Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cE2_1g94zG1gocePBqd0AYQ1LA0.roa
File: cE2_1g94zG1gocePBqd0AYQ1LA0.roa (raw, json)
Hash identifier: faIOgJU1edkGhJZ8w23wm2msUhb1UsjI76/wQTzE6F4=
Subject key identifier: 70:4D:BF:D6:0F:78:CC:6D:60:A1:C7:8F:06:A7:74:01:84:35:2C:0D
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A4BA870BFFB98573BF685F413460C5CC3
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cE2_1g94zG1gocePBqd0AYQ1LA0.roa
Signing time: Thu 31 Aug 2023 12:54:04 +0000
ROA not before: Thu 31 Aug 2023 12:54:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216396
IP address blocks: 194.5.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:a8:70:bf:fb:98:57:3b:f6:85:f4:13:46:0c:5c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Aug 31 12:54:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=704dbfd60f78cc6d60a1c78f06a7740184352c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3b:ce:c6:8a:8e:09:5d:d8:a1:95:64:0b:89:
b7:21:03:70:93:fb:0f:7b:1d:56:d1:1e:2a:de:cf:
1f:76:1c:2c:dc:b3:31:98:dc:d0:09:d4:65:67:41:
77:22:7b:fc:74:d3:ea:9c:65:b5:ee:9b:ee:ac:b1:
e2:e7:b2:21:06:6e:0e:94:fb:4d:07:95:8d:f4:53:
0d:5a:98:b1:da:7c:30:4e:03:1a:8e:fb:97:99:7a:
8d:6d:e2:b2:71:50:58:6a:24:03:ef:32:93:b6:82:
45:c9:c9:8e:cf:63:da:aa:9f:b5:c9:bb:07:14:e5:
4f:ca:52:e4:2d:44:db:69:cb:58:84:91:dc:86:d3:
42:21:67:4a:d6:e8:0a:e8:41:c4:ed:d4:84:ff:a5:
a3:89:e4:1b:d2:82:70:c2:02:c3:42:30:f9:9f:52:
a4:75:95:47:99:81:de:cb:8e:c4:b2:75:e2:1c:eb:
3d:09:33:99:a7:73:ec:8c:70:5e:d6:f3:a1:2b:da:
86:24:52:44:b8:67:f7:2d:fa:15:5d:bb:67:aa:80:
e7:d7:ab:53:ff:ff:93:e8:8b:0a:3b:fa:e3:59:37:
4a:55:9f:90:26:cf:01:98:d1:f9:fe:e2:56:c3:eb:
b8:a0:36:64:63:1e:7b:17:7d:67:79:0e:fa:1a:f9:
3c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4D:BF:D6:0F:78:CC:6D:60:A1:C7:8F:06:A7:74:01:84:35:2C:0D
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/cE2_1g94zG1gocePBqd0AYQ1LA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.65.0/24
Signature Algorithm: sha256WithRSAEncryption
69:26:c5:a4:44:3c:ec:22:4e:b7:8c:c1:f6:8f:85:7e:ce:89:
ad:ed:49:a6:41:56:f7:f7:e7:55:9a:b4:6a:4d:43:f2:89:c2:
41:08:a1:4e:29:f4:c8:67:8b:48:7b:92:a6:a4:54:14:28:fc:
34:b2:e3:12:b2:cf:1a:d5:43:4d:69:e9:db:5d:ae:b3:39:8a:
ea:e2:04:aa:9c:31:61:82:81:41:f7:80:a9:ce:45:fd:ca:63:
cf:89:c5:a9:2e:d3:9f:4e:21:4b:64:ec:61:08:35:13:1a:13:
90:85:b6:56:ab:e4:f8:82:68:13:9a:3d:31:0f:54:de:28:d4:
7f:23:fd:86:7d:14:77:05:49:e2:5a:cd:20:ce:8a:99:01:9b:
f9:d8:99:50:84:c1:00:27:16:18:c2:26:20:9b:9b:fb:ea:11:
51:ed:3d:5e:f1:3a:ed:3c:0d:a2:c9:e6:1c:2b:36:1b:9a:eb:
81:e6:98:9c:6a:4b:40:e2:d0:4d:cb:8b:a4:5c:f8:e9:b9:a6:
31:61:e5:3a:98:ab:dd:a6:0d:e1:3d:8d:f5:02:d5:0f:5f:af:
5e:24:08:a0:73:78:92:44:72:87:4a:df:ff:71:f3:85:1f:7b:
97:8b:35:fb:3a:92:df:a5:0f:33:1a:95:ef:c8:c8:10:36:83:
1b:39:28:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org