d:ab:
b1:95:d8:e6:21:75:ff:79:14:5e:cf:2d:34:18:6c:
50:60:47:0f:ce:26:13:4f:b6:7a:9b:ef:c5:b1:cc:
f8:75:74:3d:19:c2:13:47:7f:90:33:32:46:05:d3:
b5:ca:75:fa:66:0d:0b:ee:ca:66:ef:9b:af:b9:83:
ff:13:13:74:c3:26:91:05:06:7e:cf:50:e5:90:2d:
40:cf:27:96:4b:73:c0:f4:5f:0e:51:d8:e5:36:2f:
5b:9f:36:04:66:05:1e:69:9c:67:70:53:df:b5:17:
d0:d5:17:e6:0b:2c:87:dd:5b:21:0b:5f:07:f6:13:
67:46:bb:3f:60:82:bd:1d:9b:22:e9:5b:92:26:64:
6b:a4:59:9a:42:3f:1c:ac:62:d9:0f:fe:68:de:38:
da:36:75:d6:18:f5:e9:41:3a:c2:a1:3f:aa:13:29:
a4:a8:c8:d7:45:01:e9:6c:4e:a4:14:1c:ac:03:76:
5f:a9:11:0e:c0:48:31:37:b1:b1:d1:ed:9c:49:9f:
7a:71:c4:f4:30:85:a0:15:e6:4c:dd:8f:0d:46:1b:
4d:86:42:76:dc:ea:7d:c2:86:60:e1:02:73:f1:4c:
e8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:02:4D:1B:85:19:DD:BF:65:BE:3E:E2:6E:E3:EA:B7:FA:5D:36:B1
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/8AJNG4UZ3b9lvj7ibuPqt_pdNrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.79.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:3b:49:6e:bc:1a:cb:20:a6:d7:5b:2a:7e:81:b5:ac:46:51:
d2:a3:c2:fd:f8:b2:df:c5:59:a2:24:b3:ec:65:25:6b:6d:9a:
ae:6c:18:da:de:20:ab:a7:bc:a9:e0:ad:c3:55:cc:4d:dd:c1:
83:63:e2:2e:ba:24:46:49:b5:50:91:92:7e:5e:95:94:9b:0b:
5b:52:40:85:66:7d:a5:ab:5b:33:7d:fd:fb:f9:45:cf:58:46:
ac:59:19:75:97:f5:c9:75:c0:cb:24:77:d6:11:1d:4c:15:b9:
84:a2:5a:4d:0a:b0:3b:99:49:c6:63:b8:3f:37:ca:f5:dc:cb:
d5:ed:b6:41:76:48:c7:cf:5b:bb:8e:1e:b9:06:fc:1b:8d:9a:
0d:87:95:79:7d:58:bd:9c:be:75:9d:e0:90:5e:94:35:22:0e:
6a:ca:b6:ce:7c:fd:82:3b:2c:45:ae:12:84:33:35:e3:87:bd:
c7:40:82:e8:2a:1a:7c:bc:44:bf:ff:14:fe:fc:49:0d:54:70:
e0:14:30:14:ec:eb:67:62:35:32:14:9b:2b:5d:65:e8:66:26:
4c:ea:39:f3:14:d6:d0:96:a0:c1:4e:5c:98:4e:98:fd:0b:1b:
e0:62:72:d2:29:c6:1e:d5:04:a2:9a:af:8a:a8:68:69:39:e9:
e4:23:8b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:20 2024 by rpki-client on console-ams.rpki-client.org