Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/KemrV_rzgDqQi48vRmS9r2FqCw0.roa
File: KemrV_rzgDqQi48vRmS9r2FqCw0.roa (raw, json)
Hash identifier: szELDf/K4JIr0D1NuchGLh6ITgM8MuuWyucCCNUvs1A=
Subject key identifier: 29:E9:AB:57:FA:F3:80:3A:90:8B:8F:2F:46:64:BD:AF:61:6A:0B:0D
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 01916A0E39608655DF9E1E1FE748024C9C63
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/KemrV_rzgDqQi48vRmS9r2FqCw0.roa
Signing time: Mon 19 Aug 2024 09:53:22 +0000
ROA not before: Mon 19 Aug 2024 09:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200404
IP address blocks: 194.37.93.0/24 maxlen: 24
194.37.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6a:0e:39:60:86:55:df:9e:1e:1f:e7:48:02:4c:9c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: Aug 19 09:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29e9ab57faf3803a908b8f2f4664bdaf616a0b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:64:4f:ad:3e:6f:ae:5f:5d:88:08:5d:b1:12:
93:3c:8d:9e:49:0e:c7:ef:62:5f:0c:1a:eb:2c:6b:
a8:9f:27:bd:bd:9e:ad:2d:e0:f7:6f:2e:c8:04:07:
b0:13:48:ad:29:ca:14:cd:8e:5a:9f:41:d7:be:4f:
7b:4f:0d:9c:9a:d4:0d:1e:f9:44:a6:61:18:9e:b0:
cd:00:85:bd:ce:fe:a6:8f:88:ec:fd:b3:2c:53:f6:
54:44:d7:3c:df:d4:1b:f1:6e:fd:e7:f3:56:fe:dc:
32:c6:b3:3c:ed:b3:56:7f:18:ae:03:c4:76:9a:af:
e0:d5:e8:05:c5:21:e1:24:e2:f7:ee:6c:28:da:fd:
7b:60:bb:af:05:6a:27:af:f6:85:17:5f:01:70:cf:
d1:19:84:6a:e4:99:34:ee:ac:91:fd:e2:3c:81:27:
ad:ef:3a:84:00:7c:00:a4:63:a0:b2:1c:7a:e5:5e:
35:4a:5b:38:78:3f:09:28:fa:44:7a:36:30:62:90:
2f:26:b3:35:ec:08:b6:0a:79:97:e2:c8:1c:d7:46:
a2:54:a1:57:5c:90:00:71:02:c6:8c:ba:30:2d:5c:
00:d9:47:10:18:8a:f3:c8:25:4b:d3:45:4a:ff:6f:
49:76:b1:5b:88:a1:c6:1e:4c:76:2c:6c:bb:16:5e:
a3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:E9:AB:57:FA:F3:80:3A:90:8B:8F:2F:46:64:BD:AF:61:6A:0B:0D
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/KemrV_rzgDqQi48vRmS9r2FqCw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.93.0/24
194.37.95.0/24
Signature Algorithm: sha256WithRSAEncryption
71:31:55:dd:e8:24:b3:b2:3f:d2:33:fa:2c:d6:e0:34:df:3c:
cc:1d:ab:8a:71:28:53:8a:51:43:27:8e:11:5e:c5:d3:85:c7:
45:08:d6:22:af:ef:b3:85:74:96:d5:25:f7:62:57:9e:ae:89:
bc:5c:4f:1d:6e:e1:6b:17:b1:05:4a:a3:db:3f:4f:a1:58:9f:
d5:10:77:0f:0e:b2:02:a8:5b:fa:2e:81:dd:c4:66:84:33:77:
ce:42:5d:8f:4b:d4:db:05:dc:91:3e:06:cb:1e:91:38:e6:6b:
da:92:ba:65:86:43:15:af:8d:ea:47:73:85:e0:36:39:9d:02:
fb:b9:03:dc:6e:ac:92:ee:63:34:53:d2:72:70:26:e1:39:e5:
15:00:38:71:14:c2:07:36:82:02:a2:9e:48:e6:cd:79:c9:ae:
c3:37:1a:14:82:f7:6c:a4:b0:95:98:83:f1:36:b3:ae:48:83:
e8:3f:ca:f1:6f:7a:6d:64:10:4a:a4:9f:0c:0f:c5:26:1a:8f:
eb:d6:81:03:bb:3e:bc:3d:11:49:87:38:5f:f0:16:88:34:cf:
50:27:04:69:8b:2d:a6:41:94:5c:86:b0:0c:a7:00:91:82:53:
e2:e1:a1:50:96:46:81:fb:77:32:6a:4a:ff:27:40:7c:e4:dc:
07:15:b5:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:11:26 2025 by rpki-client