Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/LeUtRtipWJVA-QrrwolA6aEiFsI.roa
File: LeUtRtipWJVA-QrrwolA6aEiFsI.roa (raw, json)
Hash identifier: HmW5f/MmaaspxIPicvLDi/97nV7lBLPLluag0Pud6uQ=
Subject key identifier: 2D:E5:2D:46:D8:A9:58:95:40:F9:0A:EB:C2:89:40:E9:A1:22:16:C2
Certificate issuer: /CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Certificate serial: 0187B7DAC8F6CBA90120CED86A1C7520814F
Authority key identifier: 4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/LeUtRtipWJVA-QrrwolA6aEiFsI.roa
Signing time: Tue 25 Apr 2023 09:59:41 +0000
ROA not before: Tue 25 Apr 2023 09:59:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 194.32.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b7:da:c8:f6:cb:a9:01:20:ce:d8:6a:1c:75:20:81:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d5a2921fbeb8a448e7ae1ec5a11b8ab898d22fd
Validity
Not Before: Apr 25 09:59:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2de52d46d8a9589540f90aebc28940e9a12216c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:04:88:45:fa:ec:39:7f:ce:53:2c:c2:e8:0a:
34:e4:7b:31:5b:09:8c:a0:45:24:4f:9e:0d:29:ed:
b4:30:7c:b0:01:36:63:1d:42:2a:d9:22:04:16:17:
00:c0:e7:55:2a:ce:ab:ea:62:06:d4:2f:ed:93:5d:
67:03:d4:0c:c9:87:13:c2:e8:c8:2b:6e:a4:c9:2e:
79:d1:fd:70:67:cf:ff:63:79:12:ee:5b:01:9a:85:
96:fb:5b:c8:0b:1c:4f:a0:27:d3:ad:bb:72:45:42:
ca:b6:ea:b5:c4:7a:0a:a3:3e:09:6f:5b:1f:d9:ab:
d2:72:b2:7f:e1:0f:f6:f9:c6:c0:1b:a3:00:26:2c:
b4:08:af:57:5e:f8:7a:54:d6:36:cd:5f:d6:c1:64:
f6:6d:ea:51:38:3d:28:cb:eb:95:17:5f:b0:17:0d:
1e:e1:75:f3:ff:d3:a4:f9:c4:4c:dc:a1:b8:b9:e1:
64:54:4a:b7:06:2c:8a:ce:fe:4f:b1:72:a9:18:81:
a5:bd:42:d4:fd:dc:cb:ec:ed:13:a0:da:9d:87:da:
03:c6:1a:57:7f:14:d4:12:68:c1:bd:75:bc:d8:09:
33:aa:0e:94:a7:a5:2c:53:f2:57:55:7e:20:e7:29:
0d:79:b3:8e:af:ad:fb:df:e0:4c:4c:77:69:d7:43:
3b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E5:2D:46:D8:A9:58:95:40:F9:0A:EB:C2:89:40:E9:A1:22:16:C2
X509v3 Authority Key Identifier:
keyid:4D:5A:29:21:FB:EB:8A:44:8E:7A:E1:EC:5A:11:B8:AB:89:8D:22:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TVopIfvrikSOeuHsWhG4q4mNIv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/LeUtRtipWJVA-QrrwolA6aEiFsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee8b98-7240-4b62-acc5-780a25cd0dd9/1/TVopIfvrikSOeuHsWhG4q4mNIv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.71.0/24
Signature Algorithm: sha256WithRSAEncryption
00:5a:cc:d7:9d:30:f3:cf:17:d0:5c:97:b4:0a:c9:32:94:b2:
69:95:31:91:47:91:ce:16:db:38:1d:d7:8a:72:f6:7a:74:e7:
c3:1c:08:24:d3:ae:2b:9e:78:67:2c:f1:fd:3f:cb:9a:6a:c5:
5a:da:b4:7c:44:99:b6:24:99:4a:68:cd:5b:88:f8:c7:46:ef:
78:7e:44:18:e4:58:a1:26:06:b6:3a:9d:0c:67:a1:df:d9:f2:
a6:be:50:9d:fb:c4:96:95:19:93:c9:92:eb:ed:1a:48:0f:be:
09:e6:6e:06:10:25:b1:3c:4e:7b:80:75:de:d0:76:bf:0c:3c:
83:02:04:3d:cb:e0:bd:23:a7:8b:80:28:8c:c8:8f:2a:c2:de:
81:3a:35:1c:b7:63:82:04:7a:36:de:8c:ad:41:f2:d1:55:fe:
b9:91:8d:b6:ca:a9:f6:cd:14:20:08:22:4c:b5:da:04:be:51:
ef:51:44:50:75:c5:5f:55:ad:0b:66:72:56:69:fa:0b:36:c4:
a5:65:cc:36:12:a3:49:18:b8:7e:6f:dc:dd:fb:77:c7:78:00:
93:7f:aa:25:47:07:0d:8d:ca:da:c2:b1:cc:f9:91:e5:68:3f:
6b:f1:73:2f:d9:8e:6f:86:61:6f:19:e3:f5:02:1f:8f:79:8a:
a4:df:c1:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:40 2024 by rpki-client on console-fra.rpki-client.org