Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/kImlAsHJWwhQ_fTrL2qI97Xi4Es.roa
File: kImlAsHJWwhQ_fTrL2qI97Xi4Es.roa (raw, json)
Hash identifier: V6l4W4OsHIYh1y03QdlkUWBhLfxv+iFN6/0rz9OnxwM=
Subject key identifier: 90:89:A5:02:C1:C9:5B:08:50:FD:F4:EB:2F:6A:88:F7:B5:E2:E0:4B
Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e
Certificate serial: 018B8A4148891D0B9B1E27C68D4B4E411510
Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/kImlAsHJWwhQ_fTrL2qI97Xi4Es.roa
Signing time: Wed 01 Nov 2023 09:40:16 +0000
ROA not before: Wed 01 Nov 2023 09:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 194.26.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Nov 2023 13:46:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:41:48:89:1d:0b:9b:1e:27:c6:8d:4b:4e:41:15:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e
Validity
Not Before: Nov 1 09:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9089a502c1c95b0850fdf4eb2f6a88f7b5e2e04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:33:5c:6b:20:2c:fc:1a:fc:ca:f6:41:fc:07:
19:90:f9:75:16:e6:dd:41:7e:a7:12:8a:8a:79:4d:
9a:0c:09:f1:07:e3:14:cd:cd:35:4f:f3:31:88:5b:
60:e9:44:ce:eb:a4:fb:7a:e5:80:ee:b0:ef:54:6e:
a3:ec:16:79:fa:51:f9:73:df:ac:c5:e2:e6:f3:b8:
e1:84:2e:5d:c6:47:3b:3f:95:ed:2e:68:e8:da:1c:
a1:38:47:6c:94:07:54:9f:b7:39:fa:68:21:b8:7f:
b6:fc:87:49:6f:b8:5b:2f:6f:02:e8:0c:79:2b:1b:
ae:16:06:d4:06:63:11:28:74:d6:3c:82:34:b1:cb:
ed:80:23:e3:9e:3d:eb:63:f8:86:c5:f6:5d:d1:0a:
d8:8c:56:76:e9:ae:71:05:ee:42:e9:16:65:42:2d:
ed:39:95:79:f4:ce:f5:dd:fb:68:71:a4:a6:6a:52:
aa:0e:12:f5:9e:da:9f:a9:8e:3c:92:9f:e7:0b:d6:
74:f1:92:48:74:23:5d:f4:4a:69:ca:9f:4e:81:8a:
c4:c0:d4:9e:fd:4b:cd:75:de:9e:2d:18:48:17:30:
84:d3:06:da:85:8b:61:b2:13:ed:b3:15:95:54:45:
c2:47:73:a9:49:98:2f:b3:c9:a3:8f:79:30:8f:d4:
3b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:89:A5:02:C1:C9:5B:08:50:FD:F4:EB:2F:6A:88:F7:B5:E2:E0:4B
X509v3 Authority Key Identifier:
keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/kImlAsHJWwhQ_fTrL2qI97Xi4Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.234.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:66:54:24:8c:8d:dc:87:0e:05:e8:ad:d7:d6:05:1a:7a:a1:
ab:7d:7a:74:84:af:4c:3f:c8:e7:d8:09:e1:c2:86:a8:a7:2a:
a8:a9:6a:41:e9:2e:72:59:b5:f7:39:cf:97:0e:00:6a:18:8d:
eb:62:99:78:ec:85:c2:32:44:1f:8f:32:54:36:54:1c:b9:c5:
d9:08:7e:a6:b3:72:a4:39:8e:04:8c:d6:13:fd:87:d5:f2:61:
91:0d:6e:73:ee:2e:8d:cc:eb:37:da:44:70:a7:8e:d8:27:fc:
e8:7f:04:ea:61:63:d9:c8:2e:b5:62:85:ce:aa:54:22:e3:fe:
eb:61:36:6b:0f:5b:c4:63:41:fe:03:be:ea:c1:25:9b:a0:18:
b9:6e:29:6a:5b:39:dc:93:70:62:17:be:f6:90:2e:bb:15:be:
d5:3d:41:7c:3c:5c:1e:e0:6c:8d:32:bd:15:ec:55:bd:95:35:
4e:0f:ea:90:fe:9a:78:be:00:2f:af:82:fe:31:c1:0c:ce:6b:
b9:f0:f9:4f:e2:d7:ba:a8:93:dd:c6:44:d3:4c:11:b2:7c:d3:
d4:00:e7:80:ed:83:f2:b4:31:0e:c8:55:04:d2:40:03:0f:79:
37:bf:4b:6e:c6:f6:f8:3e:2b:6b:56:b1:b5:31:0a:4f:a5:e6:
3d:27:c8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:43 2024 by rpki-client on console-fra.rpki-client.org