Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IVAcOUjnpDYfIUoNdL03nbmXZn0.roa
File: IVAcOUjnpDYfIUoNdL03nbmXZn0.roa (raw, json)
Hash identifier: hYXJtLc+MLSO/E2nTqvAyhJ9A63MGo1l83a5R/2EADU=
Subject key identifier: 21:50:1C:39:48:E7:A4:36:1F:21:4A:0D:74:BD:37:9D:B9:97:66:7D
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0192AF5F16529D107332086A6E9C026CE737
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IVAcOUjnpDYfIUoNdL03nbmXZn0.roa
Signing time: Mon 21 Oct 2024 13:58:17 +0000
ROA not before: Mon 21 Oct 2024 13:58:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202656
IP address blocks: 194.87.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 17:08:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:af:5f:16:52:9d:10:73:32:08:6a:6e:9c:02:6c:e7:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 21 13:58:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21501c3948e7a4361f214a0d74bd379db997667d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cf:d7:da:e9:bb:4e:97:4c:00:15:b5:d0:81:
d4:2a:f6:df:1e:99:59:41:15:52:0d:b0:78:ae:76:
8f:69:02:6f:51:50:07:5b:b8:5d:ca:b9:03:f9:dd:
14:4b:a5:18:23:ea:ec:d8:e1:23:56:30:63:b9:a3:
8c:3a:06:11:4b:72:0c:b4:43:4e:36:31:15:67:24:
4e:45:22:35:8b:2d:77:78:46:bc:49:11:24:46:87:
77:d9:e1:32:50:4e:0f:b4:81:13:c7:ad:ff:c8:3f:
41:5b:c4:70:ec:16:8f:56:fa:19:c3:37:48:d5:e4:
4a:9f:5f:21:56:42:01:61:6d:f8:5e:e8:32:20:10:
96:75:f5:f7:87:d7:07:54:76:4a:69:3f:ea:29:d2:
30:da:ea:39:71:f2:a8:da:53:b3:3b:bf:14:e9:99:
57:cd:73:82:f2:07:df:09:50:ba:ae:b4:30:f1:b0:
50:ba:8f:97:40:9c:ab:d4:b5:fe:52:88:ec:a3:be:
0e:94:b5:2b:68:9a:54:07:1f:40:e4:8b:9a:4e:34:
b1:25:5b:8d:86:35:a6:35:fa:80:de:ad:0d:78:03:
5b:b2:e3:29:00:9f:60:76:14:f2:cf:a8:52:72:8f:
99:f2:6d:59:24:5c:e6:ac:50:b0:1d:cd:66:b2:e9:
f7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:50:1C:39:48:E7:A4:36:1F:21:4A:0D:74:BD:37:9D:B9:97:66:7D
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IVAcOUjnpDYfIUoNdL03nbmXZn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.52.0/24
Signature Algorithm: sha256WithRSAEncryption
78:a4:9e:87:6e:44:95:82:8a:98:c7:f9:d9:34:d1:65:b9:7b:
af:98:17:34:b8:81:ad:0d:7a:95:ec:ad:3b:78:cd:41:5e:f1:
fe:d4:85:41:3d:23:57:bb:d6:24:83:b1:e4:71:4d:e1:39:ad:
2e:4e:29:82:c3:bf:e4:c7:37:3b:fe:8c:94:91:79:bc:d0:37:
03:f6:87:38:cb:d0:0e:07:e3:4f:02:ca:f9:73:a8:95:3b:27:
28:45:3a:a9:58:a7:a4:91:dd:88:12:f9:68:fa:1c:47:58:90:
6a:8a:74:1a:82:b3:d8:60:f4:1a:2b:34:31:1e:1a:13:20:86:
3b:1f:3a:53:60:4a:27:3e:7b:0f:b7:08:71:87:8b:b5:43:03:
d4:38:5d:aa:fd:00:20:48:ff:ac:81:cc:ac:1b:82:58:93:49:
9b:9b:3d:a3:1a:41:41:5f:ca:3d:ae:07:e2:a3:51:be:48:aa:
99:87:4c:5e:c0:fb:67:bd:c6:ff:6b:e3:37:88:86:ba:cd:18:
3b:4b:21:f3:3a:2c:44:a8:f0:64:f9:c3:34:8a:a6:b3:bb:c4:
e6:af:13:85:5c:12:5b:88:8d:34:48:0b:ad:db:7f:16:47:03:
37:f2:5e:0f:f6:bd:07:e5:a0:d1:01:e4:99:55:4c:46:7c:d6:
90:b0:31:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 20:38:00 2024 by rpki-client on console-ams.rpki-client.org