Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/XXuY9DQguDu9h8HoirvsRCsCBvM.roa
File: XXuY9DQguDu9h8HoirvsRCsCBvM.roa (raw, json)
Hash identifier: ysMpKTI7d1lJNSjAE+OsHJP4LU2kIr+Y16VxlpDpOHU=
Subject key identifier: 5D:7B:98:F4:34:20:B8:3B:BD:87:C1:E8:8A:BB:EC:44:2B:02:06:F3
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018B8B236ACFDA1363F6BA425D0A1067149D
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/XXuY9DQguDu9h8HoirvsRCsCBvM.roa
Signing time: Wed 01 Nov 2023 13:47:15 +0000
ROA not before: Wed 01 Nov 2023 13:47:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 194.26.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:23:6a:cf:da:13:63:f6:ba:42:5d:0a:10:67:14:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Nov 1 13:47:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d7b98f43420b83bbd87c1e88abbec442b0206f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:be:7f:65:dd:b1:6f:a8:9b:ad:f6:d8:5c:46:
21:fd:fe:45:94:76:80:f2:61:cc:84:ca:a7:56:a4:
3a:4f:d4:73:ba:8c:b1:00:09:9b:47:8c:88:ca:3c:
7a:5c:e3:71:a9:cf:08:f0:68:79:40:f9:77:c5:d6:
1f:bf:2b:4f:28:ad:48:6f:5d:74:75:26:e6:ec:67:
2a:41:0f:c8:00:24:c5:fe:e6:07:4e:fb:aa:5e:d6:
6a:3d:51:b2:15:30:92:2c:c6:0d:1e:90:cb:22:2e:
33:b3:88:7d:13:97:77:3f:d2:71:74:e4:e2:16:8e:
a9:71:2f:ad:3c:79:16:db:26:d7:b3:4f:a4:1a:06:
c5:5d:e1:83:b6:d2:97:52:06:31:2e:b6:e6:ff:51:
32:05:38:e1:6a:07:1a:73:a6:5e:ce:54:7b:48:d2:
6c:89:55:58:ca:55:8f:72:1a:07:94:b6:a6:99:02:
35:b7:63:4a:1c:2e:5a:c9:8d:d2:2c:c2:ca:0f:bd:
38:0a:9b:a3:f8:78:77:5b:77:b1:83:fd:6e:7d:9d:
d9:dd:53:1d:a7:10:74:8a:57:70:c1:17:fd:25:dd:
6a:ca:b3:77:9f:51:b4:aa:f1:73:a6:d8:24:de:09:
8e:9f:cc:ee:6b:20:e0:d4:26:57:83:d2:ea:fc:e3:
a9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7B:98:F4:34:20:B8:3B:BD:87:C1:E8:8A:BB:EC:44:2B:02:06:F3
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/XXuY9DQguDu9h8HoirvsRCsCBvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.235.0/24
Signature Algorithm: sha256WithRSAEncryption
07:d0:3c:51:a4:82:1d:5c:af:46:e1:19:62:a8:93:17:3c:32:
a4:91:4d:75:e1:d9:9e:f4:87:69:67:26:d6:25:95:b1:b5:a1:
e3:bd:34:52:b5:35:36:c0:97:75:1b:37:ea:03:cb:bf:08:d9:
b6:48:ae:13:af:a7:d9:1b:56:b8:ee:55:a0:9d:b4:4d:0a:c9:
d9:37:b6:a3:a5:c6:20:06:d7:8b:21:e0:0d:21:97:3a:f5:c1:
64:99:ab:85:9e:70:fe:b1:b3:85:22:0c:33:d5:dd:d3:20:0d:
1a:50:70:95:ed:af:b3:80:a8:f4:39:4b:05:fa:95:e3:91:2e:
5a:4f:26:c2:bd:d8:d9:e3:6c:2f:94:89:d4:17:10:d0:eb:48:
77:58:46:81:6a:16:21:6a:61:60:f3:63:2e:7f:11:78:3a:d5:
05:b5:1e:e4:48:a5:a1:4c:eb:4f:df:32:ab:f9:23:a6:63:75:
51:5e:f5:8e:2d:b2:9d:ad:05:66:5d:5f:8d:7d:ae:49:d5:00:
9a:14:ef:b8:38:b4:76:2b:a2:05:3a:e2:fa:99:2d:13:76:84:
25:fb:2b:85:76:ad:8d:3c:43:ae:b0:38:73:6f:9c:0f:d0:1a:
06:54:e5:39:32:3c:53:29:19:2b:43:a6:d0:56:7f:ea:54:a5:
b2:e7:69:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:43 2024 by rpki-client on console-fra.rpki-client.org