Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/cTVkEpJnEIh8ZlW-JEEsYu_Sk68.roa
File: cTVkEpJnEIh8ZlW-JEEsYu_Sk68.roa (raw, json)
Hash identifier: ngT+iR+m42wNvga+7XOe0bma93t0hnqrFLv8zI/Zhek=
Subject key identifier: 71:35:64:12:92:67:10:88:7C:66:55:BE:24:41:2C:62:EF:D2:93:AF
Certificate issuer: /CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Certificate serial: 018571FA1C097734C1E612C502DAE0754873
Authority key identifier: B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/cTVkEpJnEIh8ZlW-JEEsYu_Sk68.roa
Signing time: Mon 02 Jan 2023 10:14:54 +0000
ROA not before: Mon 02 Jan 2023 10:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211181
IP address blocks: 79.132.194.0/24 maxlen: 24
2a10:fa41::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:1c:09:77:34:c1:e6:12:c5:02:da:e0:75:48:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b307c87e7b6e294f2700790eef19e82939d85cd6
Validity
Not Before: Jan 2 10:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71356412926710887c6655be24412c62efd293af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:b4:89:0e:08:7b:95:9d:6f:64:d2:92:91:
90:92:bd:5b:b7:ed:da:a5:c3:9a:70:27:7b:15:c7:
fc:7a:e7:a7:14:59:ad:dc:21:d0:03:d3:5c:35:9e:
92:cb:5a:46:4b:fe:cc:86:e5:c2:cf:fc:9b:5e:4f:
83:3f:63:d5:a0:17:a5:6d:87:3f:71:2a:e0:0f:e4:
d7:53:60:ca:86:d7:3e:a1:10:c5:24:d9:b0:5d:87:
47:72:ad:41:69:ce:7d:f6:31:c2:e1:1c:3c:9b:5c:
94:df:9f:a6:72:19:0a:07:9d:eb:21:ba:42:5d:8c:
13:07:5c:21:ef:cb:66:7d:ec:90:8b:2c:30:b1:c3:
46:01:2c:eb:41:c0:6f:c6:5e:6f:df:0e:ea:a1:e9:
64:0a:90:f8:c4:01:25:83:1f:dc:e8:38:1f:d6:e5:
70:c9:e2:4c:28:e7:c9:3d:a0:c5:4b:54:2c:97:af:
3b:87:30:4b:7f:92:ce:1b:37:c4:4c:89:7d:6d:2c:
85:60:3c:74:24:5e:54:98:10:28:2f:3e:ea:29:09:
8d:ac:80:b1:db:c1:c6:6c:64:fb:e6:c9:25:e5:af:
0c:d9:b5:7a:1f:a0:cd:d6:d7:a4:84:30:f4:33:55:
28:55:07:59:db:6c:fb:1d:80:e9:e8:3a:eb:9b:6f:
32:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:35:64:12:92:67:10:88:7C:66:55:BE:24:41:2C:62:EF:D2:93:AF
X509v3 Authority Key Identifier:
keyid:B3:07:C8:7E:7B:6E:29:4F:27:00:79:0E:EF:19:E8:29:39:D8:5C:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/swfIfntuKU8nAHkO7xnoKTnYXNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/cTVkEpJnEIh8ZlW-JEEsYu_Sk68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/da642a-a6ab-4705-9587-64945a4f8e12/1/swfIfntuKU8nAHkO7xnoKTnYXNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.194.0/24
IPv6:
2a10:fa41::/32
Signature Algorithm: sha256WithRSAEncryption
23:c5:35:b6:22:89:df:f6:12:f7:72:bf:3e:9a:de:2e:b7:73:
78:75:9c:db:b6:1c:10:b2:58:a1:a1:66:56:a5:28:83:38:5d:
aa:39:c5:c9:37:40:0f:21:70:7f:37:0f:8d:6b:40:cd:24:c9:
5a:2a:ed:5a:0f:28:a7:bf:d7:c4:12:f3:2a:e2:49:ab:7e:a5:
7c:3f:c9:c5:63:7b:21:ef:a2:22:34:71:55:31:bb:b6:d2:a2:
26:aa:12:cf:fb:f7:cc:91:4d:6f:09:57:c5:b9:17:a4:0a:14:
74:2c:c9:60:1e:35:e9:ab:c3:6b:36:e2:2a:27:8e:c8:a8:f5:
b0:65:dd:cb:9c:4b:88:83:f5:d1:2d:f0:6a:0f:a0:2c:e4:70:
77:4e:65:91:c9:ca:45:87:1d:88:7a:01:86:67:22:6b:b7:38:
0e:60:33:e3:fe:9e:c8:74:77:f1:51:f3:d1:64:f2:51:4f:d8:
a3:b8:ab:8c:02:7b:96:a1:1e:f7:aa:ca:9c:de:83:80:88:bc:
ea:2b:9c:e5:e2:dd:b3:20:c8:16:f7:17:68:f7:b3:ff:3e:1e:
e0:ed:4d:59:5f:59:6d:c7:b8:6c:3a:04:4a:c2:c7:09:d4:6a:
4f:0b:bc:5f:43:34:9a:c9:f6:03:57:d6:81:90:9d:bf:67:87:
55:54:ff:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:08 2024 by rpki-client on console-fra.rpki-client.org