Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/x76Uu_i7muiUxhhcmZ932cFPKMU.roa
File: x76Uu_i7muiUxhhcmZ932cFPKMU.roa (raw, json)
Hash identifier: Vn3RQ4FyqXyllpQ2H3H90IWy349iEj8W6bTi7PP5inM=
Subject key identifier: C7:BE:94:BB:F8:BB:9A:E8:94:C6:18:5C:99:9F:77:D9:C1:4F:28:C5
Certificate issuer: /CN=9a085e06f2e2a2e304256f88135ff13de72d0736
Certificate serial: 018572B413836B419F30A6F2ABD0784A8D1B
Authority key identifier: 9A:08:5E:06:F2:E2:A2:E3:04:25:6F:88:13:5F:F1:3D:E7:2D:07:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mgheBvLiouMEJW-IE1_xPectBzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/x76Uu_i7muiUxhhcmZ932cFPKMU.roa
Signing time: Mon 02 Jan 2023 13:38:02 +0000
ROA not before: Mon 02 Jan 2023 13:38:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42568
IP address blocks: 194.0.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:13:83:6b:41:9f:30:a6:f2:ab:d0:78:4a:8d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a085e06f2e2a2e304256f88135ff13de72d0736
Validity
Not Before: Jan 2 13:38:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7be94bbf8bb9ae894c6185c999f77d9c14f28c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:08:ca:5d:85:91:43:e3:25:39:57:fc:c2:91:
eb:d5:28:11:5e:fc:01:e0:56:a7:74:4a:53:f3:2a:
c7:57:57:04:7f:86:4c:cc:54:c8:4e:ed:80:c8:83:
a2:64:db:89:11:19:ff:df:4d:5a:cf:2b:d7:a2:5b:
e0:bf:ce:f7:b1:d2:f9:47:d8:bc:19:0d:ad:af:c1:
9e:22:65:f4:6e:97:4c:eb:b9:e6:21:af:d2:67:c0:
84:36:06:ea:6b:65:c8:1a:5d:a0:d7:90:16:f0:19:
90:7c:5c:1f:a1:4f:52:55:0d:37:58:c2:23:92:1d:
2f:33:77:a3:02:b5:ff:88:3d:d6:e7:b5:4c:b0:62:
11:63:32:86:d9:c0:49:c8:9c:2c:5e:44:06:ce:a1:
5a:e7:79:f0:7b:81:54:80:d0:0a:5e:e5:ab:3e:f9:
73:5c:10:28:05:4e:04:ff:b7:e8:9a:7e:a1:fe:c7:
42:d0:61:3a:20:bc:1c:9a:05:35:9c:fc:c9:fe:b7:
6d:97:7e:cd:9d:3e:39:f5:f1:61:b2:eb:73:e3:73:
52:71:62:d8:b5:dd:33:91:39:b2:a1:61:e6:f4:88:
8e:0d:2a:78:70:d2:ac:73:bc:e2:63:38:15:a9:b6:
2d:10:30:5f:d2:7b:48:68:2f:d7:ff:79:a4:99:cc:
4a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:BE:94:BB:F8:BB:9A:E8:94:C6:18:5C:99:9F:77:D9:C1:4F:28:C5
X509v3 Authority Key Identifier:
keyid:9A:08:5E:06:F2:E2:A2:E3:04:25:6F:88:13:5F:F1:3D:E7:2D:07:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mgheBvLiouMEJW-IE1_xPectBzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/x76Uu_i7muiUxhhcmZ932cFPKMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/mgheBvLiouMEJW-IE1_xPectBzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.253.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:52:6e:d2:4c:31:3e:c4:22:e5:d6:61:be:10:82:0f:ad:da:
4f:46:d7:b3:8b:2f:4b:ae:16:e1:66:89:48:13:47:3e:de:88:
1a:1f:38:b7:36:66:46:f1:d2:19:21:f6:d2:e3:2a:6b:aa:ae:
7e:36:1a:2f:bb:e7:89:2f:cc:a0:2a:0b:25:f8:66:e8:f0:38:
a6:69:1d:8c:7f:12:19:f3:db:66:1b:69:0b:9e:bb:94:8a:7f:
79:4e:3a:07:e7:28:c4:14:43:9c:2c:66:2c:9f:9a:81:63:2d:
62:5f:06:ed:db:d4:cb:71:6a:13:d6:ea:50:95:01:89:db:12:
3b:df:85:75:bd:00:9c:90:77:b1:22:1a:89:7a:d8:82:08:a7:
87:57:1b:fc:db:fa:a8:54:ad:85:e8:56:1e:0c:51:35:d3:e9:
71:ee:8b:09:43:52:5b:02:ad:44:8c:97:8a:eb:af:7b:1a:ce:
a9:0a:b4:1f:e7:99:8f:27:49:ba:a1:59:07:31:c6:94:d4:83:
a7:9a:bc:02:5b:9f:53:0d:db:93:74:f8:a7:89:b9:91:74:af:
24:d1:0b:92:f0:e1:ca:df:7d:5c:37:44:3d:b3:4e:45:fc:20:
01:67:f0:9a:3c:84:de:cb:41:ce:e1:e1:4c:64:92:bd:ed:2d:
db:a3:56:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:04 2024 by rpki-client on console-fra.rpki-client.org