Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/0COheyMO1aRQE0APbLWsGFseP-M.roa
File: 0COheyMO1aRQE0APbLWsGFseP-M.roa (raw, json)
Hash identifier: 5uz6ZZYITAR1HadbOXi/wdoiyPkej1KVKVCuE9CCiBM=
Subject key identifier: D0:23:A1:7B:23:0E:D5:A4:50:13:40:0F:6C:B5:AC:18:5B:1E:3F:E3
Certificate issuer: /CN=a7a538aac33778460e19701aab5952c7aa25f05c
Certificate serial: 018B48DEB15B07087646C7F3F62FE881003D
Authority key identifier: A7:A5:38:AA:C3:37:78:46:0E:19:70:1A:AB:59:52:C7:AA:25:F0:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/0COheyMO1aRQE0APbLWsGFseP-M.roa
Signing time: Thu 19 Oct 2023 16:57:15 +0000
ROA not before: Thu 19 Oct 2023 16:57:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30644
IP address blocks: 194.147.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Nov 2023 14:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:48:de:b1:5b:07:08:76:46:c7:f3:f6:2f:e8:81:00:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7a538aac33778460e19701aab5952c7aa25f05c
Validity
Not Before: Oct 19 16:57:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d023a17b230ed5a45013400f6cb5ac185b1e3fe3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:11:89:47:5c:29:a2:3d:44:40:6d:a9:08:
95:8a:cf:46:c9:52:21:5f:d2:19:67:cf:cd:09:3a:
26:ce:db:5f:19:9a:cf:09:a6:c1:6f:79:6d:88:76:
7d:c0:ab:60:a3:8d:a0:3b:be:9f:53:d2:87:26:28:
7e:c3:48:5d:39:30:50:4c:98:de:31:da:14:78:3d:
32:9b:6f:ff:ef:98:bd:99:b5:a0:a3:ea:89:bd:af:
32:b7:27:38:a0:c7:62:a6:59:37:bb:bb:ce:6a:1a:
95:c2:b3:56:fe:17:ef:90:41:6e:3a:f4:30:dd:d7:
db:ac:e4:93:70:92:38:c8:ed:22:b8:7c:ae:2b:2d:
05:a9:14:32:fd:a7:94:6f:a0:54:d5:64:fb:df:f9:
f1:39:ff:f9:31:80:a1:00:78:c1:3b:c5:91:5c:22:
50:12:9f:ff:87:ab:ed:e8:ac:05:5d:d6:b8:d0:98:
e3:d4:7d:e3:80:24:7d:a7:7e:47:6f:5a:d2:11:99:
06:95:99:bf:04:ed:aa:c8:78:5f:f5:f2:1d:63:e4:
0d:02:10:fd:70:74:70:63:61:34:48:3a:b8:e7:f1:
11:e5:19:4e:df:b6:6f:63:cf:9e:58:48:b6:5f:b5:
59:5d:63:a8:e6:74:e6:a4:1a:0b:5d:1d:da:91:2c:
d1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:23:A1:7B:23:0E:D5:A4:50:13:40:0F:6C:B5:AC:18:5B:1E:3F:E3
X509v3 Authority Key Identifier:
keyid:A7:A5:38:AA:C3:37:78:46:0E:19:70:1A:AB:59:52:C7:AA:25:F0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/0COheyMO1aRQE0APbLWsGFseP-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a83337-6e16-4cd9-921a-87b010ea6235/1/p6U4qsM3eEYOGXAaq1lSx6ol8Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.32.0/24
Signature Algorithm: sha256WithRSAEncryption
12:40:57:01:47:f9:c2:23:a5:37:b4:72:ff:c6:6c:e5:c8:ce:
27:a2:39:26:a5:62:d6:32:5f:27:b1:e1:26:dd:43:ec:59:dd:
6c:95:00:97:2e:41:3a:8e:a7:e5:31:aa:d9:55:ba:d8:e5:4e:
84:77:18:3a:ee:f9:16:6e:88:a6:b3:4c:df:90:7b:04:1b:00:
30:49:46:d5:7c:9e:9e:d9:17:61:d8:83:45:e0:e6:26:26:e9:
4b:45:74:cc:6b:b6:ee:1d:c6:36:52:e9:5e:20:7a:b2:1a:72:
b8:53:32:61:53:06:de:1e:cc:35:2b:66:2b:7d:b5:b3:bd:b1:
3c:ab:47:17:6c:ed:2c:ea:27:5e:d4:3f:3f:74:8f:51:f8:00:
d9:64:d4:33:c4:5b:ca:ae:66:0f:9f:ae:9f:28:36:e9:dd:53:
47:67:dd:40:55:ff:6b:90:48:a1:35:77:49:f6:af:a3:3a:1f:
f6:6d:b8:0b:48:f8:ee:1c:dc:a4:16:16:bc:60:85:a7:dd:f3:
27:8c:d2:de:7e:62:45:ee:b4:0b:a5:89:50:84:ef:6b:5f:b0:
ed:05:1d:82:fb:ac:5f:a9:5e:51:da:97:6d:7a:78:9d:94:49:
02:45:64:79:e9:ef:61:51:2b:7e:2f:10:cc:77:16:6b:16:e6:
93:a8:07:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:31 2024 by rpki-client on console-ams.rpki-client.org