Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/nwPJxA_U4v3SZCK8DCqCnvB-7Ag.roa
File: nwPJxA_U4v3SZCK8DCqCnvB-7Ag.roa (raw, json)
Hash identifier: 5o4DXuz1U8Ejxuc8pq6qnl09WDzKqDfGBsJOo8sWKQs=
Subject key identifier: 9F:03:C9:C4:0F:D4:E2:FD:D2:64:22:BC:0C:2A:82:9E:F0:7E:EC:08
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0192724F4AC2E4B2D88F7E4C0771C1D803BA
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/nwPJxA_U4v3SZCK8DCqCnvB-7Ag.roa
Signing time: Wed 09 Oct 2024 17:24:11 +0000
ROA not before: Wed 09 Oct 2024 17:24:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 194.36.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Oct 2024 02:41:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:72:4f:4a:c2:e4:b2:d8:8f:7e:4c:07:71:c1:d8:03:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Oct 9 17:24:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f03c9c40fd4e2fdd26422bc0c2a829ef07eec08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d4:c5:ec:61:7a:61:31:72:7a:b2:c6:c8:88:
4c:19:96:ca:ba:8f:f5:3d:4f:a3:9c:ad:21:83:bb:
32:bc:d2:dd:f1:aa:0e:b3:8a:03:69:3e:f9:71:0c:
5a:03:63:77:ae:99:2d:0e:59:06:d6:46:4f:a6:42:
0e:b2:c3:8a:63:2a:89:7b:62:2c:7b:53:6c:dd:75:
e6:75:ed:3c:32:b6:67:13:79:11:9a:64:52:70:9c:
26:6f:8d:73:ba:8d:5a:66:b6:cb:06:14:4c:a5:4f:
f8:f5:9d:f9:cc:0c:ea:1b:c6:5e:9b:d9:49:05:35:
e2:0e:86:1e:48:0b:2f:a4:a6:e0:a7:69:d7:d5:cd:
90:cc:19:08:8c:dd:81:18:16:cb:34:dc:97:7f:27:
37:9e:cb:8d:1b:84:84:ec:26:46:9d:a6:f2:4c:0c:
d4:18:35:3f:f5:13:f0:37:f4:f2:60:6d:27:a4:23:
66:d2:74:cf:75:8a:6e:9b:25:eb:d3:fc:8b:9e:a9:
38:b8:9c:9b:a7:d2:43:59:54:e3:5d:33:cd:38:d3:
da:f1:7f:98:c3:db:21:57:3d:03:48:ba:55:b1:99:
4f:27:33:cf:87:6f:ba:48:8e:f6:6b:78:59:74:50:
92:ad:17:43:97:66:d2:d5:02:93:1b:c7:c2:e6:51:
f7:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:03:C9:C4:0F:D4:E2:FD:D2:64:22:BC:0C:2A:82:9E:F0:7E:EC:08
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/nwPJxA_U4v3SZCK8DCqCnvB-7Ag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.35.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:68:94:a2:39:0a:56:0a:89:2a:5f:6a:20:8a:ae:ef:6e:3d:
95:ca:a4:0d:09:e9:65:c3:2c:2e:e5:9c:1c:83:7a:89:99:0b:
f4:be:53:3b:7f:b5:ad:64:ca:cb:72:85:f9:1a:aa:0b:05:96:
8c:b5:72:dd:9d:59:aa:f4:f0:51:3e:46:ee:d7:4f:c3:a6:f2:
29:bf:d7:74:96:92:47:a7:3a:01:89:cf:24:27:72:6e:21:15:
c7:c6:6e:bf:e4:fb:32:25:d2:05:4a:62:fa:f1:1c:c0:4c:ac:
80:9f:ce:d5:c0:28:9e:38:4c:dc:4e:3c:16:a8:6e:5c:46:3f:
ba:51:41:a5:bb:56:61:2b:cc:7f:e0:4a:bc:5e:a8:87:1f:fb:
b9:26:ae:98:95:89:b2:96:6d:e4:41:23:a0:d0:cf:79:71:3c:
1e:30:64:76:95:6d:6a:db:34:bd:5a:b0:a9:f6:8b:2a:6f:88:
65:ea:b1:55:df:ca:3b:ed:dc:fa:b8:d5:ca:d0:de:e3:4a:32:
ab:41:64:e4:dd:5b:28:f0:af:9a:20:95:77:87:f3:37:ad:50:
c1:43:98:65:fb:c7:cf:78:76:1c:28:5c:70:89:4e:93:5a:08:
1e:d6:47:eb:64:0a:c4:bc:25:2f:f4:7a:68:38:f3:08:ad:75:
0b:2e:be:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:11:22 2025 by rpki-client