Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/RMkG5J1mAzDohOaM_V4vf4-RjUw.roa
File: RMkG5J1mAzDohOaM_V4vf4-RjUw.roa (raw, json)
Hash identifier: mLEbzXpn7tbDCanpHEBYi6kk+MJ0WiVtpnuv3z5wwQY=
Subject key identifier: 44:C9:06:E4:9D:66:03:30:E8:84:E6:8C:FD:5E:2F:7F:8F:91:8D:4C
Certificate issuer: /CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Certificate serial: 018FB40D518F656932E5865E41043AE45530
Authority key identifier: AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/RMkG5J1mAzDohOaM_V4vf4-RjUw.roa
Signing time: Sun 26 May 2024 08:38:42 +0000
ROA not before: Sun 26 May 2024 08:38:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8648
IP address blocks: 194.97.192.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 27 May 2024 14:21:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b4:0d:51:8f:65:69:32:e5:86:5e:41:04:3a:e4:55:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af801984cc38f0a4fc5afe1adeab680c1b89e95b
Validity
Not Before: May 26 08:38:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44c906e49d660330e884e68cfd5e2f7f8f918d4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:99:44:e1:03:70:0b:c7:9c:1c:08:38:98:f3:
66:bb:88:14:aa:71:f8:45:99:7a:5b:c3:4a:ef:c8:
69:dd:83:6c:fc:b0:8d:bd:d5:6a:0c:6a:8f:b9:36:
3b:6d:5a:86:a9:72:88:a9:11:1c:c0:3c:4b:cb:55:
c8:f8:80:4b:34:b9:65:8b:a0:d6:5f:c9:01:98:c8:
52:44:90:4e:2c:91:2a:a6:db:e5:cb:37:4c:79:ae:
cd:94:14:da:77:4c:37:dd:89:c9:32:a4:99:3f:22:
87:da:1b:17:77:e9:72:d4:cb:5f:62:32:7d:52:8e:
d6:07:38:8e:01:ca:e9:cb:89:ce:ae:6b:5a:46:c6:
46:6c:95:d8:0a:c1:53:59:40:46:56:c9:94:71:cb:
f0:4b:b6:b0:62:21:83:36:5d:fa:23:48:10:76:14:
e0:b8:76:03:3a:d1:b6:7e:f3:74:e0:63:4b:8d:5a:
dd:7e:8f:cd:52:bd:c2:d2:75:54:df:08:54:3b:1d:
19:43:25:c7:3c:10:fc:85:71:8b:65:1f:d5:9e:72:
89:5a:8c:64:77:bb:b9:7e:f6:98:22:d4:ff:9f:f5:
61:d2:cb:a9:28:9e:e8:d0:07:dc:d3:8c:8c:c5:b7:
41:5c:f1:77:c5:f5:b0:6f:73:fa:d6:a7:fe:06:5a:
03:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C9:06:E4:9D:66:03:30:E8:84:E6:8C:FD:5E:2F:7F:8F:91:8D:4C
X509v3 Authority Key Identifier:
keyid:AF:80:19:84:CC:38:F0:A4:FC:5A:FE:1A:DE:AB:68:0C:1B:89:E9:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/RMkG5J1mAzDohOaM_V4vf4-RjUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bfd37c-cb12-4a9c-8f5d-4021265c39b0/1/r4AZhMw48KT8Wv4a3qtoDBuJ6Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.97.192.0/19
Signature Algorithm: sha256WithRSAEncryption
99:0d:94:ab:8a:b3:4c:c1:74:af:e8:13:0e:99:a0:e3:a8:98:
2a:e3:fc:1e:91:d5:27:bb:04:84:c1:ed:ce:73:32:00:06:53:
d7:58:1a:d2:ff:f2:9d:ba:9a:e9:b3:df:f9:37:2f:9a:ee:db:
42:56:78:ea:7f:03:44:c2:70:cf:0b:3a:e2:75:1f:5c:39:38:
36:96:de:9b:cb:58:cd:55:75:40:66:e4:60:12:28:e8:e6:26:
96:a5:0d:0a:1b:54:d6:45:f1:69:7a:5d:4f:5d:42:88:f0:27:
d4:c3:54:fa:4e:9a:93:64:40:25:34:35:c0:70:57:26:7a:a7:
8b:a2:26:12:c2:64:f6:65:5d:9a:71:64:ae:bf:ff:36:6b:d1:
2e:e2:4a:3f:8a:c3:76:dc:3b:23:d1:9d:80:fe:fd:b5:6f:71:
6f:19:e1:38:e1:01:7a:63:27:68:ff:29:b3:6c:37:2a:25:f4:
00:2c:75:71:e9:98:cd:bd:fe:3d:b0:eb:45:57:90:09:07:8f:
8b:40:9f:44:71:6e:dd:37:6f:a2:4f:36:de:a7:14:41:d9:6e:
73:71:47:3a:5d:8f:9b:01:65:41:06:de:64:f5:32:63:8e:9b:
d4:f2:6a:ef:50:1b:33:5b:96:c7:32:7e:95:5e:df:8c:06:bf:
b2:c3:9f:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:45 2024 by rpki-client on console-fra.rpki-client.org