Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/GeFaJAhgleO7p0v4KJZ-lfj7EdE.roa
File: GeFaJAhgleO7p0v4KJZ-lfj7EdE.roa (raw, json)
Hash identifier: stKc1zjTqhIs6El0HZiZsT94zJUo9EHLn3ug4d7l2z4=
Subject key identifier: 19:E1:5A:24:08:60:95:E3:BB:A7:4B:F8:28:96:7E:95:F8:FB:11:D1
Certificate issuer: /CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Certificate serial: 018723D41EDD843C198A9C4CD4CE9FE664DD
Authority key identifier: CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/GeFaJAhgleO7p0v4KJZ-lfj7EdE.roa
Signing time: Mon 27 Mar 2023 16:08:36 +0000
ROA not before: Mon 27 Mar 2023 16:08:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42808
IP address blocks: 194.26.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:d4:1e:dd:84:3c:19:8a:9c:4c:d4:ce:9f:e6:64:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Validity
Not Before: Mar 27 16:08:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19e15a24086095e3bba74bf828967e95f8fb11d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:62:2f:5e:82:9e:32:de:70:95:d4:4b:61:29:
e5:db:ee:dd:61:68:53:e4:b1:71:4a:68:23:38:41:
f8:dc:69:98:25:29:7b:d6:83:ae:8d:55:91:10:9d:
02:bc:6a:ef:ec:57:a1:60:30:08:12:1d:60:4a:5d:
e1:a8:8a:90:94:0c:13:db:b7:6e:53:fb:97:30:42:
61:21:ac:9c:12:ce:11:5d:71:03:8f:18:ba:6e:81:
27:39:e3:7f:41:f1:eb:4e:15:ca:f5:c5:a6:ae:a3:
be:d2:d3:f3:f0:34:81:33:9c:e9:7b:d7:24:eb:4a:
f3:d6:dc:cc:72:09:75:c3:e1:83:b2:25:ee:39:1f:
f3:fc:48:f1:5c:51:df:2f:55:16:2c:12:9f:8c:9f:
79:e3:01:ad:aa:24:93:f3:0a:99:54:92:38:27:45:
36:a6:f0:b8:ed:ef:77:dc:75:40:c7:1b:13:22:4a:
11:16:ef:ca:23:53:e2:40:67:31:72:ac:c1:30:d8:
5a:94:c4:37:ec:61:cf:85:fb:7d:4e:d8:20:32:63:
93:3d:3f:e4:01:83:c4:5e:b2:d7:33:d0:76:ee:da:
4e:4b:14:6e:f4:0c:51:d5:22:e0:25:3e:52:03:1e:
66:90:c7:71:59:bd:16:69:ab:23:80:7a:5b:d1:02:
ec:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E1:5A:24:08:60:95:E3:BB:A7:4B:F8:28:96:7E:95:F8:FB:11:D1
X509v3 Authority Key Identifier:
keyid:CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/GeFaJAhgleO7p0v4KJZ-lfj7EdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/zoqNQOQ3rfSs182zjgQCR3ouUaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.118.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:90:0d:94:a8:da:6d:0d:46:8e:67:70:13:d9:20:e3:78:a6:
17:1c:7a:75:9c:3c:f7:58:03:f1:44:b5:c0:0d:2a:99:54:b8:
c8:fc:b5:8d:31:a2:be:58:54:2c:04:a5:3e:44:df:30:10:6d:
b8:a8:e5:a3:73:66:ca:23:d1:c0:85:e0:2f:bc:e4:c2:70:8d:
db:94:54:c0:fc:d6:5f:8c:84:59:37:9c:1b:ba:f9:cb:08:45:
1e:c0:80:17:a7:c4:ee:fc:16:c9:15:73:4c:c3:d6:fb:02:c6:
48:86:d6:2d:56:e5:d9:53:79:79:a1:c7:a3:29:6b:f1:d7:77:
4b:b8:8c:b7:df:94:eb:2a:7a:a7:6c:f3:82:b1:cc:e7:50:0b:
2b:02:53:78:bf:24:5a:2e:cf:12:4a:cb:09:d2:d5:7d:52:f2:
04:ef:c6:f8:41:cf:35:80:f4:b1:41:8c:c3:d5:85:8e:15:a8:
4f:7f:2e:58:7a:6e:c4:d4:20:11:65:ad:14:c7:25:72:cc:b5:
4c:49:2b:60:f0:45:85:56:ce:db:1a:23:8a:8e:7d:95:6f:38:
62:02:1b:eb:7c:f1:68:c3:91:ca:f3:f3:74:da:ae:70:c7:89:
2d:22:6c:30:4b:d1:46:bf:f9:32:94:10:22:85:85:6e:4c:4e:
c2:7e:09:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:37 2024 by rpki-client on console-ams.rpki-client.org