Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/r8EpfXHDKc094Zu58-5w0LTB2N8.roa
File: r8EpfXHDKc094Zu58-5w0LTB2N8.roa (raw, json)
Hash identifier: WvZWnRusroymOilhW6R2C8n37vaBBfDx4Uyoty7xvRw=
Subject key identifier: AF:C1:29:7D:71:C3:29:CD:3D:E1:9B:B9:F3:EE:70:D0:B4:C1:D8:DF
Certificate issuer: /CN=9a70b051e5cdf962dbc26b352488d0831bdf9a3c
Certificate serial: 018570307294E1616CCBB7AAEB6A7405C5AF
Authority key identifier: 9A:70:B0:51:E5:CD:F9:62:DB:C2:6B:35:24:88:D0:83:1B:DF:9A:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnCwUeXN-WLbwms1JIjQgxvfmjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/r8EpfXHDKc094Zu58-5w0LTB2N8.roa
Signing time: Mon 02 Jan 2023 01:55:01 +0000
ROA not before: Mon 02 Jan 2023 01:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39756
IP address blocks: 194.126.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:72:94:e1:61:6c:cb:b7:aa:eb:6a:74:05:c5:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a70b051e5cdf962dbc26b352488d0831bdf9a3c
Validity
Not Before: Jan 2 01:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afc1297d71c329cd3de19bb9f3ee70d0b4c1d8df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:bd:c4:11:49:1f:22:37:34:60:19:ae:06:
3b:16:cc:af:38:78:59:83:2f:b9:43:84:0c:c5:e8:
37:63:ed:a3:c2:48:f3:c0:9a:ed:af:a8:23:b4:c3:
f6:5b:4c:3a:66:6e:12:66:6e:56:cb:32:4d:d2:a6:
30:63:33:46:0c:9c:2d:07:28:2d:0b:c7:a1:c3:e7:
d2:be:48:71:79:87:9b:2f:5b:ab:86:f6:0f:6f:98:
eb:68:ae:c0:96:e2:f0:32:68:15:b1:a9:29:47:24:
43:75:b5:6d:81:c6:a3:ee:6d:42:79:75:01:42:de:
78:f1:94:97:3f:cc:62:3c:fa:0d:c0:db:30:f7:ea:
d4:f8:0b:ab:b9:bb:4c:1d:f7:0e:ed:e6:13:2b:8d:
3c:b9:7e:d9:a6:05:8e:24:ca:71:6b:b7:42:d4:b9:
99:3c:f0:7b:cc:65:94:6c:d4:01:99:fa:28:dd:58:
d5:c8:cd:21:8e:12:d6:8c:be:cb:ed:63:c0:48:ef:
6c:b0:e4:35:43:e2:78:0a:3a:94:45:e7:e0:08:52:
72:52:84:8c:af:b3:c0:2d:78:a0:da:da:cd:a6:35:
95:e5:9b:d5:e6:69:fb:24:6b:67:8b:e3:92:63:fb:
1d:6c:3c:62:f2:16:c6:a9:6b:3b:9d:3f:04:0a:5e:
55:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C1:29:7D:71:C3:29:CD:3D:E1:9B:B9:F3:EE:70:D0:B4:C1:D8:DF
X509v3 Authority Key Identifier:
keyid:9A:70:B0:51:E5:CD:F9:62:DB:C2:6B:35:24:88:D0:83:1B:DF:9A:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnCwUeXN-WLbwms1JIjQgxvfmjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/r8EpfXHDKc094Zu58-5w0LTB2N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f9691d-afb2-41f2-8d22-fa46b4f9a20c/1/mnCwUeXN-WLbwms1JIjQgxvfmjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.253.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:46:45:be:ca:e5:35:6a:06:c0:f0:1b:04:01:d2:8b:3f:a8:
26:ba:af:ab:01:5b:e0:1b:44:c5:1d:2c:65:f0:ba:da:33:e6:
31:93:4f:d8:7d:a4:96:c7:9d:de:37:37:fb:bf:e6:d8:32:2e:
19:c0:0a:48:fa:2e:64:86:1f:0b:2a:4d:7b:aa:8e:32:f0:1b:
b2:c8:3e:7e:46:a2:a6:8b:4d:14:5f:5b:16:54:11:68:21:1f:
78:9e:33:cb:73:09:98:6e:d0:bc:c4:35:b8:8a:ea:d5:71:94:
bb:eb:8f:f6:14:58:11:50:20:7a:8f:aa:30:3c:be:19:fc:73:
de:2f:1e:6a:97:7d:33:f0:11:13:5c:29:e0:56:4c:f1:01:dc:
37:67:ba:61:5d:52:4e:a1:82:51:88:73:2c:7b:4a:ea:99:04:
69:54:81:84:15:bc:c0:bf:a7:69:ac:64:70:86:43:8c:a9:9e:
00:ea:58:20:fb:24:9e:24:e4:f0:9f:ed:3e:43:33:42:77:95:
cc:1e:36:b2:20:c5:ad:2d:6c:dd:b7:25:5f:b8:cb:81:05:26:
de:25:f7:67:8b:bf:96:ce:45:31:72:b1:76:16:da:88:ce:81:
9b:ad:04:ee:87:95:e6:dc:c0:56:30:80:7c:4d:5f:0b:d9:56:
33:1b:cc:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:56 2024 by rpki-client on console-ams.rpki-client.org