Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/pGS8vjd3mwrOqBc60tc-MII5i9Y.roa
File: pGS8vjd3mwrOqBc60tc-MII5i9Y.roa (raw, json)
Hash identifier: dEtvXCKgC0jtXHK6ZxztO9YCkF9vRMUF8PiU2mKU8oc=
Subject key identifier: A4:64:BC:BE:37:77:9B:0A:CE:A8:17:3A:D2:D7:3E:30:82:39:8B:D6
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 018F9555459A3C6BC7F6D7551D6E59DB01B5
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/pGS8vjd3mwrOqBc60tc-MII5i9Y.roa
Signing time: Mon 20 May 2024 09:29:04 +0000
ROA not before: Mon 20 May 2024 09:29:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 194.246.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Jul 2024 08:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:95:55:45:9a:3c:6b:c7:f6:d7:55:1d:6e:59:db:01:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: May 20 09:29:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a464bcbe37779b0acea8173ad2d73e3082398bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:94:77:a7:32:d2:69:ae:1c:a1:2b:36:ed:a4:
d9:c9:7b:c8:bc:f0:1d:12:71:c6:54:18:d3:78:61:
da:98:a8:a0:7e:56:2e:11:1c:99:5a:56:db:ad:a9:
65:0b:46:fc:de:3d:d5:fc:54:54:7c:75:ae:af:9e:
89:db:fe:92:15:91:80:1c:7a:95:16:e3:d2:96:47:
d1:78:a8:0a:f8:85:b5:2e:e9:9b:a6:97:46:67:d8:
b1:50:48:dd:02:e6:6d:d0:d2:3a:a1:d8:ba:a3:bc:
9b:b2:fd:af:75:44:6e:31:c0:7f:13:e8:18:05:dd:
2d:f7:03:8d:06:80:ec:ac:bb:a6:32:8a:7a:bb:14:
0d:14:73:c0:10:c0:c2:b0:82:20:ef:41:23:26:51:
f9:24:71:37:8c:62:d6:0e:1c:46:92:3b:78:c6:cc:
05:46:c7:94:ed:1e:2d:d5:e2:c7:f5:f2:ac:cc:34:
98:1b:7b:e6:56:5f:6f:07:71:f0:64:c6:1e:e9:e0:
df:07:a9:32:85:da:7e:a3:b4:49:7f:1f:fc:e6:97:
85:91:31:cc:55:24:5b:10:4f:f4:df:9a:2e:64:c4:
3f:ba:de:cd:1b:3a:eb:a2:87:1d:f2:cd:59:73:98:
f5:ed:81:59:04:a9:eb:80:0f:16:9f:bf:bb:21:c4:
5b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:64:BC:BE:37:77:9B:0A:CE:A8:17:3A:D2:D7:3E:30:82:39:8B:D6
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/pGS8vjd3mwrOqBc60tc-MII5i9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:51:f8:a1:7d:83:90:31:a9:fd:bc:4d:c6:bb:e9:7f:24:ea:
44:be:3c:aa:00:e1:a1:88:c0:6a:7d:67:7b:7d:ae:8d:8a:5d:
7d:c2:93:fd:c0:06:4d:62:7d:3b:0c:ea:14:5b:63:51:59:9b:
26:e1:4e:16:81:b2:8a:03:08:ea:be:52:36:77:be:bf:e6:51:
9c:03:bb:89:e9:b5:6c:af:96:c5:fd:9e:e6:bb:6d:09:74:4b:
64:0d:89:72:2f:d7:96:84:25:c5:21:25:25:0c:f3:55:4e:ab:
42:fc:ae:9c:23:17:1d:00:d6:16:62:76:af:48:57:c1:54:3b:
19:cc:22:11:78:8d:d9:ac:d1:f3:9e:16:2f:45:c1:5b:2c:3f:
51:ff:3e:9d:3f:2a:8d:8a:72:2e:28:d3:28:e3:bc:9f:a3:ba:
a0:c0:b5:af:9f:44:98:e7:af:4f:8a:08:6a:2b:09:51:34:52:
44:24:dd:e2:6c:f7:8d:74:1d:d8:8d:9e:f0:59:d4:e1:d0:97:
ef:1f:41:2c:14:27:b5:07:29:4a:f7:b7:f5:14:bc:75:ce:36:
16:a3:50:b5:78:12:5b:78:c3:55:4f:f3:04:61:ed:ed:42:da:
19:ab:d5:68:ab:a2:24:c3:e3:53:91:22:7e:0c:4a:38:e5:6a:
7d:c3:de:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 20 10:23:07 2024 by rpki-client on console-fra.rpki-client.org