Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/S_ptxypN9Jqa_LVRcJdt0e4-o7U.roa
File: S_ptxypN9Jqa_LVRcJdt0e4-o7U.roa (raw, json)
Hash identifier: Zn7P+zJcUpxtej1gowSEtDovvO85d1ZQqKra6vNxZF0=
Subject key identifier: 4B:FA:6D:C7:2A:4D:F4:9A:9A:FC:B5:51:70:97:6D:D1:EE:3E:A3:B5
Certificate issuer: /CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Certificate serial: 0185711E3F8EE7661375FBF720999AD07DC7
Authority key identifier: 79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/S_ptxypN9Jqa_LVRcJdt0e4-o7U.roa
Signing time: Mon 02 Jan 2023 06:14:45 +0000
ROA not before: Mon 02 Jan 2023 06:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8767
IP address blocks: 193.28.242.0/24 maxlen: 24
2a10:57c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:3f:8e:e7:66:13:75:fb:f7:20:99:9a:d0:7d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Validity
Not Before: Jan 2 06:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bfa6dc72a4df49a9afcb55170976dd1ee3ea3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:85:c6:2a:df:54:86:cd:af:29:ea:c0:5f:25:
71:0a:6c:29:50:e1:46:07:39:bb:f0:25:26:fa:59:
57:b1:ca:7b:88:34:bd:a6:a2:a6:06:99:41:dd:1c:
68:2f:60:42:08:55:80:68:d2:9c:5b:f7:ae:16:74:
b0:12:e9:83:44:75:5e:35:19:0d:8a:35:e3:e6:c7:
07:00:bc:8c:f4:4d:7c:25:7b:24:19:0e:96:90:99:
5f:72:3d:32:be:12:79:9b:91:44:7b:1f:9e:ef:b2:
b1:0a:d0:0c:e5:b8:c5:fb:6b:a8:ee:08:5f:a8:10:
44:7c:33:e4:4a:eb:db:2f:71:50:82:25:f3:2f:c3:
dc:df:d4:a3:1e:b3:ed:c9:3c:0a:be:1a:0f:df:c8:
38:12:40:74:47:fc:af:89:36:f0:f3:49:a7:7c:b6:
b1:db:fe:2d:7c:bb:20:ff:2b:03:cf:ee:71:f2:26:
31:c7:0a:14:64:d7:88:a9:98:41:8b:8e:7f:f7:df:
62:11:26:a9:e1:00:9a:c6:ff:b2:be:36:e1:13:85:
a2:38:6b:97:e3:af:1d:56:b3:5b:99:7e:58:13:c5:
5b:aa:14:29:31:5a:c0:38:66:df:a3:15:ba:5e:a2:
02:91:b0:ea:c3:05:71:a3:ea:44:53:a1:12:55:d7:
cd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:FA:6D:C7:2A:4D:F4:9A:9A:FC:B5:51:70:97:6D:D1:EE:3E:A3:B5
X509v3 Authority Key Identifier:
keyid:79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/S_ptxypN9Jqa_LVRcJdt0e4-o7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.242.0/24
IPv6:
2a10:57c0::/29
Signature Algorithm: sha256WithRSAEncryption
20:bf:70:0b:ac:98:a9:9a:8a:e9:b6:db:f8:36:ac:4e:61:29:
7d:85:f7:25:9a:5b:45:08:30:bc:be:d5:c6:7d:99:5c:8f:00:
63:db:cc:d4:8e:37:93:11:d4:02:f9:95:a9:4a:32:6f:90:5b:
dd:a8:a0:00:b3:1c:34:56:a8:57:46:08:ca:35:be:52:c8:7e:
42:18:a9:9b:be:aa:d8:b1:4e:62:60:29:d5:86:2b:3e:9d:35:
88:cd:dd:0f:7b:69:84:41:a6:1f:76:83:85:81:fb:4b:05:51:
3e:58:e6:63:9c:6c:eb:c5:7d:dd:2f:a0:1b:28:f1:51:7c:c8:
80:5e:6d:63:86:a5:20:63:0b:e3:40:91:f0:4a:32:de:7e:4f:
d3:1a:ea:8d:9a:c1:27:8f:5b:60:4a:13:ee:7d:a5:05:0a:cb:
7a:04:06:bc:8c:b8:c5:76:f1:0f:8f:30:61:d8:c1:97:79:c9:
18:70:6b:f5:6c:79:49:c6:27:6b:ba:07:62:36:62:96:cf:fb:
3c:52:d1:fb:b7:47:5c:05:95:53:b1:28:70:7d:9c:17:4f:dc:
ed:c9:ee:28:03:cc:9f:ab:a7:75:8e:64:e6:b6:4b:75:e3:a6:
c3:96:f1:0d:54:f1:49:cb:99:d1:ad:dc:26:b7:b5:3a:38:44:
94:d8:06:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:36 2024 by rpki-client on console-fra.rpki-client.org