Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/Q-SUgBXV9m_ukgd-U87INUZuwys.roa
File: Q-SUgBXV9m_ukgd-U87INUZuwys.roa (raw, json)
Hash identifier: ReTasd+V2I9SQwcXD0ZxSWb16l/ufkz0kUiRJl92tMw=
Subject key identifier: 43:E4:94:80:15:D5:F6:6F:EE:92:07:7E:53:CE:C8:35:46:6E:C3:2B
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 01914F2CC44B432FF338EBFCA869A65B4642
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/Q-SUgBXV9m_ukgd-U87INUZuwys.roa
Signing time: Wed 14 Aug 2024 04:36:59 +0000
ROA not before: Wed 14 Aug 2024 04:36:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.187.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 08:15:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4f:2c:c4:4b:43:2f:f3:38:eb:fc:a8:69:a6:5b:46:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Aug 14 04:36:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43e4948015d5f66fee92077e53cec835466ec32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:8d:2f:a4:d9:2a:6f:77:e4:90:14:d9:d5:b8:
9c:c1:d3:32:bf:52:cb:1f:7a:32:0f:ab:3e:50:4b:
53:0c:78:c9:f2:fb:be:5b:a7:e5:78:39:df:4b:10:
36:ca:aa:fe:ac:de:1f:f1:34:06:fa:a5:89:12:7f:
d8:51:63:71:95:f7:41:44:79:ad:9d:86:e0:8b:72:
9d:7c:76:4d:a7:84:2f:b6:ef:95:8e:2f:3b:16:67:
6d:bb:eb:bf:3a:62:28:19:a3:86:56:25:19:63:aa:
99:b3:36:18:cc:de:61:22:ad:3c:01:70:9e:e8:f7:
d2:7a:d9:91:df:93:55:8a:a7:69:b6:77:7f:12:3d:
fb:ab:95:24:02:9e:5a:5e:1f:7a:ae:da:a8:d7:b5:
2d:97:f1:11:e4:0c:f1:d2:a4:9c:90:a9:18:0c:46:
db:6f:f5:de:e4:58:09:dd:a4:2c:85:3f:7d:59:44:
18:78:ee:c9:07:6c:5c:fe:73:06:59:ab:51:15:88:
c1:b8:f8:fd:34:81:ec:65:b4:bd:97:e8:19:56:68:
c1:93:03:f8:eb:a4:12:6f:34:18:5b:08:72:3d:7c:
57:2b:18:f1:8d:29:89:77:35:45:8a:f7:2e:1b:e8:
28:f4:f9:ee:a1:c2:8c:03:54:c6:16:4b:5d:ad:4b:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:E4:94:80:15:D5:F6:6F:EE:92:07:7E:53:CE:C8:35:46:6E:C3:2B
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/Q-SUgBXV9m_ukgd-U87INUZuwys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.187.117.0/24
Signature Algorithm: sha256WithRSAEncryption
92:f5:a6:fb:5f:49:6b:67:43:91:4d:14:9d:21:65:0c:6d:e2:
28:6a:af:76:c3:b1:8f:19:72:a7:89:ff:05:a1:a2:9f:38:f6:
6c:d2:62:f2:57:4f:83:86:87:4c:01:66:e2:c6:48:f4:47:29:
0b:da:c2:2b:95:d8:ae:12:88:60:e5:9c:f9:ae:98:26:a9:42:
1b:7a:bf:03:3b:98:08:c9:21:22:02:ad:e9:c5:cc:3d:05:a1:
cb:ed:98:75:04:ac:a7:13:b9:93:14:04:f1:46:a5:e5:90:a8:
77:b0:6d:df:85:a8:a2:95:2b:9d:76:e9:bf:11:79:b4:e7:9c:
e3:21:7d:01:53:48:76:46:fb:ee:84:64:a4:9d:4e:dc:c5:52:
40:41:11:53:31:5f:28:4a:a5:64:4c:a8:b9:cf:81:18:6d:4b:
70:94:c7:ca:a9:10:ff:55:20:46:37:4c:67:e1:2b:02:a2:66:
20:89:b8:f7:1f:db:80:6d:71:01:15:91:b6:6d:75:df:62:6b:
de:59:2e:89:9a:38:60:84:d0:57:65:7b:f8:28:34:d1:b2:91:
87:73:e6:9b:1a:f4:86:08:6f:59:74:f7:32:c9:d1:0d:69:ef:
af:06:ab:7c:84:33:57:c5:af:cb:40:79:e4:38:6a:0c:37:3c:
77:38:52:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 09:53:36 2024 by rpki-client on console-ams.rpki-client.org