Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/904341-4a73-426d-9bac-a339eecb8dc7/1/teAPaWrGt8rye0qnkaVdCICP15o.roa
File: teAPaWrGt8rye0qnkaVdCICP15o.roa (raw, json)
Hash identifier: UW3zrCIA1asD/CUfLGiQWJQKdJGgfYPtLaLAOfwNEaw=
Subject key identifier: B5:E0:0F:69:6A:C6:B7:CA:F2:7B:4A:A7:91:A5:5D:08:80:8F:D7:9A
Certificate issuer: /CN=58e0abb776daf25f720db6a26bb12fbd34deed90
Certificate serial: 01856F2FF793EDD5AC32672E5FA297C32B75
Authority key identifier: 58:E0:AB:B7:76:DA:F2:5F:72:0D:B6:A2:6B:B1:2F:BD:34:DE:ED:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WOCrt3ba8l9yDbaia7EvvTTe7ZA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/904341-4a73-426d-9bac-a339eecb8dc7/1/teAPaWrGt8rye0qnkaVdCICP15o.roa
Signing time: Sun 01 Jan 2023 21:14:52 +0000
ROA not before: Sun 01 Jan 2023 21:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57464
IP address blocks: 194.93.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f7:93:ed:d5:ac:32:67:2e:5f:a2:97:c3:2b:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58e0abb776daf25f720db6a26bb12fbd34deed90
Validity
Not Before: Jan 1 21:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5e00f696ac6b7caf27b4aa791a55d08808fd79a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a0:bd:5a:19:a2:5a:02:e1:78:4d:77:79:ff:
3c:5a:22:af:5d:be:dc:9f:3f:7c:78:99:8c:3c:1b:
56:5b:f6:22:93:27:91:36:82:1a:34:25:e6:3c:94:
9d:ed:4a:75:b8:73:48:cb:fe:0c:cb:dd:c7:ad:42:
07:36:c3:6a:f1:91:03:88:fc:02:eb:28:ce:0c:60:
0f:1a:79:26:6a:20:7b:80:13:ae:38:3f:6e:8a:2d:
60:76:10:71:4c:76:fe:38:9e:bd:ac:9b:55:46:a0:
67:8f:6e:75:7c:7c:ae:3d:7e:a4:9d:93:d2:65:cd:
d1:8d:64:b8:b7:95:b2:d5:e7:07:17:9d:4b:48:36:
ad:89:11:d5:ce:a3:9e:1f:c4:6b:6d:d7:91:0e:c8:
db:49:e5:27:43:ba:6c:bd:7d:f2:e1:c4:13:fc:0d:
11:d6:af:af:1f:1e:0c:e7:ea:5c:36:66:25:03:f2:
04:8d:b9:46:c7:ad:0b:70:ce:6d:b0:2c:c9:52:1b:
37:8b:28:86:aa:f9:83:2b:72:34:ea:3d:bb:b7:41:
54:d6:ff:4c:82:cd:7d:d1:6a:db:c0:e8:ef:48:7c:
1c:8a:16:74:19:15:ec:3f:5e:45:fa:4d:a6:86:7c:
2d:3a:71:ed:b9:9a:cf:f6:ac:a4:e9:49:74:30:91:
f7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E0:0F:69:6A:C6:B7:CA:F2:7B:4A:A7:91:A5:5D:08:80:8F:D7:9A
X509v3 Authority Key Identifier:
keyid:58:E0:AB:B7:76:DA:F2:5F:72:0D:B6:A2:6B:B1:2F:BD:34:DE:ED:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WOCrt3ba8l9yDbaia7EvvTTe7ZA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/904341-4a73-426d-9bac-a339eecb8dc7/1/teAPaWrGt8rye0qnkaVdCICP15o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/904341-4a73-426d-9bac-a339eecb8dc7/1/WOCrt3ba8l9yDbaia7EvvTTe7ZA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.93.100.0/24
Signature Algorithm: sha256WithRSAEncryption
62:23:71:68:f9:5e:6b:d2:8a:3d:27:96:21:93:f5:8b:70:47:
11:1e:25:72:dd:30:9d:ca:a1:be:92:45:e8:aa:fc:1d:96:8b:
fc:92:89:ae:48:18:56:d7:5b:aa:d8:da:10:6a:d9:bf:b1:e6:
c1:14:fd:b8:a6:8e:9d:db:26:2e:92:8d:59:7f:d2:6f:b5:af:
dd:81:dd:39:38:15:b7:a5:fe:f1:20:48:4a:36:2f:51:9b:71:
6f:64:c7:67:94:28:27:66:34:57:15:46:09:07:35:06:69:67:
a8:fa:b6:da:1b:77:46:a7:c9:71:98:21:6e:53:c9:63:93:b3:
1f:ff:91:e2:52:e6:3c:84:70:56:8c:61:0e:4e:4a:c3:a6:ce:
8b:08:44:bf:4e:8f:e6:b5:d5:ad:94:22:78:49:78:c1:d1:01:
3a:38:d5:b0:bd:d8:fd:06:63:69:52:55:9c:24:a8:c9:32:11:
61:78:8e:bb:df:54:80:1a:b7:56:d6:ad:8f:4d:19:82:76:d9:
be:fe:d9:60:6f:1b:6f:04:dc:e9:d7:4c:a3:7b:01:ac:67:71:
ba:b9:cf:a3:38:ab:45:de:0d:ad:e4:41:4a:39:10:11:2d:98:
32:5c:e1:13:49:32:65:66:19:19:50:c2:9f:88:8e:6a:df:52:
0f:14:34:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:02 2024 by rpki-client on console-ams.rpki-client.org