Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CrXA91rdlFd16O9_lf906fB_TmY.roa
File: CrXA91rdlFd16O9_lf906fB_TmY.roa (raw, json)
Hash identifier: x+gaZKjz2CJXQglu7cdS8mS5dXjasjSi+HI9ty6EA7o=
Subject key identifier: 0A:B5:C0:F7:5A:DD:94:57:75:E8:EF:7F:95:FF:74:E9:F0:7F:4E:66
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 01884DA2A645EE123373331C9DF6BBC9B4E3
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CrXA91rdlFd16O9_lf906fB_TmY.roa
Signing time: Wed 24 May 2023 12:01:25 +0000
ROA not before: Wed 24 May 2023 12:01:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 194.5.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 08:18:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:a2:a6:45:ee:12:33:73:33:1c:9d:f6:bb:c9:b4:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: May 24 12:01:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ab5c0f75add945775e8ef7f95ff74e9f07f4e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bd:4f:79:e6:66:ef:fd:0a:70:41:f2:d4:b8:
12:2b:33:08:4e:db:ec:54:33:30:f9:63:28:e1:28:
2a:69:31:77:42:28:17:c4:e9:72:40:d6:48:1b:be:
a2:7f:73:d3:ef:50:69:b9:28:52:47:8d:02:dd:be:
9d:74:b4:1c:64:85:58:d4:b5:29:5b:0b:f0:74:ad:
e5:7c:9e:83:c9:6b:4d:39:48:10:8d:b1:b8:b6:08:
35:3d:0a:e3:8c:ec:19:6b:10:3c:d2:20:2f:ff:e3:
bb:23:92:1f:f6:fd:a5:9b:de:8a:87:a2:b3:9b:ce:
f8:6c:8b:11:d7:95:d1:3e:85:cd:45:eb:e4:48:bf:
89:96:ac:e9:33:fd:fa:9b:53:14:ff:60:a1:4c:c4:
f4:93:42:a1:fc:9c:22:a6:c0:6c:a4:54:60:6a:9e:
91:d4:14:fa:55:ad:23:ff:db:ba:e1:a4:74:f6:94:
a5:6f:0b:df:ba:bb:9b:de:8d:92:35:d2:4b:6c:e6:
eb:55:42:40:27:0b:2f:10:68:17:0d:da:84:8f:50:
e9:02:43:18:1e:a4:46:e3:ed:84:df:8e:0f:7d:9e:
7d:b0:78:26:bd:e1:86:9a:06:2a:a6:92:7c:4b:eb:
c4:b5:5e:06:b5:e4:04:6a:fc:d5:9a:9c:ab:e4:89:
63:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B5:C0:F7:5A:DD:94:57:75:E8:EF:7F:95:FF:74:E9:F0:7F:4E:66
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CrXA91rdlFd16O9_lf906fB_TmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ae:01:9a:7d:a5:a9:05:22:6d:82:0f:6f:84:08:98:2b:69:
b5:74:8e:82:ea:4d:c3:a9:13:44:34:f2:37:56:f4:7c:d2:b7:
e5:cd:d2:60:a3:ff:f5:a9:b5:01:5a:a4:89:73:5f:4f:5f:57:
59:1d:6d:26:5d:e5:a2:27:ea:f4:fd:d9:82:41:bc:0c:85:5a:
17:78:09:24:8a:0a:e8:ff:05:4a:e8:cd:b5:b8:54:91:de:01:
40:4d:8a:dc:8d:52:21:f2:f0:93:15:ff:c8:e3:bf:2b:5a:19:
69:9b:f8:f4:09:59:d3:97:5e:b7:21:4b:dd:d2:17:3d:9a:94:
d9:d8:ce:14:54:ed:7c:c0:89:bd:a2:c4:53:a4:8d:16:27:2a:
b3:3b:d6:fb:a6:02:c7:3c:3c:e9:71:a7:5b:b6:4a:d6:aa:23:
97:d7:06:d5:d0:42:dd:46:fc:a8:70:4a:7f:22:85:73:80:64:
41:9a:82:05:06:c8:00:96:0c:5b:54:d9:74:6b:05:1b:82:08:
65:17:40:44:db:ec:6b:a9:5a:e9:2a:a1:40:ed:1a:3d:c7:04:
01:a8:e4:7a:0d:55:84:d3:50:18:93:c7:6a:b9:9d:06:c1:28:
24:df:0a:a5:52:1d:0e:5b:16:67:39:16:1f:01:91:e3:1a:52:
38:69:0f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org