Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/aETryqDmhzQ0iQrB0auWQceqkkM.roa
File: aETryqDmhzQ0iQrB0auWQceqkkM.roa (raw, json)
Hash identifier: pd55hCsQcfJ5L/0ZzlYHOnz0qVd6b8907MGhYo3pty4=
Subject key identifier: 68:44:EB:CA:A0:E6:87:34:34:89:0A:C1:D1:AB:96:41:C7:AA:92:43
Certificate issuer: /CN=2fcdb505d1da136d009e20ef1b363b02e332519f
Certificate serial: 01856E1410E3AF99B3B04BC656AA2A364DCA
Authority key identifier: 2F:CD:B5:05:D1:DA:13:6D:00:9E:20:EF:1B:36:3B:02:E3:32:51:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L821BdHaE20AniDvGzY7AuMyUZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/aETryqDmhzQ0iQrB0auWQceqkkM.roa
Signing time: Sun 01 Jan 2023 16:04:46 +0000
ROA not before: Sun 01 Jan 2023 16:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57469
IP address blocks: 194.26.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:10:e3:af:99:b3:b0:4b:c6:56:aa:2a:36:4d:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcdb505d1da136d009e20ef1b363b02e332519f
Validity
Not Before: Jan 1 16:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6844ebcaa0e6873434890ac1d1ab9641c7aa9243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:58:8e:a4:d9:87:2d:9e:fa:2c:94:63:bd:96:
f1:f6:30:bf:ed:ae:c5:4d:a9:c2:28:17:45:50:33:
66:b1:92:ee:72:0c:da:ce:9f:43:41:b1:02:70:48:
75:d4:de:a0:74:cd:5e:67:c8:b7:37:69:58:a2:26:
3a:0c:86:d8:57:9d:11:f2:f0:38:13:95:f5:45:60:
af:56:8d:0e:64:1c:70:3d:99:7d:07:22:bf:0d:34:
d2:c3:ea:26:a1:33:0d:63:55:e4:0b:91:56:53:1a:
74:11:d7:40:8e:3d:5a:aa:0f:dc:0b:45:c8:e4:5a:
86:62:f9:f7:57:96:bf:16:aa:c7:e7:40:69:ee:69:
f4:f9:bb:5b:28:b8:05:59:15:d0:eb:0e:92:60:53:
ee:d8:22:83:de:af:b0:b5:1b:dc:10:2a:65:8a:9e:
a4:d6:e1:50:20:5e:37:47:ad:80:9a:68:31:81:de:
43:6f:8a:d6:f9:33:8c:6b:3d:e8:19:23:53:f3:88:
c2:bf:77:a9:ba:60:af:aa:c1:16:4e:04:c1:a8:31:
90:33:7e:7f:9b:c4:74:1d:f5:73:06:c5:e7:83:24:
e1:fd:db:0a:ef:ce:37:41:de:d3:7e:5b:3e:21:cf:
d0:e8:7b:7b:a5:d6:1c:06:fc:ab:62:06:93:c0:b8:
32:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:44:EB:CA:A0:E6:87:34:34:89:0A:C1:D1:AB:96:41:C7:AA:92:43
X509v3 Authority Key Identifier:
keyid:2F:CD:B5:05:D1:DA:13:6D:00:9E:20:EF:1B:36:3B:02:E3:32:51:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L821BdHaE20AniDvGzY7AuMyUZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/aETryqDmhzQ0iQrB0auWQceqkkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/2a4bfe-7688-46a1-9aff-ceb0710a0751/1/L821BdHaE20AniDvGzY7AuMyUZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.225.0/24
Signature Algorithm: sha256WithRSAEncryption
05:cf:7e:70:1c:aa:56:b9:23:c8:24:43:76:a7:96:32:ef:53:
8e:4a:ba:3f:e2:f3:eb:42:20:7f:76:7a:79:33:4c:0b:54:92:
ef:b1:c0:ad:08:37:91:71:31:b9:d2:fb:45:78:d7:49:91:f0:
5d:39:04:5b:dd:d7:d2:7b:17:9a:43:ed:46:9f:37:90:02:3a:
79:3e:83:91:f4:e0:cd:e7:5f:b8:a0:5f:bd:7d:89:01:a7:96:
0f:f5:4e:39:f2:b5:37:5d:99:a1:9a:c6:29:ff:61:7c:8f:20:
42:57:f4:c3:89:08:83:6a:07:95:86:7e:6b:ca:01:b5:86:0f:
c4:ad:db:c0:5c:4b:8c:76:ef:8d:50:1a:90:6a:07:9b:86:1f:
d3:c5:f8:9c:0c:aa:de:04:f3:9a:bd:49:6c:4b:f8:22:90:37:
4d:2e:ba:1c:a6:70:54:5c:21:5a:c4:50:ae:af:5a:18:64:9e:
f6:89:8f:48:20:b9:d9:6d:ee:be:0f:d7:d7:18:d0:b3:89:b9:
49:51:12:93:26:e2:72:c5:45:54:a9:23:80:59:a5:69:79:c5:
5d:74:2f:c5:da:53:c6:7c:ca:aa:cb:43:c6:c4:98:7d:9b:18:
71:7e:54:fe:0b:eb:cd:cd:8f:9a:db:e3:e0:6d:2d:35:52:af:
a5:43:f8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:50 2024 by rpki-client on console-fra.rpki-client.org