Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lIk9QV62Y7TPmlA55NxkrUDh3qU.roa
File: lIk9QV62Y7TPmlA55NxkrUDh3qU.roa (raw, json)
Hash identifier: Z6lYZVz50mQJ7FiUbhIcA2fTEP6L8gZ0yr/fE156GAQ=
Subject key identifier: 94:89:3D:41:5E:B6:63:B4:CF:9A:50:39:E4:DC:64:AD:40:E1:DE:A5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018BD26C567AB20788B9C95D5BA6EF0DF8D0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lIk9QV62Y7TPmlA55NxkrUDh3qU.roa
Signing time: Wed 15 Nov 2023 09:59:57 +0000
ROA not before: Wed 15 Nov 2023 09:59:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50738
IP address blocks: 194.87.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Dec 2023 14:34:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:6c:56:7a:b2:07:88:b9:c9:5d:5b:a6:ef:0d:f8:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 15 09:59:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94893d415eb663b4cf9a5039e4dc64ad40e1dea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:73:cf:fa:30:8b:ac:07:be:fb:c7:c6:5d:
32:30:a6:31:ca:f3:bf:d3:23:9f:a7:79:9b:19:84:
dc:a2:d7:67:a4:95:94:68:54:35:1f:18:a8:c9:82:
79:9d:d9:a8:8e:91:55:f6:5f:61:b1:d3:62:3c:02:
b2:ef:a1:69:95:21:d8:07:ef:e1:6f:05:10:47:55:
c4:a5:22:a1:3a:2d:f6:5c:a8:33:e5:3d:ba:b1:13:
77:9d:c0:3a:c0:cb:bc:96:f1:9f:ad:89:23:96:c3:
4f:71:9a:8c:b2:0c:65:b8:04:bd:c4:7a:43:c0:24:
b0:cc:f8:9f:2d:9f:97:fb:9b:86:97:c6:dd:39:50:
eb:89:72:13:6a:f0:02:31:d9:1e:55:db:93:fa:e5:
10:27:75:b7:03:9a:dd:ce:5c:46:e7:be:fe:87:cd:
c4:c1:51:1e:b8:3e:f2:39:34:c1:0b:8c:67:f3:5c:
78:ff:52:5e:41:b7:b8:29:6a:58:cc:6d:47:db:46:
d7:ca:92:62:00:44:4f:f3:1b:87:fa:35:2a:2f:0b:
99:6c:0f:b1:6c:11:12:92:35:26:bb:05:7d:b1:90:
c5:0b:c0:46:a6:80:92:d6:d4:38:7c:cf:15:89:3c:
b0:81:b0:f2:a6:be:d0:3e:66:58:16:d6:5b:bb:eb:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:89:3D:41:5E:B6:63:B4:CF:9A:50:39:E4:DC:64:AD:40:E1:DE:A5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/lIk9QV62Y7TPmlA55NxkrUDh3qU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.32.0/24
Signature Algorithm: sha256WithRSAEncryption
80:02:c3:c5:84:43:48:bc:11:66:09:80:05:9a:6c:a3:56:93:
a9:45:a4:af:e0:a5:40:20:6f:a7:cb:91:2d:18:c8:ee:88:a3:
a4:c7:7f:a5:fd:cc:4e:71:ca:19:47:e1:39:19:29:26:b6:e9:
c6:53:e4:c7:b2:a9:92:4a:9c:db:f7:e4:bb:fa:e4:fb:b3:a7:
88:b6:12:f8:9d:87:f9:0d:c2:e5:47:8e:6d:d2:e7:53:84:f8:
79:8a:70:4c:10:fd:c4:6f:87:3d:ab:c8:5a:18:fc:1c:55:d9:
4c:dc:f2:6e:fb:17:f3:de:cb:e2:26:a6:14:a8:d8:81:0a:16:
63:14:87:f5:c0:61:d1:8b:25:94:b9:71:5d:00:b9:ba:b4:27:
97:df:66:6c:66:d2:ee:09:e8:21:7d:bb:41:b6:f0:44:3c:82:
94:94:26:db:1e:77:88:52:fc:71:3e:8e:2e:36:43:a4:94:66:
a6:9d:9b:ba:c2:0c:16:0b:95:2f:63:26:28:da:7a:cd:16:13:
25:d5:a6:09:27:8e:d4:3e:d6:08:70:75:d6:b1:4c:ad:22:8d:
09:79:32:55:52:4b:b7:42:83:b6:c6:dc:49:36:e9:1f:4a:3d:
88:f7:e4:d9:75:3a:ad:78:c7:46:8e:a5:3a:28:33:71:4d:8c:
f0:d9:b5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:25 2024 by rpki-client on console-fra.rpki-client.org