Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/0mrTumFFMtSLpzoxGIbrgP5b2v8.roa
File: 0mrTumFFMtSLpzoxGIbrgP5b2v8.roa (raw, json)
Hash identifier: sv6+hsl92gvHLmi2P/dxZnzXD4TjZ5CnkvGxZP8Xuqc=
Subject key identifier: D2:6A:D3:BA:61:45:32:D4:8B:A7:3A:31:18:86:EB:80:FE:5B:DA:FF
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018CC86FD4F0B8E9CF0C2D6BB961FF2357D0
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/0mrTumFFMtSLpzoxGIbrgP5b2v8.roa
Signing time: Tue 02 Jan 2024 04:30:21 +0000
ROA not before: Tue 02 Jan 2024 04:30:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13559
IP address blocks: 194.147.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 22:27:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:d4:f0:b8:e9:cf:0c:2d:6b:b9:61:ff:23:57:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Jan 2 04:30:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d26ad3ba614532d48ba73a311886eb80fe5bdaff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:cc:29:b0:52:4f:59:7e:55:79:92:3a:08:64:
e6:c8:9d:0b:40:f1:59:ff:d9:f3:a5:e9:3e:6a:9d:
49:38:f9:6f:a9:a7:67:93:b3:46:1a:83:af:a7:cc:
07:cb:72:8a:9e:eb:e4:5a:ad:48:13:5a:90:29:98:
40:45:5f:0c:6f:77:dd:b5:19:2d:18:d1:eb:ca:57:
dd:a0:d8:45:9f:db:20:d4:dc:bb:71:72:bf:48:96:
2b:8c:93:f0:94:bc:4b:fe:a1:f7:a7:98:12:a9:9e:
d7:44:2c:f0:83:9b:22:8e:a1:ca:1d:ee:49:8c:4f:
71:87:c5:40:c8:96:f2:ec:43:1c:22:6e:5a:ac:95:
82:2c:e4:a2:9c:9a:33:fb:b2:47:fb:0c:ee:14:9c:
4b:7f:42:7a:c8:1c:f3:f3:97:a8:dc:99:f4:9e:d7:
4e:a0:98:93:69:36:9f:d8:77:4a:ab:da:5b:2e:68:
65:ad:d9:e1:4c:ed:54:ad:72:eb:d4:40:e1:92:7b:
70:9d:2a:be:95:ac:c8:ed:47:6c:86:c7:49:14:2b:
37:c0:6a:db:e2:ec:b1:4c:92:2f:b2:0e:5a:09:6e:
5c:6c:96:b5:6b:53:19:7d:1c:74:53:d1:3c:b6:6a:
f9:6a:61:20:16:64:a2:40:1a:18:e8:37:5c:1b:ba:
61:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:6A:D3:BA:61:45:32:D4:8B:A7:3A:31:18:86:EB:80:FE:5B:DA:FF
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/0mrTumFFMtSLpzoxGIbrgP5b2v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.71.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:8f:a9:17:47:53:e3:f6:12:92:f4:9d:1e:24:20:e9:42:09:
b0:8f:93:72:9d:74:f3:03:c3:4b:18:d0:92:1c:9b:9a:1d:22:
87:bb:b7:c7:9d:08:f7:92:37:61:23:41:bc:7a:75:b0:49:be:
32:3e:cf:44:01:48:96:f9:f7:54:c6:62:97:2d:0f:27:c6:83:
84:ee:e5:f4:6b:82:10:60:c5:a1:fc:d3:2b:9c:5c:af:1b:b2:
7b:88:d5:d9:b3:54:dd:ce:11:98:21:68:0f:f7:22:3d:13:4d:
9d:86:1d:01:be:c7:0c:7b:4f:1b:02:60:62:ff:02:95:2d:24:
49:42:7c:64:b8:9d:88:0d:8c:4d:46:85:5a:ed:f8:7d:bb:65:
d7:ce:ad:b6:91:dc:25:f4:97:12:57:6d:6d:d2:fb:3e:2b:f2:
24:68:49:67:d8:89:3d:8f:9e:c0:cc:a2:e1:37:f5:75:06:86:
f6:ad:fe:61:73:20:41:08:8c:ff:44:e5:88:34:c0:87:16:9a:
80:eb:7c:a2:2d:b3:cc:92:01:5d:da:eb:c2:12:ce:0f:68:e0:
6b:60:d2:0f:5e:31:d6:27:32:2b:8b:15:71:4f:52:1f:9a:b0:
60:2c:2b:5a:a3:c8:dc:9e:28:ee:d1:62:04:76:64:4d:50:1e:
d3:fc:9c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 23:07:18 2024 by rpki-client on console-ams.rpki-client.org