Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/tYmTKFO2SKL8gUlVHS_YyAGtNSs.roa
File: tYmTKFO2SKL8gUlVHS_YyAGtNSs.roa (raw, json)
Hash identifier: 6CfYL4yAvYywYBI3DWNvrSgg/utsc8bE9ZYyASRAlsY=
Subject key identifier: B5:89:93:28:53:B6:48:A2:FC:81:49:55:1D:2F:D8:C8:01:AD:35:2B
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018E7A85FCCE4A40F9AF516707ADB62BF288
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/tYmTKFO2SKL8gUlVHS_YyAGtNSs.roa
Signing time: Tue 26 Mar 2024 11:29:45 +0000
ROA not before: Tue 26 Mar 2024 11:29:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.62.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 09:02:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7a:85:fc:ce:4a:40:f9:af:51:67:07:ad:b6:2b:f2:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Mar 26 11:29:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b589932853b648a2fc8149551d2fd8c801ad352b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a5:7c:c5:09:9a:73:61:2e:8f:b5:84:d0:88:
f3:2f:b3:9a:a9:ba:d2:43:da:06:a4:ce:5a:dd:d7:
24:13:b4:61:52:e1:ed:74:5f:17:fd:18:ec:12:81:
37:81:60:3f:92:1d:60:8f:b3:2c:da:17:61:06:f5:
50:75:d4:ac:e8:e0:c2:95:7a:e8:e9:41:f6:62:fa:
10:08:cb:52:7b:7a:14:93:d9:7a:41:72:1a:54:bb:
c7:89:46:e4:b1:71:6b:b6:7f:9a:a8:66:bb:3a:c3:
6f:6a:4a:aa:af:7b:6c:23:c4:0c:6d:0c:1c:60:ba:
2c:fb:56:76:37:a2:4d:ba:1f:69:7e:9f:81:5a:b4:
d6:c1:8a:76:aa:3e:73:89:a0:7c:e5:67:60:7a:03:
2f:51:b2:b5:9a:a1:da:45:6c:b8:8c:77:e6:e5:f8:
eb:dc:e0:bd:78:65:ab:3f:1f:e5:ae:4c:f1:a1:95:
66:7e:8e:a8:78:ee:f2:f6:74:cd:13:96:bc:32:6e:
3f:24:7a:92:a2:0b:d9:7c:f7:51:e5:08:18:fd:9e:
f3:48:8f:d7:04:4d:a5:0c:81:9b:c9:ea:f7:4d:b0:
f3:65:02:e0:21:68:86:ad:ee:6f:85:81:5d:9e:30:
10:9b:fb:dc:1e:6f:93:e7:b0:91:4b:40:e0:b8:56:
d7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:89:93:28:53:B6:48:A2:FC:81:49:55:1D:2F:D8:C8:01:AD:35:2B
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/tYmTKFO2SKL8gUlVHS_YyAGtNSs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.107.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:c4:05:dd:28:b1:c4:4d:6c:e8:65:58:cb:0c:c6:40:a9:ee:
9c:08:8a:a1:3e:85:1e:43:6f:99:b1:d5:d4:1f:ab:75:e1:03:
1e:d1:07:d4:cf:62:52:21:a2:63:54:af:2d:60:ad:fc:f2:54:
62:6d:6f:c3:dc:65:20:30:f8:9a:6f:52:06:ec:3a:1f:20:5a:
2b:e3:1a:ca:27:e4:60:9b:22:cd:b6:21:ac:51:93:84:b2:bb:
6a:a6:a0:4d:9e:22:ea:69:31:7b:28:cc:67:97:d7:e9:8f:f3:
fb:e4:54:0c:39:8b:a2:8d:37:96:a0:af:51:56:93:aa:40:38:
54:8b:bf:1e:f7:a8:f6:fa:11:29:a0:ea:54:5a:0f:3b:f7:cb:
e3:93:0a:df:33:e4:2f:65:e2:2f:12:f2:17:59:3e:13:44:f1:
c1:e2:2a:28:e2:c7:d6:9e:39:00:9c:b3:00:e1:21:da:6d:cd:
53:56:2e:c8:d1:0b:e0:2a:51:c8:df:e7:ae:57:cc:48:89:57:
89:b9:24:55:1c:a8:39:c3:01:fe:be:ab:a6:46:2f:6c:89:aa:
f7:2a:36:38:1d:8c:12:e2:f7:80:a1:85:9e:0e:e8:07:8a:61:
76:a8:a0:31:be:a0:05:e3:9f:a3:a9:d8:dd:f8:1a:b4:83:3b:
8a:c2:d5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:49 2024 by rpki-client on console-ams.rpki-client.org