Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/uUyfUT3enMl_vEb5n6_G8vcuphg.roa
File: uUyfUT3enMl_vEb5n6_G8vcuphg.roa (raw, json)
Hash identifier: c7LcziUK37IApBPVY/aiQuiqXUkfvsmJd9QbstrJxeE=
Subject key identifier: B9:4C:9F:51:3D:DE:9C:C9:7F:BC:46:F9:9F:AF:C6:F2:F7:2E:A6:18
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D7A9318AA84D92D9C87C9EE3A012908E3
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/uUyfUT3enMl_vEb5n6_G8vcuphg.roa
Signing time: Mon 05 Feb 2024 18:41:16 +0000
ROA not before: Mon 05 Feb 2024 18:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62300
IP address blocks: 194.32.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 18:11:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7a:93:18:aa:84:d9:2d:9c:87:c9:ee:3a:01:29:08:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 5 18:41:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b94c9f513dde9cc97fbc46f99fafc6f2f72ea618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:64:39:f7:f4:03:44:37:ed:35:9e:db:07:34:
da:1c:ba:d1:fe:0d:19:79:5e:62:1a:03:64:05:51:
41:22:8d:c9:6f:86:34:3c:f8:b0:7b:78:c0:50:2d:
c1:da:42:22:95:34:6b:66:96:20:80:a5:d5:48:19:
05:b6:1f:1f:c8:bb:37:09:65:cf:4e:f3:fe:ed:f9:
b0:db:b7:41:14:f8:ed:ad:22:d2:56:f6:ef:00:a2:
60:a7:c3:b6:44:ee:bc:57:9f:27:27:36:7f:c5:4e:
4c:43:21:e9:13:55:b0:b9:5a:4d:92:f6:f6:95:80:
60:09:77:b0:0f:cf:62:2c:fb:28:f1:a7:8f:f9:6d:
91:2b:27:eb:9c:5c:0c:09:27:53:69:dd:94:d0:fc:
b1:3e:4f:f0:c7:e9:9f:68:26:2d:79:9e:d3:db:32:
bf:ea:37:03:83:66:23:7d:fc:b1:5d:99:4a:ce:4e:
5f:8e:03:c0:b1:f2:80:5e:4a:64:60:05:39:d4:dd:
86:b4:b0:0e:2b:ca:f5:c5:6e:cd:7c:97:6d:33:ea:
e0:02:85:6a:28:4d:c8:da:bf:9b:02:a6:2c:64:30:
c2:03:ad:cc:ec:e9:b7:92:67:c6:62:b8:f1:64:96:
fc:ca:da:54:ce:25:30:f6:7f:79:76:ba:e8:d9:41:
4e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4C:9F:51:3D:DE:9C:C9:7F:BC:46:F9:9F:AF:C6:F2:F7:2E:A6:18
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/uUyfUT3enMl_vEb5n6_G8vcuphg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.32.241.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:a4:26:c4:5f:3c:6c:ce:c8:ba:48:e5:19:f0:c7:b7:b4:7c:
c2:5d:93:37:c3:ec:be:4b:27:8c:ba:19:e1:e8:29:a8:30:ac:
3e:12:68:fb:0b:88:58:b0:5f:91:c6:80:b8:c3:8c:8a:c4:44:
a8:ef:0e:e5:0b:ef:97:1f:be:d0:a8:9d:70:df:ff:59:0d:fa:
4e:bc:ed:ee:d7:7e:ba:46:46:79:2e:d1:50:0a:b0:08:f5:35:
b9:3e:44:a5:47:e5:97:1d:f9:df:b2:67:d3:23:37:d2:ed:4a:
0a:46:e9:b3:33:c4:bb:75:5d:16:0c:25:af:9d:77:15:6f:05:
8e:5c:fa:7a:d8:be:66:9e:41:ce:af:3e:cc:8f:9e:1d:f8:b8:
4d:a6:cf:d7:fd:7b:89:3e:a6:5b:34:3a:2f:9f:ac:de:a5:9d:
c2:e5:fc:22:ff:d9:a5:9a:c0:7d:db:a4:ea:6e:89:c1:2a:46:
c0:8e:93:3d:6f:4d:80:4a:47:4d:cf:55:41:30:d2:56:ca:5f:
06:9a:fe:95:a6:e6:99:a9:9c:89:26:02:c5:99:7b:08:c3:0b:
cd:be:4b:c6:4d:85:19:8a:00:78:12:9a:be:19:80:b9:54:ff:
cd:23:42:c9:d8:8c:2d:7c:c1:ce:a5:63:42:56:d9:f2:16:c3:
fa:d4:df:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 7 23:23:05 2024 by rpki-client on console-ams.rpki-client.org