Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/a5c738-3df5-4e02-af31-2b0eab3d3d37/1/LuehTmH5ApIHDo5dp5KN9mAD7Rc.roa
File: LuehTmH5ApIHDo5dp5KN9mAD7Rc.roa (raw, json)
Hash identifier: MjopUAONrhLl+7QYWt/0NxkWJdkO1QQKaWNdGp786Go=
Subject key identifier: 2E:E7:A1:4E:61:F9:02:92:07:0E:8E:5D:A7:92:8D:F6:60:03:ED:17
Certificate issuer: /CN=82b12ecfb22f29d60a3e31b79f362dd60c2d4c10
Certificate serial: 01856FB124EBBDF63A6C90929043BF8358E5
Authority key identifier: 82:B1:2E:CF:B2:2F:29:D6:0A:3E:31:B7:9F:36:2D:D6:0C:2D:4C:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grEuz7IvKdYKPjG3nzYt1gwtTBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/a5c738-3df5-4e02-af31-2b0eab3d3d37/1/LuehTmH5ApIHDo5dp5KN9mAD7Rc.roa
Signing time: Sun 01 Jan 2023 23:35:58 +0000
ROA not before: Sun 01 Jan 2023 23:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197446
IP address blocks: 194.0.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:24:eb:bd:f6:3a:6c:90:92:90:43:bf:83:58:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b12ecfb22f29d60a3e31b79f362dd60c2d4c10
Validity
Not Before: Jan 1 23:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ee7a14e61f90292070e8e5da7928df66003ed17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:b9:f1:36:b5:54:53:52:9d:34:e8:f1:bc:42:
58:92:5b:0c:fe:69:d2:e0:0e:30:9d:24:bc:06:79:
ed:9a:57:a9:a5:e6:6b:ae:09:4e:44:d5:fe:e2:ca:
a6:3a:84:21:27:f6:34:d3:0f:99:44:86:44:2f:6d:
41:18:73:76:b1:20:89:98:20:51:0e:da:43:c5:42:
d5:23:17:07:bf:69:87:6b:64:28:98:4f:dc:a4:54:
08:40:ca:0f:1a:03:44:a6:74:a6:40:96:c5:17:ea:
23:5b:ce:90:93:85:6b:8d:c1:11:37:14:c4:57:6b:
3b:ea:38:8b:b9:97:81:0b:d2:8b:9c:f2:92:0f:ba:
f0:91:c0:5a:c7:1d:1e:8d:89:33:f3:39:b6:fd:0e:
0c:7f:20:34:aa:be:52:ac:9a:46:5c:2b:fd:13:13:
3c:f8:c0:98:6a:48:39:86:ca:3a:f2:d7:13:0b:f2:
32:86:2c:f1:45:aa:4d:a5:64:b8:ea:3b:b5:24:db:
cf:f3:c6:eb:ab:62:25:40:c2:f3:00:e2:41:ac:16:
ac:3b:1b:8f:ac:ec:f8:72:8f:a6:b2:51:8e:2a:b2:
48:f5:30:40:07:6f:36:c1:db:80:ad:0a:4d:e3:29:
a1:9f:49:8c:82:eb:82:bc:f5:ce:97:9a:37:12:6b:
00:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:E7:A1:4E:61:F9:02:92:07:0E:8E:5D:A7:92:8D:F6:60:03:ED:17
X509v3 Authority Key Identifier:
keyid:82:B1:2E:CF:B2:2F:29:D6:0A:3E:31:B7:9F:36:2D:D6:0C:2D:4C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grEuz7IvKdYKPjG3nzYt1gwtTBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/a5c738-3df5-4e02-af31-2b0eab3d3d37/1/LuehTmH5ApIHDo5dp5KN9mAD7Rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/a5c738-3df5-4e02-af31-2b0eab3d3d37/1/grEuz7IvKdYKPjG3nzYt1gwtTBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.242.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:78:7d:43:af:9d:6c:53:95:26:1f:06:0d:20:75:40:de:bb:
2f:a4:ae:e1:df:9c:9f:25:26:c3:98:e0:11:75:56:56:27:bf:
30:bc:85:90:ff:a9:ed:c5:24:b5:18:04:bd:bb:3b:ab:d9:52:
7f:09:51:8d:38:82:53:e7:e4:c7:66:7d:e5:7c:8b:15:86:8e:
09:f6:42:38:c8:9b:c7:fa:2f:60:d5:bb:7f:e1:90:fe:f5:96:
67:62:b5:69:4f:32:c6:e1:f4:b2:ac:5c:9c:4f:27:cf:0c:2a:
3a:d7:9c:74:c1:9a:29:69:f3:04:9c:30:d0:2f:d7:63:84:09:
f2:de:bf:76:4c:fb:62:56:51:5d:d6:8e:90:32:e1:5b:27:25:
1a:d1:65:92:06:60:55:68:62:26:d9:9a:f0:de:1a:f8:83:29:
5f:5b:b3:24:aa:26:17:3f:77:eb:1a:02:30:eb:8f:3a:ad:f0:
75:d8:0e:de:78:54:7f:b7:56:c8:8f:78:8f:a0:a6:f2:19:ed:
8c:72:3d:52:c0:42:e4:ab:f1:37:14:db:8a:79:ad:96:77:39:
89:de:3e:02:22:be:6a:2e:ff:39:bf:1b:e8:48:45:d9:4f:2a:
31:1b:62:be:33:54:f9:8b:e5:82:43:00:17:80:72:e5:67:5c:
fe:cf:b0:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:30 2024 by rpki-client on console.sobornost.net