Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8vr-IuGZ38HUyOnKBkALSsgtPTk.roa
File: 8vr-IuGZ38HUyOnKBkALSsgtPTk.roa (raw, json)
Hash identifier: U7/blB714HDOCEmA+lHptlQpYaatCu8dmLMg8lPek1g=
Subject key identifier: F2:FA:FE:22:E1:99:DF:C1:D4:C8:E9:CA:06:40:0B:4A:C8:2D:3D:39
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185FD2DFFD9BCECBAFA49ED421145D50D86
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8vr-IuGZ38HUyOnKBkALSsgtPTk.roa
Signing time: Sun 29 Jan 2023 10:58:48 +0000
ROA not before: Sun 29 Jan 2023 10:58:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 194.5.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fd:2d:ff:d9:bc:ec:ba:fa:49:ed:42:11:45:d5:0d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 29 10:58:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2fafe22e199dfc1d4c8e9ca06400b4ac82d3d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:6b:47:20:e9:f2:26:01:6c:5c:a1:32:31:
84:de:2b:b6:8c:d2:02:18:a0:2a:06:6f:1a:52:e0:
68:ff:88:d1:4d:15:57:aa:df:1d:77:1f:bc:8b:ab:
61:7f:7e:67:0c:6c:bd:51:20:7b:c0:b3:e9:3d:a3:
6b:c9:12:2f:ad:e7:f8:24:8f:09:fa:2b:ac:ec:46:
23:93:0c:85:7f:3d:cd:f0:d2:a2:db:e2:84:8a:8b:
70:63:56:f7:7b:e3:69:dd:9a:7f:dc:1e:dc:24:7c:
73:a7:0a:99:a7:d9:91:4d:54:d7:15:86:7c:3e:ba:
94:15:df:07:bf:a1:e7:2e:cd:8e:9f:a6:41:cc:69:
07:5a:6e:e0:41:4a:1c:20:5b:c6:9c:22:e0:ab:f1:
e0:69:3b:d0:fc:14:93:16:37:1f:e8:75:ef:9d:f6:
0f:3a:37:84:6b:53:2e:5f:96:5e:02:7f:7d:31:57:
50:e9:3b:32:8f:70:49:1e:21:a9:ca:14:cc:4b:e3:
1b:8c:88:a9:ca:ae:46:ed:e3:c4:fa:de:16:15:80:
cf:d0:72:7b:e4:16:9a:cd:b1:6c:bc:13:30:f2:db:
ea:d8:d2:11:75:96:ce:79:a3:e7:06:1f:f2:21:f4:
2c:f8:4a:36:cd:69:26:89:10:2d:7a:27:00:f9:d0:
75:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:FA:FE:22:E1:99:DF:C1:D4:C8:E9:CA:06:40:0B:4A:C8:2D:3D:39
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8vr-IuGZ38HUyOnKBkALSsgtPTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
33:66:40:e5:a7:fd:17:0a:75:56:4c:eb:52:33:1e:d4:d4:20:
a9:be:e5:1d:b4:5c:e9:68:14:65:f5:e8:97:16:01:c5:56:dc:
f0:cb:6d:8a:80:b2:a9:cd:7a:30:cf:9e:b6:a2:a3:e8:29:7f:
b0:62:e3:b1:c9:b0:85:32:04:6d:48:7d:fb:76:39:eb:99:be:
0f:0c:0f:c0:47:f8:1e:90:8a:89:66:60:d0:1f:04:41:ae:93:
43:a2:86:a9:49:42:b4:cd:36:0e:36:9a:7e:56:3a:99:86:5b:
68:1a:8d:4b:09:36:7c:a7:21:4d:1a:d0:e2:cd:b9:28:9c:a9:
e3:fe:2e:05:11:a9:53:36:2b:3b:d4:a1:af:fb:e9:6d:df:74:
a3:57:c7:f5:97:eb:a4:19:b7:c2:9c:3b:49:27:bc:30:8a:6d:
a1:3f:b9:a3:1f:e8:7c:82:ad:c6:ad:db:f7:29:61:0b:4d:b0:
83:ef:4b:2a:25:73:cb:80:d7:1f:da:b5:7e:72:6a:05:cc:fb:
f8:8f:9f:0e:0a:48:d5:69:23:4c:48:97:a8:a7:b2:c4:4a:75:
7c:4e:2f:70:8c:c1:02:63:85:a7:f6:d7:50:ae:c6:de:b9:4e:
84:c8:db:3c:ac:63:93:ad:c5:de:6d:ff:e6:01:3c:7f:90:07:
b2:1a:80:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org