Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/E7NkfepZT_e52kwTCOxjMMeuYCA.roa
File: E7NkfepZT_e52kwTCOxjMMeuYCA.roa (raw, json)
Hash identifier: hYCvu4ipFOXMyBdwzBSuZFrMyYUQrBe1bv5cPTqOB0o=
Subject key identifier: 13:B3:64:7D:EA:59:4F:F7:B9:DA:4C:13:08:EC:63:30:C7:AE:60:20
Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Certificate serial: 0192BAF90E80567767107C974324C06F8355
Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/E7NkfepZT_e52kwTCOxjMMeuYCA.roa
Signing time: Wed 23 Oct 2024 20:02:17 +0000
ROA not before: Wed 23 Oct 2024 20:02:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23352
IP address blocks: 198.38.83.0/24 maxlen: 24
198.38.84.0/24 maxlen: 24
198.38.85.0/24 maxlen: 24
198.38.86.0/24 maxlen: 24
198.38.87.0/24 maxlen: 24
198.38.88.0/24 maxlen: 24
198.38.89.0/24 maxlen: 24
198.38.90.0/24 maxlen: 24
198.38.91.0/24 maxlen: 24
198.38.92.0/24 maxlen: 24
198.38.93.0/24 maxlen: 24
198.38.94.0/24 maxlen: 24
198.38.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 11:55:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ba:f9:0e:80:56:77:67:10:7c:97:43:24:c0:6f:83:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd
Validity
Not Before: Oct 23 20:02:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13b3647dea594ff7b9da4c1308ec6330c7ae6020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a0:30:83:61:5a:27:3a:bb:1f:87:95:e3:58:
c7:2e:08:91:b0:a4:de:f8:90:9f:9f:04:6f:89:20:
b3:8a:2a:a2:ff:40:ea:99:d4:3a:1c:e8:c8:e0:59:
2f:8c:33:df:7b:e9:51:f9:c9:89:7f:a9:96:06:dc:
41:6f:a0:45:79:b8:f5:5b:e0:ca:18:d7:30:00:86:
2a:85:a3:a9:f8:04:aa:84:14:20:c1:1f:a0:ce:bb:
f0:c8:0d:75:d4:cd:36:f1:a7:0a:06:e9:29:47:c0:
ea:ae:0e:8f:dd:3a:30:3a:3d:cb:4f:26:18:62:af:
81:f8:9d:7d:86:ce:69:a3:1e:db:77:ec:aa:c6:c6:
4b:63:94:f7:df:4d:67:fd:d9:0d:af:a4:84:00:b3:
19:13:b9:7e:b7:66:44:b7:e5:4c:25:c1:2e:c0:2e:
64:78:55:f9:2b:00:27:6e:14:1b:64:40:fd:08:2d:
3c:96:aa:d9:1b:89:84:86:0e:e5:e8:7d:f8:42:2c:
1a:b4:26:72:93:5c:e4:3c:19:4f:d9:52:b0:ca:43:
74:1e:6a:2f:49:c1:17:38:98:2d:e4:f1:4e:74:74:
98:52:d2:a9:5d:00:73:3a:67:9d:55:18:06:b8:14:
a6:cc:5d:59:8f:b2:ee:92:66:0f:9e:3f:87:03:20:
18:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B3:64:7D:EA:59:4F:F7:B9:DA:4C:13:08:EC:63:30:C7:AE:60:20
X509v3 Authority Key Identifier:
keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/E7NkfepZT_e52kwTCOxjMMeuYCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.38.83.0-198.38.95.255
Signature Algorithm: sha256WithRSAEncryption
12:f5:3a:9b:93:50:6e:40:f4:ac:0f:c8:59:36:f7:d5:3f:33:
21:84:57:d7:a5:83:1a:07:69:3c:03:aa:2b:11:29:5a:1a:61:
08:1e:17:48:52:c1:a9:b2:5e:0e:6f:b9:c9:c9:da:8d:d6:24:
43:35:01:14:f2:ff:27:4d:4d:7b:75:b7:11:bc:5c:23:69:14:
ab:5a:d0:0d:ed:ce:ab:df:12:31:17:06:e3:71:8c:07:33:a9:
d9:ba:f2:67:a5:15:aa:ca:92:7b:ae:7f:d0:78:25:e6:88:fa:
79:78:35:ae:d1:78:68:85:2e:1a:66:23:89:22:51:97:8d:01:
ca:67:1d:05:b2:6b:50:c0:9d:c8:92:59:c6:40:16:0a:35:68:
b1:40:3d:e7:1a:24:95:9d:62:e1:af:f6:c3:82:3f:01:3f:be:
3b:44:22:8b:42:b8:d2:8b:e7:34:a4:14:28:3f:80:17:d7:1a:
46:52:df:77:eb:ed:3b:f7:50:c3:92:a8:da:2d:ae:42:f8:ea:
0e:93:68:db:00:8a:ff:b9:06:6b:15:1b:61:89:9d:e3:f4:d4:
e9:b3:33:f8:73:fa:03:5a:bc:85:1f:cc:1e:c3:b8:39:3b:e4:
97:18:83:27:dd:ea:0e:0b:fe:78:22:97:1a:ca:2d:43:1a:00:
87:50:74:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 15:57:11 2024 by rpki-client on console-ams.rpki-client.org