Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/amCYbQYoET0C6TPYJ-lOH6DfUZU.roa
File: amCYbQYoET0C6TPYJ-lOH6DfUZU.roa (raw, json)
Hash identifier: q5zViYWzUHEYoYLdKWtFiWHKrhMQ2lOxjL4c4U5SX/8=
Subject key identifier: 6A:60:98:6D:06:28:11:3D:02:E9:33:D8:27:E9:4E:1F:A0:DF:51:95
Certificate issuer: /CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Certificate serial: 018C558E1F386E0E4A68AABEE6111DDB61BA
Authority key identifier: 6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/amCYbQYoET0C6TPYJ-lOH6DfUZU.roa
Signing time: Sun 10 Dec 2023 21:07:06 +0000
ROA not before: Sun 10 Dec 2023 21:07:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 194.60.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:55:8e:1f:38:6e:0e:4a:68:aa:be:e6:11:1d:db:61:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a366fdfcaa20e80e8bfc330a4d8b1be7de6a1d0
Validity
Not Before: Dec 10 21:07:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a60986d0628113d02e933d827e94e1fa0df5195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:24:3c:b1:4c:c0:29:35:c0:57:d5:9d:eb:92:
46:c7:47:b1:29:0e:4f:87:d5:95:ed:ab:07:e0:5f:
38:76:f3:de:3d:10:2b:5c:9f:cd:29:df:82:11:eb:
0c:5d:50:54:06:48:b2:4d:da:f9:a3:03:50:dc:4a:
0e:18:95:76:33:f7:86:8e:e1:6e:2a:b8:9a:b9:19:
b1:27:f5:bd:5e:ee:9c:c1:19:1d:38:48:98:05:28:
c4:5f:c5:25:75:ab:dc:bf:4a:b0:e6:23:ec:a0:22:
69:66:88:07:a3:58:84:d8:3f:59:39:62:e7:f9:7a:
31:8f:06:7b:db:db:de:e1:0a:25:20:e3:5e:ec:ec:
4f:ec:0a:b1:6d:fc:37:7e:67:fd:cb:00:b0:4e:93:
1c:d9:eb:e6:0d:18:10:77:42:46:a2:7d:72:a0:19:
5c:de:c9:23:55:48:69:88:4e:68:df:c9:15:3e:c8:
5d:19:81:25:54:5b:70:ba:24:32:4e:9f:cb:6c:48:
1d:b5:07:2b:d8:55:f1:fd:2c:ca:ff:c0:de:b9:1c:
fd:0f:67:3c:a0:83:ec:3b:6e:ec:ed:1f:fe:7e:87:
b0:e2:00:d8:9f:e6:eb:79:94:22:b0:f5:21:6d:c9:
8f:45:9d:38:de:27:e0:23:80:27:5f:ad:bf:67:c4:
dc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:60:98:6D:06:28:11:3D:02:E9:33:D8:27:E9:4E:1F:A0:DF:51:95
X509v3 Authority Key Identifier:
keyid:6A:36:6F:DF:CA:A2:0E:80:E8:BF:C3:30:A4:D8:B1:BE:7D:E6:A1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ajZv38qiDoDov8MwpNixvn3modA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/amCYbQYoET0C6TPYJ-lOH6DfUZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8c4ec4-d637-4d3f-9de8-05559c1f5915/1/ajZv38qiDoDov8MwpNixvn3modA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.252.0/24
Signature Algorithm: sha256WithRSAEncryption
77:21:ee:c0:bb:74:38:08:a7:d9:14:62:f3:09:bd:ca:f9:e3:
75:ad:34:f4:a4:cd:18:be:5b:92:e9:c3:3a:85:b1:9e:c5:d6:
48:a5:61:ae:50:4d:fb:ef:b8:b1:56:bc:54:26:e0:ed:d0:89:
3c:7c:db:d5:66:07:fc:40:20:31:ba:75:f2:78:36:3e:00:99:
01:f3:40:0b:43:94:a0:f9:e3:1a:fb:2b:6f:2f:5a:cf:d3:1a:
21:21:3e:73:cc:5e:21:bc:cd:ab:66:51:02:01:93:5f:7c:fa:
b4:fe:31:bc:0b:2e:63:42:a7:2c:a9:e2:e0:7d:9c:ff:e9:dd:
ec:40:08:a0:f1:df:06:35:4b:35:a7:44:bd:43:d3:af:8a:55:
79:31:2c:45:14:b5:ca:b3:f2:a4:c1:8a:3f:d7:a1:70:f2:06:
08:01:6c:95:b2:ab:8c:b1:49:a0:31:95:43:d3:35:dc:be:08:
92:6b:99:8e:a2:ab:cd:68:36:bf:0c:38:b4:9b:fb:e0:43:f9:
8a:86:59:b6:a9:5a:75:e2:1f:43:71:4f:e9:10:b2:67:d0:5e:
3f:b5:2c:49:dd:29:4c:49:1a:20:e8:26:33:f7:df:5d:74:45:
fc:1c:4e:bc:ab:69:72:00:24:c2:09:f5:4b:40:fe:59:88:77:
eb:46:62:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org