Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iuWreAiLO0KEYC0XTE7Xc7MjfrQ.roa
File: iuWreAiLO0KEYC0XTE7Xc7MjfrQ.roa (raw, json)
Hash identifier: mMuiJbir9IbYGpB/oxpskXAvJ2u07vaUcyg9vOLMGkY=
Subject key identifier: 8A:E5:AB:78:08:8B:3B:42:84:60:2D:17:4C:4E:D7:73:B3:23:7E:B4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0191843EA2799A80976C3BF40B1090DCE4A4
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iuWreAiLO0KEYC0XTE7Xc7MjfrQ.roa
Signing time: Sat 24 Aug 2024 11:56:22 +0000
ROA not before: Sat 24 Aug 2024 11:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211014
IP address blocks: 194.58.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Aug 2024 16:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:84:3e:a2:79:9a:80:97:6c:3b:f4:0b:10:90:dc:e4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 24 11:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ae5ab78088b3b4284602d174c4ed773b3237eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:93:f0:85:a0:42:89:2e:7b:2c:76:68:dd:2c:
d6:49:ea:e3:33:a8:14:66:79:59:7b:d3:08:8d:9a:
3f:8a:11:36:45:81:4e:5b:09:2a:52:98:1b:5a:d3:
37:41:9f:08:bc:68:3c:fb:4c:90:4c:c4:b1:be:c8:
bb:f0:02:a8:98:e5:39:ba:1b:da:b1:a5:0d:85:36:
4e:21:14:b9:91:aa:2d:b7:8e:9b:a3:76:e3:d6:72:
55:80:a5:1e:df:27:09:34:46:a1:e0:15:a7:76:ba:
24:6d:e2:47:3f:8f:0e:17:2c:49:f6:ac:d9:a8:6a:
66:9b:76:da:b8:e2:c5:23:cf:c5:80:94:85:ca:39:
d2:ed:22:97:bc:75:b7:cd:f0:cf:c9:6b:8d:fe:3e:
eb:65:3a:38:51:aa:65:18:4d:86:44:3d:d1:8c:cf:
32:04:8d:1e:e9:9a:c3:13:79:bd:f6:ac:9e:7b:5b:
9e:67:d1:8a:6d:5c:d0:4d:fe:26:a5:cb:92:79:5b:
6b:26:c5:08:30:5f:de:44:ee:4a:3a:b9:74:e4:a0:
c7:2e:35:bf:c9:5c:28:a0:9e:ae:92:b5:61:bb:a4:
0b:95:42:f7:6f:b5:18:ae:00:1a:2a:1f:c6:03:b2:
6f:4d:c8:03:e5:35:cb:b2:ce:ef:22:13:37:16:28:
79:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E5:AB:78:08:8B:3B:42:84:60:2D:17:4C:4E:D7:73:B3:23:7E:B4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iuWreAiLO0KEYC0XTE7Xc7MjfrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.58.39.0/24
Signature Algorithm: sha256WithRSAEncryption
96:02:c6:49:89:65:60:bc:58:06:57:ad:1c:28:b8:2d:88:ef:
2e:b4:20:d9:f0:f8:da:4c:ea:a2:d7:d2:99:bd:05:f3:27:3c:
c8:ae:a8:da:04:1b:b5:62:44:23:e6:d9:75:69:7a:65:cd:2c:
9f:f6:0c:f8:2e:8e:ce:05:b0:a3:90:56:9b:88:a1:6a:a3:18:
2a:8d:1a:81:16:2e:3a:f8:98:64:44:ef:69:7d:23:cd:3a:1c:
38:32:d1:07:47:fd:ff:84:3d:a4:2c:e1:1f:89:1f:47:64:50:
85:fc:ce:16:d9:68:ab:18:3a:c4:17:33:26:29:aa:e5:10:5c:
09:ea:4a:2d:52:7d:c8:34:ec:59:2b:40:6d:53:8a:a5:07:2b:
28:d1:c7:25:78:07:04:e5:6b:90:4c:b2:d6:37:3d:1d:27:23:
47:2b:5c:66:35:95:cf:a3:52:4c:e7:91:86:40:3d:8f:c0:10:
e0:cc:41:d1:23:1b:fb:0a:b9:7b:50:b3:f7:6a:c1:91:d0:a1:
6f:b0:e5:aa:ec:a4:91:b0:42:b4:1a:38:f3:c4:55:52:aa:fd:
db:51:8d:70:11:e3:7a:84:30:22:59:82:d7:2d:c9:80:3b:68:
90:2f:ad:10:1f:e4:35:28:13:9c:49:ae:63:21:a6:7b:93:33:
85:bc:4f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 18:38:15 2024 by rpki-client on console-ams.rpki-client.org