Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/J1iDXs3QZAjPpmdBBjMiconjUPY.roa
File: J1iDXs3QZAjPpmdBBjMiconjUPY.roa (raw, json)
Hash identifier: 8N9NwL0wus49u4V5pcOjVDV8+sz4QwCRMauQh18VmqU=
Subject key identifier: 27:58:83:5E:CD:D0:64:08:CF:A6:67:41:06:33:22:72:89:E3:50:F6
Certificate issuer: /CN=ceb86983547113359bade1f3f38104091e3a6439
Certificate serial: 0190EF7C14693EA7A7C8A0C2CD6F95D2E88A
Authority key identifier: CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/J1iDXs3QZAjPpmdBBjMiconjUPY.roa
Signing time: Fri 26 Jul 2024 14:40:04 +0000
ROA not before: Fri 26 Jul 2024 14:40:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30772
IP address blocks: 94.32.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 13:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ef:7c:14:69:3e:a7:a7:c8:a0:c2:cd:6f:95:d2:e8:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ceb86983547113359bade1f3f38104091e3a6439
Validity
Not Before: Jul 26 14:40:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2758835ecdd06408cfa667410633227289e350f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:65:62:9f:02:37:00:7b:b8:cd:40:98:ad:54:
e0:2a:8c:4f:22:22:30:cd:15:09:4d:be:59:84:5d:
40:e5:8a:c0:f4:f6:90:fc:13:15:4f:b7:b6:79:bc:
d1:8a:9e:b7:51:b9:8c:7b:26:81:3f:38:b0:49:a6:
bb:b1:46:57:16:83:d3:89:3c:09:1e:05:0d:94:d1:
14:58:d2:57:04:32:68:3e:26:8d:f7:85:8b:d9:c2:
ae:48:ea:f4:93:34:ff:7c:68:4a:8e:bc:e9:2f:3b:
4d:4e:de:2c:fc:53:04:1e:89:a3:24:5d:9d:37:57:
18:5d:03:75:9c:6a:79:4e:ff:95:23:6a:63:de:f5:
36:5d:00:60:29:de:aa:02:cf:81:e5:3f:96:cb:2b:
01:68:66:44:8f:d7:d2:29:bf:4e:14:03:fd:34:02:
13:cc:cf:7e:b1:76:bd:07:c9:e4:a0:fa:5f:6c:e4:
ae:0d:17:9f:43:5c:ce:73:d4:74:5e:29:8f:96:63:
80:93:e2:f9:6a:c8:54:ce:96:61:6c:e8:0b:f9:dd:
db:94:35:03:42:2e:71:f7:5e:56:96:41:c7:94:35:
16:d3:58:fc:d7:fd:eb:f8:02:32:f9:80:59:70:83:
e6:61:74:dd:82:97:8b:ea:08:d4:24:34:f0:44:df:
12:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:58:83:5E:CD:D0:64:08:CF:A6:67:41:06:33:22:72:89:E3:50:F6
X509v3 Authority Key Identifier:
keyid:CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/J1iDXs3QZAjPpmdBBjMiconjUPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.32.32.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:74:3e:21:3d:35:e0:b1:b5:d1:3e:71:f9:ba:68:30:d6:db:
ae:11:97:a4:f6:19:f8:08:83:fe:86:72:cd:f6:f8:78:0e:73:
18:9a:37:0c:02:d9:56:0b:3a:0d:a4:55:ed:47:21:33:78:a6:
ba:d8:e6:41:7d:b2:3c:4f:39:61:2b:d1:0e:c5:98:8e:3a:f6:
4d:ac:5c:b3:07:c2:b7:be:89:db:71:b4:4c:17:11:20:9f:ea:
fc:2c:fd:74:4f:2b:ec:63:bd:6d:21:08:48:39:7d:a4:a1:50:
a5:bb:6d:1a:da:92:f8:84:39:ec:c3:73:a2:6c:40:7a:75:93:
f9:b4:27:6c:4f:f9:27:49:bb:58:c8:b5:13:39:33:be:11:49:
9f:07:ee:7f:d0:84:37:f9:28:d0:65:e6:72:61:cc:0d:ae:66:
82:f6:cc:59:b8:67:81:32:3f:8e:35:af:f6:b9:ef:0a:58:c4:
9a:80:3f:03:d7:96:ec:97:a6:87:8a:e8:0a:88:fc:4a:1a:8f:
da:3f:41:14:e5:2b:c1:d1:73:00:45:f3:d8:8e:e4:67:93:95:
f9:1a:08:47:e0:22:21:b6:68:6c:ff:9c:41:2b:17:fd:20:09:
3c:b9:47:f7:49:fe:3f:bc:e9:cb:ca:20:05:0d:48:27:2a:04:
64:2b:be:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 2 17:08:26 2024 by rpki-client on console-fra.rpki-client.org