Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/Chxs4M5hQL_w5zmwoGmf5QRQoJQ.roa
File: Chxs4M5hQL_w5zmwoGmf5QRQoJQ.roa (raw, json)
Hash identifier: DZ7Vov1cupQcxMouTjyxYvLJfv1riABsnUTSCPThT7g=
Subject key identifier: 0A:1C:6C:E0:CE:61:40:BF:F0:E7:39:B0:A0:69:9F:E5:04:50:A0:94
Certificate issuer: /CN=6044f6ea79e4e2a3e02a8b38ed0cd3a4059138ac
Certificate serial: 01856ECB7D792384005CCFA3C93A1723D06F
Authority key identifier: 60:44:F6:EA:79:E4:E2:A3:E0:2A:8B:38:ED:0C:D3:A4:05:91:38:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YET26nnk4qPgKos47QzTpAWROKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/Chxs4M5hQL_w5zmwoGmf5QRQoJQ.roa
Signing time: Sun 01 Jan 2023 19:25:07 +0000
ROA not before: Sun 01 Jan 2023 19:25:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 194.50.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:7d:79:23:84:00:5c:cf:a3:c9:3a:17:23:d0:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6044f6ea79e4e2a3e02a8b38ed0cd3a4059138ac
Validity
Not Before: Jan 1 19:25:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a1c6ce0ce6140bff0e739b0a0699fe50450a094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:f8:ca:d6:6b:87:ba:2e:72:da:28:fd:00:
0c:4e:73:5e:b4:ba:0b:b6:07:79:78:74:cb:98:e6:
e7:3a:07:3f:ed:6b:8f:5e:d3:0d:cf:b5:68:5d:a1:
23:5c:b2:38:6e:3f:bd:88:fa:1f:8b:38:3d:fd:ba:
16:0b:f3:bc:f3:ec:f0:c8:94:54:90:b3:27:ac:40:
14:96:95:04:77:e0:88:eb:ef:14:78:62:0c:ad:ac:
aa:3f:80:94:47:15:c0:ab:a5:11:60:e1:fb:5f:7c:
f3:0e:1a:08:53:36:5f:11:1c:40:de:f7:12:f7:4a:
01:93:5b:63:5f:b2:b1:98:b4:e4:c9:48:1d:32:06:
a9:5e:f6:06:c8:4f:43:bb:01:87:6e:68:26:7f:53:
59:71:01:b2:3d:8d:c6:60:ab:c3:e9:c2:ee:f0:03:
ae:d8:2f:65:85:c8:9b:e8:47:4e:33:76:7d:34:d2:
74:da:55:98:45:e5:c0:de:40:a3:18:21:36:77:ec:
44:9d:c0:13:70:4a:aa:3e:d7:19:b5:e8:fb:ec:f0:
07:4e:36:b7:89:3c:2e:de:e4:12:26:a3:dd:26:98:
8c:09:ea:b2:47:45:f6:33:85:44:1d:17:f1:57:0a:
1c:bb:7c:36:c4:78:a6:3d:bf:2b:39:41:43:7e:e2:
3c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1C:6C:E0:CE:61:40:BF:F0:E7:39:B0:A0:69:9F:E5:04:50:A0:94
X509v3 Authority Key Identifier:
keyid:60:44:F6:EA:79:E4:E2:A3:E0:2A:8B:38:ED:0C:D3:A4:05:91:38:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YET26nnk4qPgKos47QzTpAWROKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/Chxs4M5hQL_w5zmwoGmf5QRQoJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/611a40-b444-490c-9dee-27d608d20873/1/YET26nnk4qPgKos47QzTpAWROKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.38.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:da:5b:c3:60:8d:89:9c:47:40:34:21:31:78:16:7d:bc:7c:
cf:92:3b:1c:7f:5b:57:27:bf:19:f4:90:64:be:81:f6:31:7c:
4a:36:9c:f4:fb:6d:ae:dc:06:27:28:53:47:21:15:b3:bc:34:
2e:5e:6e:d9:8e:83:ff:fc:6f:f8:68:16:36:a3:38:dd:23:9a:
df:a5:c2:d3:93:0f:43:84:3d:27:62:15:f1:8f:06:3e:53:93:
a7:71:f7:d0:5f:d8:da:0e:4d:12:d6:4e:b2:86:d5:86:25:15:
21:ce:5b:c3:10:28:37:44:e7:6b:da:33:40:42:75:0c:af:34:
83:74:b1:e8:94:21:06:e3:25:f3:74:b8:13:aa:a5:b6:92:fe:
58:98:33:3d:6a:65:9d:41:ec:30:b1:bc:4e:f9:d0:1f:98:9b:
2b:90:3b:ee:c8:8b:16:50:13:1b:83:f8:52:68:8f:de:25:b4:
9d:9a:a8:d6:70:e3:06:92:49:0d:a6:22:d1:af:05:47:53:53:
e0:e2:f3:c0:79:c3:91:8b:06:76:9d:07:b0:d4:14:fc:dd:c5:
29:cd:c2:61:0b:03:94:25:ea:e0:1e:2a:a1:0b:ea:53:b9:77:
82:68:a4:71:1f:fe:fb:83:4b:55:9a:c9:12:77:62:db:1c:54:
55:58:c2:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:53 2024 by rpki-client on console-fra.rpki-client.org