Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/4R1DoWeYf7D_r-6vyPHm_LiAD-k.roa
File: 4R1DoWeYf7D_r-6vyPHm_LiAD-k.roa (raw, json)
Hash identifier: 34Hn7vXjuQ3tk4Uo3AJnY2b3NS0v0Oq2YF1gNq5HW50=
Subject key identifier: E1:1D:43:A1:67:98:7F:B0:FF:AF:EE:AF:C8:F1:E6:FC:B8:80:0F:E9
Certificate issuer: /CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Certificate serial: 018C558E1E6314BE50370F0A7FC529B5FB8D
Authority key identifier: 6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/4R1DoWeYf7D_r-6vyPHm_LiAD-k.roa
Signing time: Sun 10 Dec 2023 21:07:06 +0000
ROA not before: Sun 10 Dec 2023 21:07:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 194.60.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:55:8e:1e:63:14:be:50:37:0f:0a:7f:c5:29:b5:fb:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Validity
Not Before: Dec 10 21:07:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e11d43a167987fb0ffafeeafc8f1e6fcb8800fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:9a:05:e8:90:98:31:b3:59:23:f6:00:a0:a6:
59:46:39:02:71:32:fc:9e:dc:8b:6e:44:f3:68:bc:
63:51:10:1e:be:74:10:f5:99:ff:96:0f:02:01:3f:
ca:db:1f:93:59:51:e6:34:12:b7:e3:31:45:b6:e8:
a3:c1:e9:79:85:73:21:41:38:1f:14:09:f6:0b:35:
e4:69:1f:b9:52:68:ad:a5:de:d2:fb:6a:10:f4:f8:
d2:64:9e:5e:72:ed:3a:f2:43:10:72:cc:89:0b:51:
0e:1b:81:e8:ce:b9:7f:4d:74:10:3c:1c:33:aa:5e:
7d:b0:eb:9f:67:fe:2a:a6:4c:b1:ab:a9:86:a2:ea:
3e:da:84:3c:48:31:44:7c:c5:11:a3:f3:9c:71:b2:
b4:6d:62:fb:7a:5a:41:ae:74:bd:ce:d8:ed:00:1a:
83:94:22:7b:17:c5:f9:3b:07:f9:ae:84:d9:f8:c1:
c4:9e:bc:2a:21:c3:27:2c:e1:f1:2f:3c:b6:ed:28:
33:52:fa:03:da:98:55:ac:51:0a:9f:e0:58:05:c8:
64:2c:41:a1:36:8f:82:37:b4:99:c0:69:ce:49:1a:
39:2d:61:69:f3:df:5e:02:69:3b:14:62:a9:d3:34:
bf:02:12:8e:47:4c:39:2e:23:23:58:70:79:e0:8b:
82:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:1D:43:A1:67:98:7F:B0:FF:AF:EE:AF:C8:F1:E6:FC:B8:80:0F:E9
X509v3 Authority Key Identifier:
keyid:6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/4R1DoWeYf7D_r-6vyPHm_LiAD-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/ajZv38qiDoDov8MwpNixvn3modA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.252.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:75:3f:96:57:56:70:15:32:f7:97:bc:7d:7b:7c:b3:ae:d9:
f6:5c:30:10:cc:8a:30:b2:6b:b8:89:32:59:1c:32:f1:35:60:
4c:3b:14:ae:77:98:fc:2b:7c:50:25:af:0b:15:2f:70:1d:56:
20:cb:5e:9d:49:d3:71:1a:b5:1c:f9:ae:87:68:f0:4c:37:03:
de:9d:d5:d2:87:3f:9b:74:89:ee:dd:ea:03:68:99:0b:3b:58:
b8:b1:c0:a8:af:49:6c:48:bc:56:cc:3e:8b:7b:dd:44:27:67:
d5:ae:4e:82:ad:88:69:35:ed:70:2d:62:41:ae:2b:90:c6:88:
64:b5:54:16:78:97:29:97:12:cb:ad:c7:28:ac:16:4b:fa:7c:
5d:74:13:44:e9:46:63:40:78:40:4a:49:00:34:6a:54:80:c8:
23:40:c2:cb:0e:f7:d4:b8:61:45:e1:a3:cb:73:f4:a5:25:ea:
2d:bd:67:91:d4:52:2c:a6:35:60:dc:1b:fe:c1:b3:dc:84:f8:
93:6c:1a:a5:ec:73:fb:0d:3f:3a:62:2c:84:48:dc:2b:d2:34:
f4:67:f1:9c:ac:19:fc:e0:f3:3f:13:5f:43:39:cc:22:e4:ec:
34:30:04:a1:34:e2:fa:4a:53:43:f5:b4:a4:98:7b:95:37:01:
fb:96:a3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:27 2024 by rpki-client on console-ams.rpki-client.org