Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/nE0ejbkK5mAZcvMpYcI9VX5JpEs.roa
File: nE0ejbkK5mAZcvMpYcI9VX5JpEs.roa (raw, json)
Hash identifier: TCRgoMGZrk0FC5VFUXfolaoUTPHG/x5fveECYTAaNgM=
Subject key identifier: 9C:4D:1E:8D:B9:0A:E6:60:19:72:F3:29:61:C2:3D:55:7E:49:A4:4B
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF7753B78A2B1ACFFEC38458A32B27
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/nE0ejbkK5mAZcvMpYcI9VX5JpEs.roa
Signing time: Sun 01 Jan 2023 15:24:48 +0000
ROA not before: Sun 01 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201448
IP address blocks: 194.181.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:77:53:b7:8a:2b:1a:cf:fe:c3:84:58:a3:2b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c4d1e8db90ae6601972f32961c23d557e49a44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:57:ee:51:14:b0:b7:45:42:9e:b4:36:77:4d:
08:fa:22:13:dd:48:27:26:4b:e7:e8:dd:a0:6f:49:
8b:1e:02:90:32:c1:2f:fa:aa:4a:d0:93:66:a4:aa:
72:d6:5b:90:54:5b:f4:0e:66:20:ea:c1:e7:ab:70:
d1:73:04:83:b7:7e:13:9f:11:8b:ba:90:4a:f2:d2:
d9:99:4d:5a:e7:e4:a0:8f:07:4a:6d:c8:b0:85:97:
ef:50:49:35:bd:ff:a9:5e:fd:cf:4d:0b:78:e0:be:
30:8f:91:7f:53:df:91:11:6e:32:c4:82:7e:f9:3d:
31:9a:77:f5:7a:62:3a:aa:ce:49:35:ad:3e:9a:6b:
c8:99:7d:f6:c7:ce:a4:43:2e:73:f9:e0:54:9f:62:
a9:47:8f:22:35:fb:34:d7:85:9a:70:a1:d4:8f:5a:
ac:f4:38:33:05:54:78:4c:35:9f:e3:5b:b2:65:95:
1a:6b:71:91:94:32:7b:5f:ec:0f:bb:0d:5d:45:36:
59:b1:20:90:60:c7:fd:27:40:7b:85:3e:00:d3:d8:
33:36:7e:a8:af:1c:80:60:69:e3:98:76:41:71:65:
5f:23:86:05:7c:a2:f6:1b:53:5d:cb:72:7e:6d:1b:
6a:bc:50:a9:dd:f5:9d:63:63:1b:77:19:2f:76:08:
86:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:4D:1E:8D:B9:0A:E6:60:19:72:F3:29:61:C2:3D:55:7E:49:A4:4B
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/nE0ejbkK5mAZcvMpYcI9VX5JpEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.38.0/24
Signature Algorithm: sha256WithRSAEncryption
34:56:19:7e:c0:38:f7:20:2e:81:46:93:f9:a6:15:f2:8a:fc:
3d:9d:f3:51:ca:b9:78:9f:13:04:64:e3:6f:53:c8:20:4a:7f:
e9:24:5c:41:19:f2:2c:7d:b5:c0:13:85:8e:6d:b6:c4:9e:38:
e7:3b:49:cd:43:06:8a:6d:85:17:53:9b:04:c6:82:7c:a2:63:
e5:f0:9f:3f:2f:19:88:15:3e:32:06:70:33:d2:6d:0d:0f:6f:
cb:17:f2:a8:fb:80:f3:7f:03:ad:77:47:b4:c1:56:42:46:a1:
a0:56:07:f6:c1:60:ae:4e:0b:b2:09:5c:c8:b8:a5:33:c5:77:
b2:db:2a:27:6e:1f:1a:97:0e:f3:10:89:36:f6:09:f0:1f:08:
3f:8b:f8:a7:bc:fa:df:ec:e6:d9:60:32:31:f0:1d:94:35:8a:
b5:29:f6:51:88:b8:4f:47:00:dc:b9:23:f6:79:df:dd:45:f0:
32:fe:6b:c2:da:5b:2a:68:c6:b5:1f:fc:7a:39:17:b6:98:45:
21:a4:3a:9a:f9:8c:8e:b4:63:a3:e5:a0:93:43:81:08:36:f2:
e8:88:16:de:b6:3b:61:15:0e:73:5d:78:55:4f:41:19:10:ca:
c5:5d:d5:c8:03:ba:54:6b:3d:be:9b:46:43:02:c6:d9:dc:76:
b3:f0:6d:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org