Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/yS0aI_9PvsstCxykwNs0WpOSNsY.roa
File: yS0aI_9PvsstCxykwNs0WpOSNsY.roa (raw, json)
Hash identifier: mnodwaOgbQNrS6vTMalziEYOVipp6eLvaTEb+643xVc=
Subject key identifier: C9:2D:1A:23:FF:4F:BE:CB:2D:0B:1C:A4:C0:DB:34:5A:93:92:36:C6
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 019001BB5C334E89E67D85E9F976A04D4DA0
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/yS0aI_9PvsstCxykwNs0WpOSNsY.roa
Signing time: Mon 10 Jun 2024 10:39:34 +0000
ROA not before: Mon 10 Jun 2024 10:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.143.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 10:54:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:01:bb:5c:33:4e:89:e6:7d:85:e9:f9:76:a0:4d:4d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Jun 10 10:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c92d1a23ff4fbecb2d0b1ca4c0db345a939236c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:6e:25:7b:6b:15:ce:6a:20:da:50:ee:41:
d7:9f:27:00:ad:10:b5:e9:72:6e:1f:1d:4a:52:2e:
1a:30:91:2d:17:45:28:8c:3a:4b:cb:fb:30:19:43:
38:4b:ac:9e:99:d1:9a:ba:f1:79:28:95:6f:ad:59:
72:2c:46:13:ad:98:89:70:0a:80:89:1d:87:5b:ac:
ec:ef:86:53:f8:5d:12:38:af:4b:fd:ee:89:6b:68:
4d:8f:ae:8c:74:df:9f:7a:97:94:fd:a3:7d:b9:8e:
84:a4:f0:51:75:41:01:60:fe:8f:77:e9:5d:58:a8:
d8:6b:9a:8b:bd:40:6b:18:bf:bb:25:07:da:fa:79:
82:4e:db:1e:99:22:1c:40:d5:61:8f:fa:76:68:d4:
ed:96:9f:4f:e7:73:e2:ee:87:41:65:f7:ec:ef:77:
4f:7f:6f:5b:70:f5:d3:db:ae:b3:33:60:c4:df:4f:
2a:58:6b:c9:d3:9a:88:79:9e:6d:87:44:23:8a:6f:
8c:c8:e4:26:10:76:bd:45:4b:b5:68:ea:01:ee:94:
83:76:44:be:f9:0a:d9:92:cd:a9:19:90:46:a4:29:
47:d8:b9:b2:47:de:0c:a1:08:93:08:90:6d:c0:37:
58:d1:33:11:8e:a4:8d:ba:ef:7b:84:20:24:0d:11:
fb:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2D:1A:23:FF:4F:BE:CB:2D:0B:1C:A4:C0:DB:34:5A:93:92:36:C6
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/yS0aI_9PvsstCxykwNs0WpOSNsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.214.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:69:e7:82:f7:f3:5e:3c:43:0e:ea:68:90:22:2e:d5:02:32:
f2:93:b9:4d:2d:f2:8e:fa:09:ee:4b:72:e4:27:cc:f0:f9:e2:
b5:3b:60:c1:0c:f3:28:2e:ef:58:d3:2d:1b:ed:fa:ec:fb:20:
79:8e:55:f9:cf:ce:d4:db:55:62:43:cf:ac:71:85:ff:a9:e5:
e0:23:74:c8:fe:0b:13:c9:f4:e0:9a:94:61:07:86:b1:71:58:
59:9b:68:7c:73:ec:28:c3:de:52:fb:5a:2c:0d:40:ef:b3:d8:
97:64:73:16:e9:fe:63:b1:73:59:cd:29:7d:0e:11:f7:0d:85:
05:92:bb:9d:38:79:84:7a:15:af:06:86:0d:40:5d:69:bb:cf:
65:4d:3e:6f:82:7c:87:c5:16:3e:6c:aa:c1:d2:30:6f:61:7b:
f0:ca:ac:17:73:e2:49:ad:19:46:e3:4f:12:8c:1a:21:a1:0e:
02:9c:d5:57:07:a4:b9:63:a4:fc:8a:de:5e:4e:ec:dd:9d:dc:
57:c1:3e:dc:f6:61:3b:c5:27:52:2e:4b:c6:b6:98:80:5e:c7:
7e:b2:8d:28:b0:99:89:d9:e1:df:98:1d:5a:b7:c4:37:b3:f6:
9c:09:e6:c4:c5:83:8d:34:a1:d4:7d:bd:fc:2c:b4:3f:a9:cb:
59:84:9c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 13:12:51 2024 by rpki-client on console-fra.rpki-client.org