Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pM0WV6rEb-nA3amuv4d68Aj-YcE.roa
File: pM0WV6rEb-nA3amuv4d68Aj-YcE.roa (raw, json)
Hash identifier: k61CLe6aaPr1U/rP41J2K2VCYpY95SVP3eSco8h/bsc=
Subject key identifier: A4:CD:16:57:AA:C4:6F:E9:C0:DD:A9:AE:BF:87:7A:F0:08:FE:61:C1
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F66F17B90B4E247D8A6DA36D3977B0F
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pM0WV6rEb-nA3amuv4d68Aj-YcE.roa
Signing time: Sun 01 Jan 2023 22:14:55 +0000
ROA not before: Sun 01 Jan 2023 22:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 194.87.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Jan 2023 15:27:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:f1:7b:90:b4:e2:47:d8:a6:da:36:d3:97:7b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4cd1657aac46fe9c0dda9aebf877af008fe61c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:31:96:4e:ba:4b:a6:e8:54:42:57:4e:c9:2f:
34:95:59:4b:3f:87:02:29:0e:4b:82:c5:61:6d:13:
85:28:66:dc:99:39:b1:06:4c:3e:ba:ee:f1:36:97:
f3:f0:a1:7e:d6:11:0f:69:81:6a:a8:0f:1d:e9:61:
c2:83:a7:de:84:e8:90:9f:57:db:38:b7:fc:67:fa:
36:04:88:25:7f:7c:05:a0:b4:0b:a5:49:e5:0a:10:
9f:d6:0e:5f:31:68:24:a4:34:4f:c5:c2:94:59:c7:
a5:62:bc:04:d3:64:ae:cc:93:32:82:64:47:33:47:
de:d8:59:32:5a:d9:ce:34:f9:13:6c:ef:e9:84:21:
3f:1d:0d:68:34:4c:46:47:be:14:84:e7:34:59:03:
5c:ef:ba:f7:28:c2:86:34:0e:5f:a8:8f:a8:96:3a:
54:34:f0:a7:b2:ad:95:b4:2e:fe:18:65:6a:04:19:
55:1a:f8:3d:fd:c0:68:c3:89:a0:ba:70:65:3d:e7:
fc:d1:79:5f:c2:96:2c:9e:81:3e:22:22:86:f2:e4:
8b:81:63:6c:ee:12:fd:1e:ff:77:4f:e9:6b:2f:b9:
02:95:c2:6d:2e:29:68:c1:01:27:3e:a2:1d:9b:d3:
9f:67:54:70:d7:14:87:f5:24:64:31:a2:4e:12:36:
f1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CD:16:57:AA:C4:6F:E9:C0:DD:A9:AE:BF:87:7A:F0:08:FE:61:C1
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/pM0WV6rEb-nA3amuv4d68Aj-YcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.34.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:50:50:32:62:39:a8:eb:88:8f:7b:7f:66:d4:09:09:80:f6:
e4:7b:8a:17:47:57:82:13:c3:78:09:78:8b:92:30:2c:a5:ed:
0c:1c:d1:17:d9:b2:05:42:a1:b0:f6:a8:18:be:08:b7:ea:7b:
e8:fb:6d:d3:0a:1b:b9:63:ed:29:4b:95:90:61:f6:d9:10:50:
91:71:19:f9:bc:10:45:cd:31:e9:51:62:8e:2e:51:2b:ce:7f:
00:b8:4b:f0:e9:7b:1c:71:cb:a8:b2:1c:ee:c0:b8:68:4f:49:
9b:1b:2d:44:cf:68:d8:2b:0d:70:34:5d:a9:ac:52:32:89:9f:
c5:bc:d6:6d:64:f7:25:97:82:15:10:43:64:9a:13:57:1a:b5:
95:69:e3:c2:40:b3:84:86:11:72:06:ea:18:bf:7c:c5:f9:3f:
1a:8f:bf:78:ae:01:9d:4a:54:6c:bf:49:29:a8:58:28:63:57:
cd:8d:94:34:85:19:15:e7:7b:ee:97:a6:25:44:75:e2:12:2e:
95:c1:f7:93:95:52:1a:bf:9a:21:56:35:95:21:2d:7d:b7:2b:
9b:bc:16:55:6a:ed:b6:21:b9:88:b5:3f:8a:28:94:cf:4b:14:
41:0a:99:a3:bc:58:07:19:12:73:2e:26:6d:08:7d:45:a2:cf:
ba:91:c9:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:46 2024 by rpki-client on console-ams.rpki-client.org