Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/kB-ppHl3Z7xQfxuCREq7jjQ0UUE.roa
File: kB-ppHl3Z7xQfxuCREq7jjQ0UUE.roa (raw, json)
Hash identifier: d+QftUTlZ3GgQOCl04NZCBWRIzvaR2znC9mRL7MMZr8=
Subject key identifier: 90:1F:A9:A4:79:77:67:BC:50:7F:1B:82:44:4A:BB:8E:34:34:51:41
Certificate issuer: /CN=7946c5601064101b1b54cf5c6efcd407f17911b9
Certificate serial: 01857039AB8E5C552AA09E6E43C66E2F9F70
Authority key identifier: 79:46:C5:60:10:64:10:1B:1B:54:CF:5C:6E:FC:D4:07:F1:79:11:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eUbFYBBkEBsbVM9cbvzUB_F5Ebk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/kB-ppHl3Z7xQfxuCREq7jjQ0UUE.roa
Signing time: Mon 02 Jan 2023 02:05:05 +0000
ROA not before: Mon 02 Jan 2023 02:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 194.102.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:ab:8e:5c:55:2a:a0:9e:6e:43:c6:6e:2f:9f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7946c5601064101b1b54cf5c6efcd407f17911b9
Validity
Not Before: Jan 2 02:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=901fa9a4797767bc507f1b82444abb8e34345141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ab:e0:68:a3:82:9d:7e:cc:b4:e7:92:26:f0:
02:ac:fe:ff:0c:53:96:dd:a4:87:28:fd:cf:27:3e:
a9:f0:42:8d:04:7f:60:cf:ff:fd:2d:28:2d:39:ab:
53:4d:45:8a:a4:d6:f6:53:f0:49:44:cf:92:17:43:
cc:34:f4:37:cb:ec:c1:41:9e:d2:b5:77:40:01:4d:
d6:83:6b:2f:38:4e:3b:06:7b:54:e6:80:3a:24:e5:
73:11:85:df:5f:24:03:f3:8e:13:c3:40:51:93:40:
20:92:f9:7f:c2:08:2c:a0:0b:f5:81:67:db:76:2c:
0b:6d:d5:ff:e6:f9:ee:49:13:0c:dc:65:d5:e2:1c:
17:b4:ee:63:78:b1:3f:36:91:ae:ef:51:a7:10:fe:
8d:2e:01:24:92:59:c4:23:b5:0e:74:af:7f:29:16:
ef:e9:e4:57:dc:a0:f3:60:95:1c:d5:85:db:58:a8:
b5:08:7c:45:f7:74:9d:68:92:81:d2:85:ae:51:83:
1c:3d:26:1a:41:95:aa:56:0f:83:41:b8:e9:d9:1d:
e3:ec:e9:7b:8e:ca:e0:93:e4:06:e4:b2:e0:9e:5c:
ae:a8:22:47:6b:34:c0:dc:18:35:41:3d:bf:4f:c0:
76:20:a8:5d:d4:19:e3:7b:87:c3:ee:36:a6:4e:db:
f8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:1F:A9:A4:79:77:67:BC:50:7F:1B:82:44:4A:BB:8E:34:34:51:41
X509v3 Authority Key Identifier:
keyid:79:46:C5:60:10:64:10:1B:1B:54:CF:5C:6E:FC:D4:07:F1:79:11:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eUbFYBBkEBsbVM9cbvzUB_F5Ebk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/kB-ppHl3Z7xQfxuCREq7jjQ0UUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73fe78-f00d-45f8-bfd3-f2a0e9c8c7f0/1/eUbFYBBkEBsbVM9cbvzUB_F5Ebk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.128.0/24
Signature Algorithm: sha256WithRSAEncryption
48:31:b8:cb:28:d4:dc:60:b3:ae:a1:c5:8e:f9:f8:49:9a:be:
8d:0a:89:75:46:f3:17:9f:73:90:19:66:6c:0b:94:61:43:78:
62:a5:fd:d0:12:52:73:25:fb:1f:d2:a5:65:16:3d:f7:95:0b:
7e:43:74:4d:e9:90:60:f5:b5:16:b2:b7:68:80:d4:78:e9:54:
34:5d:7d:94:6e:f7:1e:a2:0f:6a:8a:bf:93:17:01:ee:e4:21:
31:82:04:a3:68:fe:f4:c3:3d:57:13:55:b3:9b:62:24:f7:06:
15:6a:ad:09:ac:d8:cf:7a:96:a9:e7:18:d3:da:0a:13:a7:a8:
0f:a8:b7:6f:e6:f8:ee:f6:45:77:93:f9:03:bd:2e:db:03:00:
61:16:78:7e:bc:10:e7:ee:c8:56:97:c3:e9:6e:bd:72:55:bf:
7a:29:9a:f1:71:92:d2:00:56:36:90:68:3f:f3:68:66:a6:e5:
75:cd:76:5a:43:fa:34:7b:bf:9f:cf:05:1c:4f:3b:66:70:bc:
17:af:3a:8c:cc:35:27:d9:02:bb:1c:e0:6e:17:ff:a0:17:f8:
bf:37:1e:de:b0:8a:87:11:31:c6:26:7b:20:7b:53:ec:59:51:
89:0c:ef:ca:e0:cd:6f:b8:1c:a9:f3:f8:1c:34:a5:6d:5f:b5:
39:ef:53:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:19 2024 by rpki-client on console-fra.rpki-client.org