Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/eOHZVC1S3zqxHM6fcJlYTdKX3mY.roa
File: eOHZVC1S3zqxHM6fcJlYTdKX3mY.roa (raw, json)
Hash identifier: IVfQ4zUDEBZa0xv5//RxvKp0r+3zDLIovN4s/EqXxnI=
Subject key identifier: 78:E1:D9:54:2D:52:DF:3A:B1:1C:CE:9F:70:99:58:4D:D2:97:DE:66
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B635877EA5D8B0529B32D05CE54475
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/eOHZVC1S3zqxHM6fcJlYTdKX3mY.roa
Signing time: Mon 02 Jan 2023 09:00:44 +0000
ROA not before: Mon 02 Jan 2023 09:00:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50926
IP address blocks: 194.35.43.0/24 maxlen: 24
37.32.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:35:87:7e:a5:d8:b0:52:9b:32:d0:5c:e5:44:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78e1d9542d52df3ab11cce9f7099584dd297de66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:86:60:f2:67:2f:51:d9:24:ec:9a:a2:6b:f7:
ce:75:0b:ac:21:0f:61:6e:7e:c2:99:c1:59:f7:2e:
a2:8e:fe:f2:67:c3:16:ac:96:48:df:15:78:86:bf:
06:eb:da:1a:aa:79:0a:ec:d2:13:e7:30:af:34:04:
21:f4:ce:90:ca:90:87:30:17:f3:96:d6:60:66:14:
00:3a:1d:12:9d:98:c8:27:0b:8f:ae:69:3f:a9:41:
bb:f4:e8:79:83:8d:68:b2:f5:05:19:e7:30:70:8f:
b2:60:17:a3:86:9c:53:43:74:71:32:3d:01:df:b3:
76:f0:e7:49:16:43:ca:9a:f7:2b:f4:08:a8:1c:d0:
c8:fd:63:cb:8e:66:68:8e:77:bd:a5:ae:82:a1:e7:
48:fe:50:26:bf:3b:ca:e7:a4:3f:02:4b:f0:5f:a2:
13:5a:5a:66:5b:e0:3d:0c:da:28:95:d7:2f:4a:59:
bb:3f:bf:4d:c4:73:6a:d1:9b:9a:aa:b6:32:17:f6:
60:3a:cb:e6:b3:d4:3c:25:94:f4:fd:63:64:97:a5:
ba:fc:26:0f:db:92:24:6d:34:d5:25:2c:a9:0d:36:
11:c7:65:a2:dc:fe:27:8e:c4:1b:79:06:48:2a:a8:
0e:1b:7e:1b:42:88:fa:66:19:ed:6a:a0:a0:23:b6:
47:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E1:D9:54:2D:52:DF:3A:B1:1C:CE:9F:70:99:58:4D:D2:97:DE:66
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/eOHZVC1S3zqxHM6fcJlYTdKX3mY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.98.0/24
194.35.43.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:e1:bd:39:47:bd:60:8b:fc:5c:17:66:e6:10:1d:26:c2:ad:
81:a2:7d:2b:19:37:e2:9c:b6:8f:cb:29:41:a0:6c:6b:7e:af:
2d:27:7d:2e:f8:cc:83:bd:33:55:1b:69:ef:11:e1:29:20:37:
61:87:fd:13:3d:a6:19:28:86:f3:4e:46:78:30:1a:44:57:78:
3c:94:a1:39:18:c2:99:70:36:23:3e:76:c8:42:f4:92:b9:69:
48:0c:97:f5:cb:9d:91:e3:8d:f6:8b:1f:7f:c9:d7:70:e9:c1:
34:25:3e:b8:9f:eb:5a:fb:71:19:ef:80:b5:9b:06:1b:1b:64:
db:41:a4:fd:45:8b:7f:96:b8:e8:c8:98:d3:2e:52:18:dd:78:
ea:ef:91:3f:98:65:91:0a:17:5d:78:11:a8:17:79:e6:57:ce:
3c:a1:4d:75:e5:b1:f4:07:e5:4f:d8:e1:fe:e1:42:12:16:e7:
1b:d9:72:15:fb:aa:f3:e7:26:2c:8a:c0:2c:1e:86:91:92:19:
0e:8d:56:46:3c:4a:7d:04:a8:2e:2e:57:50:a3:57:66:12:79:
45:c2:dd:4d:b7:01:89:91:69:71:24:09:2d:0e:ec:eb:2b:80:
ae:12:83:ea:5a:79:31:66:3d:44:f5:0a:99:cd:a3:4d:f3:9e:
38:8e:cb:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org