Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aLpcOmfLge8SLoa-3rto8EyhS00.roa
File: aLpcOmfLge8SLoa-3rto8EyhS00.roa (raw, json)
Hash identifier: /WsUugFuTzuWsVRfjyiLKXx1Xhp30oNK+O/ibR5L6zY=
Subject key identifier: 68:BA:5C:3A:67:CB:81:EF:12:2E:86:BE:DE:BB:68:F0:4C:A1:4B:4D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B645AD18E976F309CCA84E82E73B43
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aLpcOmfLge8SLoa-3rto8EyhS00.roa
Signing time: Mon 02 Jan 2023 09:00:48 +0000
ROA not before: Mon 02 Jan 2023 09:00:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210472
IP address blocks: 194.26.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:45:ad:18:e9:76:f3:09:cc:a8:4e:82:e7:3b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68ba5c3a67cb81ef122e86bedebb68f04ca14b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0e:91:97:61:3c:34:69:f0:68:ed:42:85:4a:
d0:f5:09:58:94:3c:8e:65:af:3e:45:8b:47:ef:b7:
1c:bd:7b:c7:2a:ae:fa:33:24:c7:fb:d7:e8:f1:3a:
07:1d:dc:e1:f8:4a:fc:8b:e9:b5:3e:7d:b8:14:86:
2a:3e:12:6d:fb:42:c1:db:e3:57:d7:a2:01:52:e7:
a0:1e:8a:0e:7c:3d:23:c0:0f:35:f3:71:b9:66:1f:
e7:5a:09:8c:b0:9f:23:e2:51:2b:50:37:24:ff:8e:
80:f0:52:7a:1f:cd:54:fa:e4:fd:2f:63:99:89:c9:
a1:5b:fd:05:43:95:59:12:2d:c5:a0:05:8f:be:73:
3f:09:48:b8:c8:dd:1f:7f:02:ef:bf:d3:35:d1:97:
fc:6d:34:8b:40:b1:0c:ef:59:95:f1:9f:b7:2c:c0:
9d:22:84:c0:f6:bc:fb:b7:6b:30:d0:dd:8f:07:5f:
64:2f:92:b6:68:dc:61:9b:6f:d8:f9:59:db:78:2b:
2a:d1:25:89:77:7b:2c:34:50:97:ee:fa:de:60:60:
19:6b:b9:85:bb:2c:09:d4:53:bc:15:bb:74:4d:f6:
17:88:51:ef:9e:d2:fa:1d:05:b5:79:24:96:0a:1c:
5a:6b:c2:2b:f7:fe:be:69:68:b8:61:3f:73:25:38:
98:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:BA:5C:3A:67:CB:81:EF:12:2E:86:BE:DE:BB:68:F0:4C:A1:4B:4D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/aLpcOmfLge8SLoa-3rto8EyhS00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.172.0/23
Signature Algorithm: sha256WithRSAEncryption
30:1a:37:a1:50:8a:8c:fb:d9:c9:8c:3c:a5:49:26:ae:13:35:
44:7c:32:ad:4c:2a:1b:cc:5c:6a:8a:00:5f:c1:ec:97:43:95:
14:43:e7:24:ff:34:f0:3f:8b:a7:05:f6:a1:27:6a:59:10:2e:
64:48:33:31:96:43:6c:ff:08:1c:81:ee:8d:25:94:9a:de:a6:
5a:02:eb:cf:d2:68:7d:dc:bf:a9:2c:0a:b7:95:3c:f7:1e:ef:
3a:9e:56:5f:e7:b8:12:66:24:c1:7d:85:a6:3d:3c:6f:e8:7a:
a5:92:f4:97:1e:56:ed:10:1b:99:ec:61:bd:45:90:e0:d1:cf:
b1:90:9e:92:72:95:b2:ab:f3:e7:b5:04:89:79:df:67:0e:79:
66:11:45:4b:68:4d:32:88:3b:fe:11:03:c5:b4:66:86:99:5b:
c2:e9:ec:d2:b5:85:a2:9c:a9:22:80:ac:b0:ad:53:f1:48:c5:
72:62:9e:62:df:46:ac:52:eb:c5:25:27:2b:42:95:5a:41:3d:
f7:0e:b3:53:5e:b9:2b:0c:a1:fa:56:f6:d2:98:c5:ae:ed:ee:
8b:8a:f3:93:9c:7b:01:48:2c:9a:e7:14:a2:1f:a2:60:e9:8a:
69:b8:e0:b7:67:99:90:bf:fc:f0:d2:de:1e:f9:48:fd:85:32:
b4:9f:50:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org