Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/x1vcv5hlYMKc2idJub6j3VDagpM.roa
File: x1vcv5hlYMKc2idJub6j3VDagpM.roa (raw, json)
Hash identifier: SW8WB55JW0qOjnyMuRoeLDV76K537TsSvfBiecXo5yo=
Subject key identifier: C7:5B:DC:BF:98:65:60:C2:9C:DA:27:49:B9:BE:A3:DD:50:DA:82:93
Certificate issuer: /CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Certificate serial: 018573682F24CE4FF1383D6F73DAA086D63A
Authority key identifier: 7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/x1vcv5hlYMKc2idJub6j3VDagpM.roa
Signing time: Mon 02 Jan 2023 16:54:45 +0000
ROA not before: Mon 02 Jan 2023 16:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35106
IP address blocks: 194.69.104.0/23 maxlen: 24
2a01:110:9008::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:68:2f:24:ce:4f:f1:38:3d:6f:73:da:a0:86:d6:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ce68daf5f089456c0e1d02245393531ac5b8fcb
Validity
Not Before: Jan 2 16:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c75bdcbf986560c29cda2749b9bea3dd50da8293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:1b:ee:3a:95:4b:51:89:3d:88:01:6e:3d:f5:
17:c5:83:74:7c:0f:71:40:57:45:a5:0e:8d:38:d3:
cb:b4:6a:42:24:0d:d4:62:10:31:b0:a4:d0:cc:05:
63:ca:b0:73:b1:1e:23:2d:92:94:1d:b4:a2:c2:6e:
7a:7d:ea:a2:02:3a:97:73:d2:2c:f1:aa:62:02:81:
57:82:60:67:67:d7:cb:7c:fb:b4:67:05:26:84:8d:
3c:35:a3:37:36:57:8c:6a:6f:47:48:73:71:ec:69:
3d:18:1c:7b:70:94:f5:9a:4e:af:7a:02:6f:62:f3:
73:85:76:bb:39:aa:2e:34:61:13:20:b6:91:70:b8:
e1:ba:2c:d3:5b:06:05:bd:c0:b9:c9:2d:e9:95:6f:
41:57:93:b8:5f:b6:ed:07:8f:11:b0:7c:25:82:89:
09:4e:ed:99:e2:14:9f:bb:5f:87:d8:f5:79:bd:5e:
37:d4:86:9b:b4:df:b4:5b:1c:68:8c:fb:32:69:86:
6f:ad:a4:75:c2:a6:ef:7f:81:18:52:54:95:37:37:
78:3c:ec:9e:54:2a:ac:20:7d:79:84:9f:aa:86:74:
6b:0a:39:ca:cb:76:cc:d8:4c:49:e4:7e:d7:14:98:
19:6e:ac:8f:f7:9a:77:80:e0:fc:96:98:0d:e0:98:
ad:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5B:DC:BF:98:65:60:C2:9C:DA:27:49:B9:BE:A3:DD:50:DA:82:93
X509v3 Authority Key Identifier:
keyid:7C:E6:8D:AF:5F:08:94:56:C0:E1:D0:22:45:39:35:31:AC:5B:8F:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fOaNr18IlFbA4dAiRTk1Maxbj8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/x1vcv5hlYMKc2idJub6j3VDagpM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ec0b89-1e68-45a0-8b93-13a06a269aa8/1/fOaNr18IlFbA4dAiRTk1Maxbj8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.104.0/23
IPv6:
2a01:110:9008::/48
Signature Algorithm: sha256WithRSAEncryption
92:28:e2:62:dd:cb:92:d3:d0:ed:f8:66:98:2c:ea:fc:c5:bc:
a7:ae:f1:be:6e:25:39:b0:bd:5c:e9:9c:6a:97:f9:c9:93:fa:
5a:90:c6:c6:2c:f8:8c:ea:39:a3:5b:41:35:e2:03:cd:73:d2:
8c:95:a3:64:5a:42:20:eb:24:84:a7:6f:6c:0e:89:06:59:c1:
08:68:06:cd:6b:0f:50:8c:55:9f:f0:d9:dc:ec:5f:3e:16:2e:
a3:26:b4:1e:94:4c:a3:a5:4a:a2:3e:8a:7d:8f:f6:17:10:53:
96:b9:17:69:34:6c:d2:8c:ff:9c:5e:bc:d2:06:1a:e1:35:de:
5d:ef:d3:e4:46:5f:93:87:83:fd:c2:4c:75:4a:db:a6:a6:0d:
b5:6d:05:28:f0:18:fe:13:f3:e5:de:f6:b7:27:71:a1:4b:64:
65:02:9f:e9:d0:86:72:e0:8e:fc:7b:ad:11:67:03:bf:e8:c3:
ed:f5:b6:2b:ee:5b:02:d0:dd:7a:79:3d:b8:53:2a:13:95:39:
34:2e:fd:5f:3d:df:50:15:3f:ef:ea:48:99:68:39:f4:e6:43:
bd:cf:9d:d1:8f:3c:92:ae:98:6a:0b:02:79:02:1a:1a:db:c1:
8a:fd:2a:be:32:71:c8:78:6e:4c:d0:83:49:b9:33:4e:82:42:
c2:dc:5c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:00 2024 by rpki-client on console-ams.rpki-client.org