Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/npMD5CpAuYMJjhejV6boFjJbJzk.roa
File: npMD5CpAuYMJjhejV6boFjJbJzk.roa (raw, json)
Hash identifier: a2sK4K/SLOYRxen5HidTR1BxRtxoSn/2IYZt4z/GTcU=
Subject key identifier: 9E:93:03:E4:2A:40:B9:83:09:8E:17:A3:57:A6:E8:16:32:5B:27:39
Certificate issuer: /CN=9c47ee73c28780b12f152cfa259ade3d8ae0d13b
Certificate serial: 018570CBED5F5BE93B8BDE6BD25B5C789CF3
Authority key identifier: 9C:47:EE:73:C2:87:80:B1:2F:15:2C:FA:25:9A:DE:3D:8A:E0:D1:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEfuc8KHgLEvFSz6JZrePYrg0Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/npMD5CpAuYMJjhejV6boFjJbJzk.roa
Signing time: Mon 02 Jan 2023 04:44:50 +0000
ROA not before: Mon 02 Jan 2023 04:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197343
IP address blocks: 194.33.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Dec 2023 18:09:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:ed:5f:5b:e9:3b:8b:de:6b:d2:5b:5c:78:9c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c47ee73c28780b12f152cfa259ade3d8ae0d13b
Validity
Not Before: Jan 2 04:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e9303e42a40b983098e17a357a6e816325b2739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:32:db:41:1c:8a:20:35:8c:d4:dd:80:c4:09:
17:18:52:e6:84:16:dd:f2:17:df:4a:6e:e3:50:66:
88:bc:51:bd:b8:18:8b:8c:a7:dd:88:3c:9b:8e:66:
58:c3:63:c9:55:33:8d:76:ac:4e:0f:d5:0f:33:eb:
b4:58:6d:46:e3:b6:de:8d:00:81:3d:cb:f5:e9:e3:
9c:1a:88:fb:0b:50:1d:4c:50:54:57:41:71:72:11:
69:bb:55:63:18:72:e4:e3:e5:4d:52:d5:09:29:2e:
9c:af:3c:fa:0d:ec:0d:ff:a8:06:b7:6b:91:1e:a4:
1d:2e:01:ee:ba:ed:4c:72:7f:47:17:02:2b:fe:5c:
a0:bf:67:59:65:9f:57:2d:62:2b:7a:db:77:58:6e:
15:0d:df:71:64:f6:71:82:81:ed:2a:d4:0d:ae:df:
8f:99:8f:8b:f2:07:c2:20:22:8c:f3:8a:a2:3d:0e:
b6:f0:91:e3:56:3b:d3:bc:12:bf:3d:af:f2:a1:a7:
10:48:11:ae:89:75:76:be:fa:fb:96:26:32:9c:02:
50:ae:ab:f1:38:fb:3f:d7:bd:8b:65:da:78:0a:0e:
45:49:da:8b:7e:d4:bb:8f:b5:3f:2f:ad:d9:b6:7c:
1b:5a:9c:ea:2e:5a:95:de:1b:8e:39:c7:00:ee:7c:
55:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:93:03:E4:2A:40:B9:83:09:8E:17:A3:57:A6:E8:16:32:5B:27:39
X509v3 Authority Key Identifier:
keyid:9C:47:EE:73:C2:87:80:B1:2F:15:2C:FA:25:9A:DE:3D:8A:E0:D1:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEfuc8KHgLEvFSz6JZrePYrg0Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/npMD5CpAuYMJjhejV6boFjJbJzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/nEfuc8KHgLEvFSz6JZrePYrg0Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.105.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a4:de:40:56:bc:d4:86:3b:da:c5:a2:f5:39:05:07:c6:fd:
c6:20:84:07:ec:4c:c7:db:a7:27:d5:15:a9:33:81:20:5e:3f:
c6:e6:43:49:06:ff:bf:c8:6f:1a:41:dd:bb:a6:ce:2d:f3:35:
86:2f:c7:b4:0e:94:15:c8:09:90:3a:dc:ce:7f:32:39:55:04:
27:b8:3b:d7:0e:25:fc:97:75:29:8f:ba:f9:3b:66:b0:ca:12:
2d:7b:01:3e:c8:f6:08:68:d2:b6:59:a1:9e:05:91:55:64:50:
a8:a2:ad:08:94:0d:89:e4:54:8f:ab:44:bd:6c:72:df:07:0f:
c1:cf:96:21:26:87:79:82:fa:b7:bc:2b:8e:fa:cf:21:ae:d5:
7c:1e:c1:76:c3:bb:00:dc:99:24:ae:c0:37:0b:0f:d9:f2:3d:
d6:a0:71:92:41:96:38:8d:d8:ed:85:69:da:a7:1e:d9:87:74:
e9:a8:a7:0e:2f:de:6f:80:a6:d7:a7:0e:d4:4d:e2:36:93:f7:
f6:20:9c:9f:4d:e8:09:79:49:97:2a:bb:0f:07:64:82:06:07:
ca:d9:55:a4:3f:2d:5a:55:ee:85:2c:f9:c6:10:ee:73:77:af:
53:ea:91:ee:b3:f3:99:3a:bf:76:29:fd:19:11:07:7f:74:36:
cf:ca:8b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:02 2024 by rpki-client on console-ams.rpki-client.org