Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8db579-c1fc-4215-90f4-f4673ba52c00/1/mUfc8VCsAWujOPd9C7UwHR4_1m4.roa
File: mUfc8VCsAWujOPd9C7UwHR4_1m4.roa (raw, json)
Hash identifier: d+L73c0NL1GYJltTPLHpzayLrOOzz9hk+lsMZpuORRY=
Subject key identifier: 99:47:DC:F1:50:AC:01:6B:A3:38:F7:7D:0B:B5:30:1D:1E:3F:D6:6E
Certificate issuer: /CN=d07267bf23b2971a4795a83ef8478a821bafb1db
Certificate serial: 0190912B17799849FC79ECBC3B4A42A6CF3B
Authority key identifier: D0:72:67:BF:23:B2:97:1A:47:95:A8:3E:F8:47:8A:82:1B:AF:B1:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0HJnvyOylxpHlag--EeKghuvsds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8db579-c1fc-4215-90f4-f4673ba52c00/1/mUfc8VCsAWujOPd9C7UwHR4_1m4.roa
Signing time: Mon 08 Jul 2024 07:07:18 +0000
ROA not before: Mon 08 Jul 2024 07:07:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8445
IP address blocks: 194.37.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 12:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:91:2b:17:79:98:49:fc:79:ec:bc:3b:4a:42:a6:cf:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07267bf23b2971a4795a83ef8478a821bafb1db
Validity
Not Before: Jul 8 07:07:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9947dcf150ac016ba338f77d0bb5301d1e3fd66e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7c:f2:86:92:5a:d5:0e:c1:b4:55:3d:a3:79:
b6:35:5b:60:e2:cf:ba:49:7f:18:7d:0a:79:41:76:
8d:64:f2:51:f6:1c:39:4e:94:d0:7f:c0:f8:59:ae:
bf:a2:8b:50:c7:a6:77:83:db:79:ac:ed:3a:99:ff:
9f:0f:e9:b5:74:9f:81:2b:6c:2a:87:f5:f4:43:df:
fd:a1:4e:b7:e2:1d:f1:44:ac:de:1e:23:cd:07:e4:
53:f4:12:7a:ed:bb:64:da:7e:4b:d8:26:55:1d:d3:
c1:94:cc:cd:b1:bb:ab:50:c1:d7:da:42:4a:f9:5a:
85:1d:e0:68:7a:12:5b:e5:4e:cb:79:0d:8a:93:ed:
bd:2a:48:e5:9f:a9:62:43:db:d7:9f:ae:4d:c3:29:
e9:af:30:20:f5:c5:ce:76:f8:b4:94:e8:8b:ba:a7:
07:f2:11:67:dc:db:fa:39:86:d8:bd:b1:1f:e3:08:
db:c4:8f:ea:3e:ee:98:3a:97:d8:2e:94:3f:1e:14:
c6:c7:a0:f9:76:d4:95:fe:5b:19:a2:3b:f4:1a:8a:
45:6a:37:b1:c0:7a:8c:bb:d4:4b:e1:7b:f3:09:8b:
a6:11:e2:cb:21:08:a7:3b:ec:cb:a3:c5:68:d3:20:
9f:04:82:b2:21:ab:72:7c:c5:fd:89:17:fa:03:35:
30:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:47:DC:F1:50:AC:01:6B:A3:38:F7:7D:0B:B5:30:1D:1E:3F:D6:6E
X509v3 Authority Key Identifier:
keyid:D0:72:67:BF:23:B2:97:1A:47:95:A8:3E:F8:47:8A:82:1B:AF:B1:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0HJnvyOylxpHlag--EeKghuvsds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8db579-c1fc-4215-90f4-f4673ba52c00/1/mUfc8VCsAWujOPd9C7UwHR4_1m4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8db579-c1fc-4215-90f4-f4673ba52c00/1/0HJnvyOylxpHlag--EeKghuvsds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.0.0/24
Signature Algorithm: sha256WithRSAEncryption
60:23:85:4a:e0:7e:fe:f6:75:57:92:cc:d9:45:d9:36:c7:88:
3c:eb:4d:6c:17:18:d8:be:e3:40:29:bf:45:ea:60:78:19:e1:
75:89:3f:73:af:89:27:e9:5d:79:9f:d9:73:85:95:b9:34:bd:
d3:8f:02:10:22:52:1e:4f:7f:59:8d:ab:12:91:df:08:05:98:
6c:c1:61:62:c6:9f:0c:e7:c1:9e:f6:fb:da:b6:b7:a4:56:d8:
0c:d4:3f:b4:17:0a:21:21:3a:6b:60:ea:3e:2d:b2:b4:a4:62:
bb:fd:44:ed:a0:b4:b0:a8:04:be:61:0a:c4:5d:36:1a:3e:08:
88:bd:6c:34:6e:61:84:7d:14:45:59:70:5a:f7:57:12:56:2c:
b6:d2:be:cd:3d:f3:24:6f:5c:ef:a2:9d:47:6b:55:b9:9c:1b:
0c:8e:2f:1b:da:f1:c6:1e:91:8c:7b:ae:a0:8c:30:84:e6:19:
ed:cf:49:e3:6b:68:a9:7c:59:63:48:87:97:49:37:89:f5:71:
43:2c:02:3d:02:e5:cb:e6:17:fd:a6:ee:82:8d:e7:94:ab:fd:
fb:9c:19:fa:a9:a9:cd:37:d4:52:95:5b:af:d7:9b:55:cd:a7:
71:b9:63:81:88:51:d1:fb:e1:2e:f6:50:a8:95:66:95:29:04:
0c:de:b6:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 15:35:04 2024 by rpki-client on console-ams.rpki-client.org