Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/X8eUC6EiwDzGiMjI52AOF9XvpSU.roa
File: X8eUC6EiwDzGiMjI52AOF9XvpSU.roa (raw, json)
Hash identifier: JfJKDWerRyQ/JLVzZ+pdA475SH0pDcmRD1yPIzIl+xc=
Subject key identifier: 5F:C7:94:0B:A1:22:C0:3C:C6:88:C8:C8:E7:60:0E:17:D5:EF:A5:25
Certificate issuer: /CN=f0ff2c6229af763a99f5349a32510df4a4526143
Certificate serial: 018572A6F6FE15154596382AB483D9729402
Authority key identifier: F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/X8eUC6EiwDzGiMjI52AOF9XvpSU.roa
Signing time: Mon 02 Jan 2023 13:23:42 +0000
ROA not before: Mon 02 Jan 2023 13:23:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213218
IP address blocks: 194.219.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a6:f6:fe:15:15:45:96:38:2a:b4:83:d9:72:94:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ff2c6229af763a99f5349a32510df4a4526143
Validity
Not Before: Jan 2 13:23:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fc7940ba122c03cc688c8c8e7600e17d5efa525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:69:0a:6a:b0:11:fe:5d:60:14:81:30:5a:33:
51:b2:8f:43:6a:0b:a2:7c:96:9a:2f:6d:b9:f3:40:
9b:14:2f:40:7c:a3:79:f7:73:f2:21:d1:02:7c:9c:
57:2d:07:f7:87:c8:e7:81:f2:eb:a8:6b:df:f2:f2:
bf:68:8b:42:54:f6:c1:ef:9e:1f:2a:cd:63:15:a3:
b5:44:89:0b:f4:88:7e:b9:20:5f:0e:c8:8b:a0:2f:
17:62:ee:ea:07:3d:af:9b:8f:26:e0:13:d1:83:c6:
bc:ef:0f:43:94:f4:8f:ce:d9:81:49:29:78:aa:f5:
d8:16:dc:96:49:48:8d:bd:7a:fd:d9:64:11:55:9c:
ba:d9:09:ca:c2:14:a2:b6:02:85:d4:f0:e4:ad:07:
86:e3:09:58:91:1d:ac:74:2b:49:4a:b0:77:c1:77:
fe:cd:ee:85:5f:3e:e8:3f:25:2c:0c:88:91:c5:69:
ac:a8:d2:e4:30:ab:03:93:08:7a:d7:2f:f0:5a:d1:
29:cd:14:df:2d:6d:52:29:d8:13:3e:ca:bc:02:30:
45:10:c2:da:a7:5e:53:43:7c:86:89:0b:db:50:90:
b9:9c:a6:cd:0b:84:a1:4b:c5:f0:78:2e:c2:c5:6d:
e0:0d:82:ba:8e:1f:b4:1e:df:7a:2a:44:63:aa:d7:
26:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C7:94:0B:A1:22:C0:3C:C6:88:C8:C8:E7:60:0E:17:D5:EF:A5:25
X509v3 Authority Key Identifier:
keyid:F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/X8eUC6EiwDzGiMjI52AOF9XvpSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.219.1.0/24
Signature Algorithm: sha256WithRSAEncryption
85:eb:68:f8:be:0e:52:74:a4:24:57:50:33:2b:93:45:0a:31:
bf:49:21:57:c1:7a:d2:40:7d:5b:ac:02:27:7c:0a:0e:b3:0f:
7b:f7:79:11:16:f6:8f:a4:14:4e:1c:c2:83:40:9b:77:4a:ee:
14:c8:e5:c7:98:dd:a9:43:97:18:3c:a8:8c:a4:b8:ae:8d:85:
1f:40:a5:73:d0:a1:d4:8d:a9:d3:fe:16:42:59:67:2b:de:d7:
d8:d3:dd:bc:5b:fe:f3:33:c7:3f:93:24:58:b0:6e:f3:af:f3:
f8:3f:ff:03:11:f6:b3:7a:16:ff:b0:52:7d:82:bb:b3:0d:aa:
6d:9a:c0:cb:d4:ff:20:71:8e:9f:3d:3d:40:38:99:d5:33:4c:
67:88:b1:1d:cb:61:e5:cf:e0:b9:c5:4e:02:09:ba:de:b3:ae:
0d:4f:3f:26:cf:87:1a:bd:eb:f4:a5:47:55:d7:ed:ef:8f:53:
9a:68:48:2e:c8:26:4e:7e:3f:cd:f2:6e:9d:c9:16:14:fe:7a:
8f:2c:8b:03:c1:39:b7:a6:b7:9a:4c:b1:5e:c4:74:69:01:89:
a8:c8:ea:2a:bf:97:85:c2:68:51:a5:97:e4:26:98:01:12:0a:
05:47:d4:93:01:7d:34:7f:f3:3d:ce:d4:f5:e1:33:29:a1:5a:
30:94:b1:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:06 2024 by rpki-client on console-fra.rpki-client.org