Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/nEpj5clDRoemXlKcr9qe4yo6ra8.roa
File: nEpj5clDRoemXlKcr9qe4yo6ra8.roa (raw, json)
Hash identifier: Pk8ON34aCAT1EUeUvZZ1KznP2IKGwTjfGymLo5xJz3A=
Subject key identifier: 9C:4A:63:E5:C9:43:46:87:A6:5E:52:9C:AF:DA:9E:E3:2A:3A:AD:AF
Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e
Certificate serial: 018BCB2BA69F472F2BE282B56708E3C8B058
Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/nEpj5clDRoemXlKcr9qe4yo6ra8.roa
Signing time: Tue 14 Nov 2023 00:11:57 +0000
ROA not before: Tue 14 Nov 2023 00:11:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209784
IP address blocks: 81.2.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cb:2b:a6:9f:47:2f:2b:e2:82:b5:67:08:e3:c8:b0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e
Validity
Not Before: Nov 14 00:11:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c4a63e5c9434687a65e529cafda9ee32a3aadaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:74:f8:b8:99:cc:61:13:6b:61:f4:ce:21:71:
69:f2:de:6c:92:31:bf:e3:70:e6:34:30:34:57:67:
bb:0c:18:ef:49:89:b1:3d:36:af:71:2e:c7:28:65:
4c:fe:4d:ce:47:0b:6c:cb:23:17:b1:44:04:df:10:
45:a9:84:5a:d6:09:a6:bd:54:98:17:1b:f7:e3:cd:
4d:d3:c8:45:80:31:53:29:36:b6:a0:0c:94:05:43:
67:6c:97:26:37:60:d6:79:a1:51:3c:69:de:28:a0:
d4:20:ab:d0:17:66:e0:bf:a1:1f:62:1d:1c:97:19:
49:ea:97:33:69:7b:25:3c:a8:27:cb:44:bf:0c:0a:
aa:54:f2:71:e0:e0:17:c3:cb:dc:60:9b:77:e3:49:
ad:ce:48:0a:44:79:8d:a3:9b:43:2e:73:af:90:0e:
c0:86:16:e9:6b:1b:ff:65:92:46:39:0a:c8:07:63:
ed:8b:c0:46:a3:d5:35:0c:b6:33:4f:46:ab:04:81:
c7:60:e6:a5:8f:e0:f4:09:40:aa:3c:ac:9d:66:76:
d6:3d:8a:94:67:e3:8a:ca:e4:cb:b2:22:5a:fe:5f:
c2:d6:06:8a:66:aa:94:ee:b6:97:d6:d4:69:d7:b2:
fb:48:df:6d:7b:5d:35:cc:60:23:e1:3b:fe:0c:f5:
e9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:4A:63:E5:C9:43:46:87:A6:5E:52:9C:AF:DA:9E:E3:2A:3A:AD:AF
X509v3 Authority Key Identifier:
keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/nEpj5clDRoemXlKcr9qe4yo6ra8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.2.187.0/24
Signature Algorithm: sha256WithRSAEncryption
29:59:fa:a8:98:03:b5:64:ac:79:0a:73:e8:7b:46:94:6a:ea:
ce:49:b9:e1:11:c3:16:72:07:bf:78:a3:5f:00:41:1e:09:83:
76:ad:76:83:18:28:d8:b8:9f:1b:06:a6:55:a5:7b:f2:28:a3:
2f:60:b2:87:00:a1:1e:b8:fe:0d:9a:9e:22:77:0e:01:9f:12:
58:c9:7a:8c:08:28:99:38:1a:2c:26:c7:36:8e:f8:95:f5:4c:
c2:0a:26:8b:a3:cb:66:8f:63:f4:4e:bc:86:1f:72:d4:ee:56:
e7:14:4c:01:0e:38:7f:e7:30:64:18:7c:f8:ff:78:10:7e:18:
54:a1:aa:ad:b2:bd:2e:bc:3d:1f:10:9d:b7:29:5f:d6:e8:ed:
84:51:35:37:f4:ed:c5:db:81:ce:58:52:a5:50:b1:db:9c:8a:
8a:fa:ed:64:2c:1b:e3:35:2f:14:3d:8c:e0:c0:80:32:98:df:
57:40:73:15:fe:3e:3e:26:60:2c:ad:d5:e4:62:d5:9d:0d:c4:
5e:08:ef:65:a4:71:5b:90:ab:46:e0:84:cb:d7:7d:0c:34:1e:
66:8f:cf:f7:76:b7:07:4e:83:35:41:c2:96:07:11:4c:b9:0f:
03:a5:3a:aa:8c:6c:89:e7:e3:93:78:35:ee:20:8d:b7:ac:8a:
da:67:6f:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:29 2024 by rpki-client on console-fra.rpki-client.org