Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SnFWJERV74MYkC6uLn6otEWnt_Q.roa
File: SnFWJERV74MYkC6uLn6otEWnt_Q.roa (raw, json)
Hash identifier: c/sOJ3xOfRiS64U9D2RJUTitTh1g8uWGw1BvKRW1y3k=
Subject key identifier: 4A:71:56:24:44:55:EF:83:18:90:2E:AE:2E:7E:A8:B4:45:A7:B7:F4
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0185FD2E0067BBD360212A0E04BBE31C52B1
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SnFWJERV74MYkC6uLn6otEWnt_Q.roa
Signing time: Sun 29 Jan 2023 10:58:48 +0000
ROA not before: Sun 29 Jan 2023 10:58:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 194.5.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 08:45:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fd:2e:00:67:bb:d3:60:21:2a:0e:04:bb:e3:1c:52:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 29 10:58:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a7156244455ef8318902eae2e7ea8b445a7b7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:2a:92:25:f2:79:19:d0:b8:66:08:8d:95:
00:dc:f6:2f:42:41:6d:03:6a:24:68:a2:7a:11:92:
37:b8:fa:e9:2c:50:9c:79:f5:51:cd:b8:99:b5:c8:
d6:3e:df:32:09:a9:d5:ad:83:40:f2:3e:f8:9e:8c:
68:3b:7c:2b:58:e8:10:8c:e6:0d:70:e0:45:89:00:
f6:95:76:71:03:66:8e:3f:78:fa:7c:db:5e:68:56:
f9:76:be:89:f6:31:66:b9:c4:a3:bc:7e:e0:9e:db:
c7:10:17:e2:a7:61:5b:2d:f9:ea:28:fc:bc:a9:78:
5c:db:18:2c:07:74:47:ba:9e:22:14:89:38:2e:23:
a1:e1:1c:f3:8b:44:6a:b2:5e:31:16:c7:21:d4:93:
60:0f:bf:ff:85:1d:ba:f3:c0:bb:92:5e:90:90:0a:
34:bf:4b:61:4d:c0:c7:4b:48:47:56:c2:07:08:05:
da:1d:84:ed:16:c2:73:f2:0c:c6:da:ca:ee:a6:21:
37:57:f5:d8:99:63:2b:cb:57:22:e7:58:34:57:4b:
e7:00:19:05:d3:33:13:f6:cb:3d:b1:51:d6:f2:2c:
d5:60:a9:25:47:ea:37:dd:bc:02:e0:c3:a2:9f:0e:
80:9a:38:fc:a0:6b:24:c5:89:a3:41:9f:31:2f:34:
b2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:71:56:24:44:55:EF:83:18:90:2E:AE:2E:7E:A8:B4:45:A7:B7:F4
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SnFWJERV74MYkC6uLn6otEWnt_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
42:1c:74:c0:5b:ed:82:18:69:79:65:4b:01:ea:43:74:2f:97:
2c:a4:13:9c:d4:18:00:3f:a2:5a:34:45:4b:fa:c9:8e:00:5d:
fb:23:dd:a7:12:d1:87:bd:92:bb:49:7a:fc:b4:f6:d0:cd:97:
75:3c:1c:04:dd:d2:6e:4c:e0:44:1f:ad:8c:67:d5:78:97:a4:
4e:2d:ee:37:18:77:16:d8:60:b7:c5:fb:69:68:7c:48:cc:36:
c7:1e:9b:4a:5e:22:0f:c6:bf:e2:16:7d:61:d7:ef:0d:76:d6:
bc:85:25:bc:4e:a2:03:bd:5e:51:dd:eb:92:e0:08:c1:a4:59:
b6:77:8c:e7:a4:18:d2:2f:c5:6a:df:fd:13:9e:66:44:79:0e:
e0:85:d9:11:c1:74:19:19:08:76:4b:5d:0d:29:04:2b:eb:55:
85:8d:9e:8f:fe:30:1c:91:87:9f:fe:f0:cd:39:0b:30:c8:f0:
65:5e:eb:7c:77:b8:bd:f2:78:14:f0:00:45:c8:f8:6c:97:fd:
c7:d6:85:bb:f6:6b:66:ff:c9:03:ae:28:b0:31:b2:76:6e:f7:
a5:26:38:0c:5a:08:70:66:49:6b:71:72:ba:44:1c:cd:f9:28:
0f:a1:c5:08:bc:d1:8c:15:22:9e:9f:b4:7b:7a:9f:05:ef:23:
64:10:ad:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org