Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/XNjLomzqmHV63m0CDITOgt_0QD8.roa
File: XNjLomzqmHV63m0CDITOgt_0QD8.roa (raw, json)
Hash identifier: ZWRmFC/eOaMStlXqeOLy7M5ILs4bG8fF8oef7pNCvFI=
Subject key identifier: 5C:D8:CB:A2:6C:EA:98:75:7A:DE:6D:02:0C:84:CE:82:DF:F4:40:3F
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 018F949FFF09021752587A972F209E74FB33
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/XNjLomzqmHV63m0CDITOgt_0QD8.roa
Signing time: Mon 20 May 2024 06:11:04 +0000
ROA not before: Mon 20 May 2024 06:11:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.143.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 15:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:9f:ff:09:02:17:52:58:7a:97:2f:20:9e:74:fb:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: May 20 06:11:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5cd8cba26cea98757ade6d020c84ce82dff4403f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7a:dc:fc:93:61:30:6f:84:3f:80:43:1f:ae:
c0:c5:3b:a8:13:73:eb:09:0e:c0:f2:89:b7:e9:88:
82:f3:7f:dd:6d:02:ee:cc:30:f4:06:fa:6e:b1:1b:
28:db:88:ae:9e:4a:33:eb:ed:f5:b8:b8:77:64:c8:
45:e0:81:dc:5e:3f:72:e5:0f:46:1e:c7:08:ad:f0:
c1:52:3f:2a:22:0b:f0:fc:d4:0c:a2:3f:75:b6:18:
21:cb:95:dd:b8:2f:a8:38:1e:da:cb:5c:63:b2:cc:
ff:2c:a1:b3:b0:21:08:00:6d:12:ce:ea:c7:5a:34:
6e:3d:bb:21:9b:f4:33:35:41:54:68:26:a0:5e:39:
98:6f:52:cb:d0:de:ef:3b:53:4e:45:e3:a2:4a:3c:
e3:67:a3:ca:fd:86:c1:08:9a:7c:d5:cd:ff:71:ac:
c5:86:49:29:e8:03:31:f8:87:88:17:81:79:e9:af:
73:df:38:cb:ff:58:22:ae:e6:be:82:5d:75:a8:18:
64:6c:59:f7:21:9a:a5:8d:de:a5:af:57:02:22:e9:
3e:ff:e0:c8:9e:85:5c:b8:f7:cc:fb:29:a2:34:6b:
46:ad:ca:ff:c2:dc:68:96:32:de:7f:65:af:fe:66:
bc:74:57:fb:75:64:ab:97:29:bf:df:eb:24:7d:c9:
7d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D8:CB:A2:6C:EA:98:75:7A:DE:6D:02:0C:84:CE:82:DF:F4:40:3F
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/XNjLomzqmHV63m0CDITOgt_0QD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.214.0/24
Signature Algorithm: sha256WithRSAEncryption
03:48:bd:e4:8f:73:59:89:b4:bb:f3:f3:0f:68:e3:aa:f1:08:
2c:4b:a6:15:e0:8b:e7:f2:cb:7e:30:6a:cc:3a:78:fb:24:d4:
c8:dc:2d:7d:02:f8:ce:5a:e4:c9:bb:e7:90:61:53:37:34:5f:
fa:79:9a:a7:1a:cb:38:f6:80:0f:f9:c5:ab:f2:28:18:b3:7f:
96:f5:ed:e7:50:4c:8c:1a:78:6f:5e:d8:06:46:3e:ad:49:fd:
ce:25:8a:e0:c3:63:fb:38:62:b3:98:08:d1:9b:10:30:cb:8b:
44:8c:96:39:45:0b:15:b7:61:1c:8a:cd:3c:5a:65:0f:b8:73:
66:e5:34:95:40:28:a5:5e:1b:16:b6:bf:22:cc:c0:11:e8:30:
17:26:e5:71:2a:95:ed:e3:45:bc:7d:29:85:80:3c:1f:b2:b0:
91:f4:e4:7e:b6:ac:84:56:90:99:4d:61:f9:8c:7f:a1:94:a9:
ea:81:91:15:d8:e3:98:e2:51:16:fe:db:92:de:2c:ae:e2:35:
6f:48:85:6f:2e:1c:29:db:54:c2:bf:1c:2b:d4:e6:90:2e:b5:
55:aa:85:bf:fb:78:fa:a1:19:6c:a1:2d:10:4d:05:07:d9:9a:
71:cd:5b:c7:fc:bd:8f:9d:e5:ec:f7:6c:c1:23:19:f5:e9:bc:
e4:91:e9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:40 2024 by rpki-client on console-ams.rpki-client.org