Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dKMwXuC-UTE-k98rKp0rcAceFnY.roa
File: dKMwXuC-UTE-k98rKp0rcAceFnY.roa (raw, json)
Hash identifier: k1drT20zUpaR42UYrpzgXYG9wMKoRlk9zJLSp0TCTm4=
Subject key identifier: 74:A3:30:5E:E0:BE:51:31:3E:93:DF:2B:2A:9D:2B:70:07:1E:16:76
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190B228277FB8534467E74690B6FD45FC38
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dKMwXuC-UTE-k98rKp0rcAceFnY.roa
Signing time: Sun 14 Jul 2024 16:51:34 +0000
ROA not before: Sun 14 Jul 2024 16:51:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215232
IP address blocks: 194.87.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 11:35:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b2:28:27:7f:b8:53:44:67:e7:46:90:b6:fd:45:fc:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 16:51:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74a3305ee0be51313e93df2b2a9d2b70071e1676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1e:ed:57:d5:ab:e3:c3:ba:df:24:3e:ae:fc:
39:66:fe:aa:54:44:1c:b4:37:f1:73:44:d5:a8:80:
ad:59:d8:ae:e7:0a:5a:8f:c8:19:50:85:e3:02:45:
55:5a:47:60:da:b0:93:b0:57:2c:27:26:09:fd:90:
37:07:50:0a:26:af:32:d3:61:c5:96:f3:3c:10:64:
77:7c:bf:b5:e5:30:2d:a7:32:04:e6:4e:1f:54:35:
a8:8e:ef:08:7a:82:99:19:92:20:d0:02:a3:7f:b6:
05:8e:e7:88:58:2c:12:ba:d6:24:70:9b:31:bd:df:
cf:d7:ea:5f:59:f9:c2:56:90:c2:5d:4b:31:71:73:
51:0c:65:97:1e:26:77:d2:f2:0f:7e:aa:76:97:ff:
ab:fa:60:a4:81:61:98:cb:cd:72:28:d5:eb:9e:3d:
04:14:63:76:58:bd:69:e6:81:91:de:9d:d0:a3:bc:
c1:4b:59:0f:1e:6a:d7:d5:84:79:d2:4d:d4:f4:ab:
f4:4e:8a:eb:bd:b0:ba:ae:da:21:0f:4b:23:7b:65:
ab:5c:6d:c8:5a:a4:54:b1:e7:15:76:ae:47:15:30:
5e:af:2f:2c:ff:cd:de:a2:80:99:d8:8e:77:7b:95:
dd:30:f6:21:cb:e8:8a:56:ae:f7:32:cd:31:de:04:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A3:30:5E:E0:BE:51:31:3E:93:DF:2B:2A:9D:2B:70:07:1E:16:76
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/dKMwXuC-UTE-k98rKp0rcAceFnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.77.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:18:11:4f:b6:9a:5a:0f:c0:6f:06:a3:6f:e4:4d:22:09:b1:
ed:23:b6:fa:56:90:2f:f5:fb:af:49:66:bc:85:0d:b2:1d:8f:
1c:05:7c:d7:c0:56:8d:f2:bf:9c:24:2f:1a:17:89:e0:fc:84:
60:bd:42:ca:a9:20:fb:fb:76:45:79:0b:38:83:0f:97:40:d5:
eb:15:5e:fa:6b:9c:22:ba:1b:35:05:50:8d:5d:57:9b:5f:9b:
23:71:73:62:ea:91:05:32:9a:47:7a:68:4c:e6:08:5e:dc:ef:
ad:5b:03:fc:dd:aa:56:50:e9:cb:53:f7:03:f5:96:6d:8f:c0:
75:03:c4:ae:8e:ea:92:83:e3:30:87:d4:e9:eb:d9:4a:d3:1d:
fc:3c:5c:ee:93:a7:d5:73:49:d0:55:2f:05:9c:b3:98:8f:e5:
b4:b9:13:3f:ee:b2:ed:ee:57:43:b0:9b:96:50:ba:a5:41:d3:
46:e6:0d:9d:4e:57:86:45:8c:f1:22:26:0d:e8:f7:67:62:ac:
6f:36:fd:4f:07:25:84:e5:a9:c1:c9:73:eb:2f:40:6e:bf:84:
88:54:a4:71:5c:5c:ef:16:a2:16:d1:98:48:06:4d:e3:33:36:
ee:18:26:a7:a5:fe:49:5e:07:9a:6f:b1:9e:23:52:ff:4e:e5:
06:5d:c6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 18:26:52 2024 by rpki-client on console-ams.rpki-client.org