Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/7dieLUlpNqhuyg3La28gJz-qODA.roa
File: 7dieLUlpNqhuyg3La28gJz-qODA.roa (raw, json)
Hash identifier: GtQqSImakraEu6Sms+8elfcJvqONLBScfs5k5WSJKBE=
Subject key identifier: ED:D8:9E:2D:49:69:36:A8:6E:CA:0D:CB:6B:6F:20:27:3F:AA:38:30
Certificate issuer: /CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Certificate serial: 018571CC27E87BD621A0E7381F3ABFB63616
Authority key identifier: E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/7dieLUlpNqhuyg3La28gJz-qODA.roa
Signing time: Mon 02 Jan 2023 09:24:43 +0000
ROA not before: Mon 02 Jan 2023 09:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56414
IP address blocks: 194.26.217.0/24 maxlen: 24
2a12:7807::/32 maxlen: 32
2a12:7800::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:cc:27:e8:7b:d6:21:a0:e7:38:1f:3a:bf:b6:36:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Validity
Not Before: Jan 2 09:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edd89e2d496936a86eca0dcb6b6f20273faa3830
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:eb:45:a6:38:b2:29:60:44:41:a3:fd:d5:57:
95:cf:92:fe:4f:85:1c:1a:55:13:b9:78:2d:a6:fa:
1a:0f:68:87:69:15:9b:30:f1:80:57:59:7b:39:fd:
e1:72:d0:a4:60:78:19:27:20:41:61:d8:aa:e4:47:
2a:bc:c0:89:c4:48:96:fd:1a:32:aa:0c:2b:af:1c:
6b:e2:54:94:51:9e:92:ee:0e:e5:c8:aa:91:07:3c:
64:34:a6:5d:47:ec:97:b0:3e:71:00:08:bc:e7:56:
64:d6:f9:5d:9f:dc:3a:66:0b:21:15:8c:56:3d:fc:
f8:61:b0:4c:84:93:41:b0:12:04:39:17:56:fa:6a:
d5:e7:78:8e:df:62:73:46:b2:3c:df:3d:40:36:ec:
a7:3a:93:23:33:fb:73:93:68:64:1a:8d:0e:fd:3b:
7e:35:0a:b8:f8:1f:29:c3:4a:16:0a:98:93:82:38:
dd:34:06:b2:fa:21:49:6b:e0:f3:fb:21:04:24:46:
1a:2a:d4:1e:dd:3c:49:cc:69:98:70:b7:31:1e:a5:
ee:39:98:2f:cc:fc:16:43:17:74:65:dd:35:ba:86:
cb:22:4d:ea:78:85:4f:4a:c0:99:92:bd:88:09:8a:
99:fe:c8:89:84:cc:ca:1a:09:ee:48:96:ee:62:a2:
bb:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D8:9E:2D:49:69:36:A8:6E:CA:0D:CB:6B:6F:20:27:3F:AA:38:30
X509v3 Authority Key Identifier:
keyid:E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/7dieLUlpNqhuyg3La28gJz-qODA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.217.0/24
IPv6:
2a12:7800::/32
2a12:7807::/32
Signature Algorithm: sha256WithRSAEncryption
83:76:25:62:0a:29:b2:43:0d:83:10:e5:18:3b:51:33:a9:a9:
bb:ca:7d:59:d6:ac:66:f5:26:01:14:cc:0a:f5:65:d3:4a:c1:
2c:0e:6a:5e:99:be:b4:d3:b6:32:0a:39:61:82:ce:bb:ce:68:
70:81:b1:4f:80:66:5d:3c:1b:07:31:1f:23:52:d6:83:b9:fc:
77:6a:9d:08:c7:e3:c5:13:df:14:c4:b5:1a:34:8e:3e:59:97:
bd:b3:c2:31:da:bf:47:51:87:32:e5:d5:27:dc:c7:50:2d:b9:
e2:b6:7b:ab:ca:88:86:5a:3e:d4:f5:14:cb:8c:4b:b6:48:9d:
51:dd:63:cb:bc:3d:09:11:36:1f:36:1d:11:5d:00:74:bb:0c:
48:50:46:41:88:e7:34:5a:ae:ce:e2:3e:9b:1f:ac:d2:67:75:
03:bf:99:5e:d6:32:29:3c:4d:02:79:85:90:49:ec:8c:8d:42:
e9:b7:fa:66:25:31:56:9d:9f:d8:3a:f5:f8:11:64:8f:1f:f5:
31:2a:a3:3e:99:60:1d:14:cd:21:26:5d:20:06:14:78:c6:a1:
d2:0d:97:d0:12:7b:28:05:a7:85:5c:93:9a:1a:18:80:81:1d:
26:40:06:1c:48:18:6d:43:ca:8c:7a:cf:d8:28:db:4d:27:be:
0b:35:af:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:20 2024 by rpki-client on console-fra.rpki-client.org