Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0IlCQ0nRchwU7uVZbEZt-RCFGVw.roa
File: 0IlCQ0nRchwU7uVZbEZt-RCFGVw.roa (raw, json)
Hash identifier: 0s05tf5vyZI4wz1QaV5GeRY1nTefNX/iIFYhEYD5TWM=
Subject key identifier: D0:89:42:43:49:D1:72:1C:14:EE:E5:59:6C:46:6D:F9:10:85:19:5C
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018ABE1BA501F46576A9E30D80D41ED601B6
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0IlCQ0nRchwU7uVZbEZt-RCFGVw.roa
Signing time: Fri 22 Sep 2023 18:16:37 +0000
ROA not before: Fri 22 Sep 2023 18:16:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216291
IP address blocks: 194.5.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Nov 2023 17:11:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:be:1b:a5:01:f4:65:76:a9:e3:0d:80:d4:1e:d6:01:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 22 18:16:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d089424349d1721c14eee5596c466df91085195c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:59:a3:bd:2b:bc:99:3e:43:74:a4:5c:20:c7:
dd:5d:7b:21:20:26:e0:a1:11:f8:8b:01:9a:e2:90:
e1:86:8b:74:d7:0b:b0:22:c4:a4:af:d8:c3:34:95:
1f:7a:7b:ec:0a:8e:04:78:00:cf:e2:ce:d2:d6:9c:
1c:27:aa:b9:db:72:a2:21:25:dc:e0:b3:35:fc:eb:
f3:3a:5c:8c:83:75:20:4c:9c:34:87:5d:f2:00:9a:
35:c4:0e:e0:26:4e:7e:95:4a:b0:51:8a:24:ec:c6:
c4:7b:61:63:78:ef:b0:02:81:f4:82:3c:46:06:a7:
8a:3f:17:a8:d7:69:4c:bc:2f:8f:86:12:ed:a6:0f:
1c:ca:ad:6e:29:ff:04:17:fb:24:48:a2:7a:bd:2a:
4f:19:95:2c:d3:e2:81:b6:eb:44:99:ba:7c:f3:90:
37:91:72:6e:76:4a:de:12:ae:5b:7f:27:f2:6a:a0:
08:2e:64:5f:01:d5:51:5e:b7:d1:a8:cd:48:c5:37:
9d:81:5e:05:3a:d2:3b:d9:28:1b:69:1b:8d:6e:8f:
54:ed:99:db:a4:1a:fb:06:02:a6:d3:35:2f:63:5a:
5e:43:35:3a:36:f6:1c:c9:da:d0:03:39:7e:82:86:
a8:2b:32:55:27:aa:4d:44:d5:d9:b6:b7:fd:9a:7f:
2e:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:89:42:43:49:D1:72:1C:14:EE:E5:59:6C:46:6D:F9:10:85:19:5C
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/0IlCQ0nRchwU7uVZbEZt-RCFGVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.64.0/24
Signature Algorithm: sha256WithRSAEncryption
10:cf:de:49:ba:b6:f5:1e:c5:5e:78:b9:73:9c:d9:04:d7:f1:
3a:2e:9a:2e:25:94:3a:35:06:f8:92:ed:be:24:20:92:89:89:
b9:5c:d8:9c:3f:55:e3:21:1d:80:46:0e:b2:a7:07:6f:ea:c1:
94:30:75:16:65:23:35:ec:9c:f5:33:77:77:ee:89:da:eb:9a:
30:1c:c7:2b:d7:7f:fa:e3:2e:f3:26:15:2c:12:77:f7:6d:0a:
2e:df:f8:5e:a2:a4:f2:65:94:46:3c:ec:99:5e:54:f6:53:42:
08:33:c4:3b:4c:ce:79:77:9b:ee:2c:c3:99:e2:36:78:db:56:
14:97:a7:ed:0e:23:38:80:5d:e9:64:98:41:8a:c0:60:88:e8:
66:eb:21:17:6b:cc:65:85:0f:e4:28:9a:28:f1:fb:fb:a8:a4:
2a:28:f2:83:76:0c:f0:35:30:35:71:1a:69:94:2f:4a:02:82:
2b:c4:ce:f1:a4:cb:c3:0b:9f:24:a4:f8:50:e7:3b:40:c1:55:
ea:1c:b6:c8:42:1f:46:c3:a0:ed:1e:c3:85:ec:f3:9e:87:b8:
4d:7b:16:46:e0:bf:dd:2f:b5:40:4d:47:56:56:de:fd:57:bc:
ec:52:ee:4e:6a:f6:70:3b:af:5c:40:48:ec:3e:1c:36:af:fc:
ef:95:ba:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:19 2024 by rpki-client on console-ams.rpki-client.org