Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/422a4c-8394-46b4-aa18-d1fbe5a91d70/1/Y7NCnXPbm5NCwGEFh6WZTQ7j2Mo.roa
File: Y7NCnXPbm5NCwGEFh6WZTQ7j2Mo.roa (raw, json)
Hash identifier: RTD5Owo3udYAsNI/MySYryDUt93uYWFMHbbTeH4kD3A=
Subject key identifier: 63:B3:42:9D:73:DB:9B:93:42:C0:61:05:87:A5:99:4D:0E:E3:D8:CA
Certificate issuer: /CN=c0ba50fca33b180d68436e7ef0cbf6904baf45d4
Certificate serial: 018F57A278EDB9A0F95796C526975EE1A3F7
Authority key identifier: C0:BA:50:FC:A3:3B:18:0D:68:43:6E:7E:F0:CB:F6:90:4B:AF:45:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wLpQ_KM7GA1oQ25-8Mv2kEuvRdQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/422a4c-8394-46b4-aa18-d1fbe5a91d70/1/Y7NCnXPbm5NCwGEFh6WZTQ7j2Mo.roa
Signing time: Wed 08 May 2024 09:56:56 +0000
ROA not before: Wed 08 May 2024 09:56:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202391
IP address blocks: 194.33.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 29 Jun 2024 17:25:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:57:a2:78:ed:b9:a0:f9:57:96:c5:26:97:5e:e1:a3:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0ba50fca33b180d68436e7ef0cbf6904baf45d4
Validity
Not Before: May 8 09:56:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=63b3429d73db9b9342c0610587a5994d0ee3d8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:01:0a:7d:64:d4:62:11:72:00:e9:fe:7a:cf:
48:6b:4a:4e:93:24:0f:84:eb:25:39:64:c5:e5:82:
0d:35:2e:83:01:c2:ed:40:ef:78:c4:6b:39:76:18:
93:4e:46:d3:09:3e:e7:29:89:3c:3a:e9:4f:29:99:
50:6b:33:91:84:9b:9d:dc:9d:b4:77:72:27:ec:77:
d9:3f:4c:b9:9b:34:e6:24:5e:bf:64:fe:df:db:d2:
19:36:58:d2:9a:f1:38:b6:d3:3a:31:3b:9e:31:7d:
55:f3:52:a3:b8:bb:1e:b0:a8:da:df:d4:6a:5d:88:
2b:43:52:57:36:93:fe:7f:b7:d3:12:48:81:a3:4c:
e7:dd:94:67:3e:40:74:bc:12:bf:ab:b5:92:e4:7c:
9d:70:a3:c0:84:93:8d:27:ea:5d:ce:9a:d9:15:be:
c7:cb:98:5f:19:0f:b3:e7:1c:af:e1:14:19:45:ca:
b3:0a:04:3b:52:62:36:58:81:7e:34:ad:7f:1b:3f:
81:2b:68:54:5e:6d:9f:d8:b6:c7:26:ec:2c:b1:b0:
03:ea:11:79:26:93:2c:c6:87:09:9c:47:9c:11:1f:
3a:63:ab:08:8d:0c:9a:7f:74:bf:71:04:11:ca:85:
2e:9f:90:e8:27:bc:3e:44:2b:a4:8a:24:cc:c2:73:
b0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B3:42:9D:73:DB:9B:93:42:C0:61:05:87:A5:99:4D:0E:E3:D8:CA
X509v3 Authority Key Identifier:
keyid:C0:BA:50:FC:A3:3B:18:0D:68:43:6E:7E:F0:CB:F6:90:4B:AF:45:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wLpQ_KM7GA1oQ25-8Mv2kEuvRdQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/422a4c-8394-46b4-aa18-d1fbe5a91d70/1/Y7NCnXPbm5NCwGEFh6WZTQ7j2Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/422a4c-8394-46b4-aa18-d1fbe5a91d70/1/wLpQ_KM7GA1oQ25-8Mv2kEuvRdQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.28.0/24
Signature Algorithm: sha256WithRSAEncryption
88:09:9b:3d:18:05:58:fc:71:cb:5e:18:a9:3c:9f:d5:c1:6b:
11:f6:45:61:bc:02:bb:eb:67:79:ef:cd:9c:1a:b3:c5:43:fe:
ce:26:a2:e7:bb:ce:37:4b:79:ea:41:99:c1:c1:6a:1a:48:25:
77:4f:c2:9f:21:aa:1c:77:33:e1:ec:e6:c6:ba:14:da:27:a4:
82:99:27:11:f6:8a:f0:ec:34:d1:67:9e:c6:ac:53:75:aa:3d:
6b:f0:48:f6:40:76:b5:35:4f:c6:ad:0c:c8:83:1a:fc:be:93:
f0:d0:b0:4f:66:91:b4:5b:7c:9b:ba:53:14:86:47:da:6a:ef:
55:b9:88:bc:35:6c:8b:27:1e:56:3e:8e:6e:51:6f:4d:cd:2e:
46:62:52:f6:83:5f:a4:72:1f:2e:03:3b:57:a5:4d:2f:78:b6:
66:72:4c:44:6d:8c:86:88:ea:72:89:31:7e:06:ba:49:56:91:
03:70:51:40:c0:cd:bf:58:5c:32:d7:47:64:7e:a3:7b:c7:83:
71:dd:68:08:c4:00:29:d5:91:47:14:70:f2:0c:04:6e:9c:1d:
e6:14:c5:7f:b9:ea:49:a1:02:ad:38:6f:d1:10:f7:3b:eb:8b:
ac:c0:95:0a:f4:86:90:a7:a4:03:bf:02:1e:96:a9:fc:93:3d:
d9:6d:ee:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 29 19:44:08 2024 by rpki-client on console-fra.rpki-client.org