Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/hETndkP5i59aaL2kE7c6yfiLK2g.roa
File: hETndkP5i59aaL2kE7c6yfiLK2g.roa (raw, json)
Hash identifier: nbS09No/Qtnmkc5cFtZ6sPKufkCuJrljplr6fJx8xOw=
Subject key identifier: 84:44:E7:76:43:F9:8B:9F:5A:68:BD:A4:13:B7:3A:C9:F8:8B:2B:68
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0190E38C0C828A12FB531000A67D3072AFDF
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/hETndkP5i59aaL2kE7c6yfiLK2g.roa
Signing time: Wed 24 Jul 2024 07:02:04 +0000
ROA not before: Wed 24 Jul 2024 07:02:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.246.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 05:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e3:8c:0c:82:8a:12:fb:53:10:00:a6:7d:30:72:af:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jul 24 07:02:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8444e77643f98b9f5a68bda413b73ac9f88b2b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:44:ae:59:e3:b6:38:81:81:5a:89:e7:f0:81:
bc:8d:4a:4b:89:61:14:13:c5:64:03:52:72:7a:ac:
d6:24:52:af:cd:63:cc:ae:4e:c8:01:00:75:c1:56:
8a:dd:ba:59:26:81:a4:9b:e8:39:ea:f2:bd:29:28:
3a:04:ca:c2:7e:37:20:f2:cf:e9:c5:0e:51:c0:db:
79:87:7c:d9:9d:8d:9c:5e:2e:5b:5f:e2:73:e0:0f:
13:1c:54:7c:65:b5:fb:1c:78:08:93:06:60:5e:6f:
33:e1:a9:87:70:8f:09:e1:ab:6e:57:50:59:41:72:
0e:ff:f6:88:df:db:90:89:e2:ab:3c:1e:b0:0d:dd:
c0:41:d0:05:82:bd:53:02:be:00:74:76:82:76:b4:
3e:1c:b6:ab:16:e0:5c:67:7c:21:be:df:c9:3b:a2:
ac:66:76:2e:cc:59:f6:d5:e1:51:29:0a:74:e1:ba:
66:78:f0:eb:61:89:d4:5e:a1:14:e3:99:7b:14:d3:
94:a7:df:73:73:a3:37:71:ea:6c:8f:b7:2d:bb:28:
65:3b:56:ea:a4:d2:d6:23:59:a0:84:bf:b4:f2:82:
dd:23:8f:5a:f9:bb:70:c0:f3:f3:37:70:09:e2:54:
dc:cc:d0:55:2c:aa:2f:0e:49:72:93:04:b2:42:45:
6c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:44:E7:76:43:F9:8B:9F:5A:68:BD:A4:13:B7:3A:C9:F8:8B:2B:68
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/hETndkP5i59aaL2kE7c6yfiLK2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.36.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:77:6c:5c:fb:7b:c7:05:3b:c4:bf:9f:ff:99:c7:44:de:b7:
f1:51:89:db:7b:26:97:46:41:e1:57:9f:8e:fa:59:dd:c2:fe:
80:9f:7b:ab:d3:25:b6:37:73:22:54:4b:60:b1:4a:83:5e:cc:
ff:a5:09:f1:f0:3c:2d:61:c4:76:c6:05:3d:ca:c2:0d:60:f1:
f6:3f:b0:f8:93:de:bd:bd:12:35:11:e1:59:a6:45:d2:32:f6:
24:47:7e:d5:9f:f5:1a:cc:39:cb:61:84:51:e9:68:9b:a2:fa:
73:f0:ef:0f:dc:05:5c:2a:0e:ad:59:73:b1:e3:ef:77:58:06:
d6:41:57:c0:bf:15:da:d5:72:b8:6c:c6:fb:36:b9:12:7a:6c:
dc:46:51:23:3d:a4:87:35:21:63:fa:5f:dc:d1:8b:03:82:45:
e5:04:e3:46:e4:ed:73:d0:df:15:6b:f6:14:e8:c7:19:bd:2d:
a8:8d:22:0e:89:ea:6c:91:46:eb:8b:07:c3:91:13:d9:9f:84:
22:1b:27:be:3e:89:a6:0c:5f:89:1b:4b:17:77:71:4c:b3:53:
4b:d2:8e:40:27:b1:89:17:c4:1c:86:4c:94:e9:e7:78:4d:2b:
59:6c:ba:59:64:39:aa:d9:bd:a5:e3:49:df:70:6e:48:31:6e:
cb:e0:ca:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 06:58:36 2024 by rpki-client on console-fra.rpki-client.org