Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/N7KE0f848TAH-jFSYIzEP6spXGE.roa
File: N7KE0f848TAH-jFSYIzEP6spXGE.roa (raw, json)
Hash identifier: dgKxMQM2rksAhEX0m84wPeZBgtBv6Am0lrA0hjsx7ns=
Subject key identifier: 37:B2:84:D1:FF:38:F1:30:07:FA:31:52:60:8C:C4:3F:AB:29:5C:61
Certificate issuer: /CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Certificate serial: 0187865925132F500BED190C64FB2102D3F8
Authority key identifier: 27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/N7KE0f848TAH-jFSYIzEP6spXGE.roa
Signing time: Sat 15 Apr 2023 19:16:41 +0000
ROA not before: Sat 15 Apr 2023 19:16:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202251
IP address blocks: 2.188.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:86:59:25:13:2f:50:0b:ed:19:0c:64:fb:21:02:d3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a39e4794c34612e7f22569b1a6a81710260ae5
Validity
Not Before: Apr 15 19:16:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37b284d1ff38f13007fa3152608cc43fab295c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:75:7e:19:2e:eb:4b:25:70:9d:cc:c9:f8:4a:
bc:01:39:3e:02:cc:4e:c8:e8:b9:e1:22:86:92:51:
dc:02:64:7a:e5:98:c5:f3:c4:38:23:86:b6:0e:4b:
8a:22:c3:56:16:c9:e6:2c:6f:70:87:87:d0:f6:e6:
0a:d3:5d:79:26:55:97:a0:79:9b:a8:88:d5:cb:42:
6d:39:66:2f:f0:15:d9:b7:05:46:8e:1c:3e:e4:5a:
d8:97:1e:c9:90:b9:11:82:36:52:19:96:fe:10:25:
d9:e7:81:47:60:3d:54:22:1e:7d:ed:02:66:36:19:
05:b7:28:db:94:79:03:f5:ac:0c:bf:bc:5d:64:7a:
2b:66:69:63:11:1d:34:9b:5c:82:50:6b:b2:ab:5b:
94:1a:54:84:75:de:bf:9d:e5:ab:4c:69:6e:71:14:
d4:d8:dd:63:b8:fc:e0:9f:11:a1:72:eb:c1:22:3e:
5e:c9:75:62:9c:12:a9:d9:78:45:b9:dd:92:e0:e7:
e9:a8:cc:86:d7:2c:62:33:c3:7c:8f:01:c8:a3:19:
71:64:22:8c:6a:5a:eb:26:d3:0f:13:75:d7:ba:e8:
ab:4b:45:64:59:90:06:4b:3f:71:67:b9:2e:42:eb:
08:af:29:87:b8:50:3a:ce:b5:02:91:1d:3e:b1:fe:
ba:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B2:84:D1:FF:38:F1:30:07:FA:31:52:60:8C:C4:3F:AB:29:5C:61
X509v3 Authority Key Identifier:
keyid:27:A3:9E:47:94:C3:46:12:E7:F2:25:69:B1:A6:A8:17:10:26:0A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6OeR5TDRhLn8iVpsaaoFxAmCuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/N7KE0f848TAH-jFSYIzEP6spXGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/38fc33-06c1-4006-9e23-f74d9518576c/1/J6OeR5TDRhLn8iVpsaaoFxAmCuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.188.224.0/20
Signature Algorithm: sha256WithRSAEncryption
8d:2b:0a:5e:25:22:29:f1:4e:19:a8:8c:e8:0c:ee:74:f5:96:
47:3b:23:a0:29:a9:10:55:27:f1:33:cf:80:f1:47:f3:1f:b8:
f1:ae:86:0a:a7:7a:56:ef:88:73:82:06:29:3e:19:08:5c:4a:
57:4a:a5:28:66:f5:ff:ef:74:3d:ed:af:29:11:b0:11:01:c0:
c0:f5:fe:e3:0b:bd:ba:f7:2f:ef:33:ee:45:ee:ab:f9:03:f2:
0b:15:b7:54:30:b0:79:b5:3d:43:86:88:e4:6a:ea:ed:82:24:
0a:47:6a:08:af:be:dc:8e:5a:31:74:1e:fa:00:dd:bf:18:31:
9b:1c:f8:97:dc:d1:2d:f7:31:38:d2:96:64:a1:f6:62:04:13:
ba:e9:3a:e8:ee:7e:e8:ad:93:68:50:f1:72:7b:5b:a0:c2:af:
1d:b8:fd:99:28:5b:42:64:35:95:2c:5e:b8:7b:e3:d7:20:45:
60:2c:ba:27:8c:6b:b4:45:8a:da:10:50:a2:48:aa:ca:6e:7c:
6b:ac:d3:07:2d:99:f2:d6:73:b8:7f:d4:d2:04:5f:78:1c:85:
d7:e4:30:dc:63:de:64:57:9f:4d:3c:dc:f6:4a:1d:70:95:fb:
9f:1f:a8:99:2e:0b:57:54:b9:94:93:e5:fc:88:30:86:62:0c:
ab:25:ee:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:47 2024 by rpki-client on console-fra.rpki-client.org