Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/sRn7ZivEqSKoSbTluI_Psn0aboQ.roa
File: sRn7ZivEqSKoSbTluI_Psn0aboQ.roa (raw, json)
Hash identifier: qitjSEw0LkM81+iG4D8BdTA63i2QzigXP1JLazYGlfY=
Subject key identifier: B1:19:FB:66:2B:C4:A9:22:A8:49:B4:E5:B8:8F:CF:B2:7D:1A:6E:84
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018D5BAB753801DF0609AD37A3F42EF477AC
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/sRn7ZivEqSKoSbTluI_Psn0aboQ.roa
Signing time: Tue 30 Jan 2024 18:39:39 +0000
ROA not before: Tue 30 Jan 2024 18:39:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210538
IP address blocks: 193.57.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Feb 2024 21:35:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5b:ab:75:38:01:df:06:09:ad:37:a3:f4:2e:f4:77:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 30 18:39:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b119fb662bc4a922a849b4e5b88fcfb27d1a6e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5d:e9:18:4c:0a:e2:07:e4:af:cc:31:83:17:
64:e2:37:34:e6:88:51:70:4b:dd:da:4e:53:2d:19:
f9:dc:af:7e:98:13:6f:a7:ff:31:01:0c:73:b2:ab:
90:ca:22:db:3b:01:a9:98:61:ab:a4:15:0e:8a:71:
0c:ac:6a:43:48:3a:8b:5a:57:00:d6:b8:c3:47:a9:
63:c6:6c:19:15:81:cb:e2:2d:ef:32:53:fe:54:b0:
db:a9:81:b2:9e:1a:a7:45:51:9e:3b:93:d2:92:d3:
14:8c:fb:8c:cf:2b:85:56:b8:90:d0:1d:83:fb:12:
1c:51:22:bd:d0:65:c9:f7:35:03:db:57:87:25:a2:
de:4f:ec:f0:ce:f1:dc:1e:d3:65:96:0b:f7:b9:15:
52:94:be:7a:55:ab:0f:32:e7:dc:59:45:6a:11:d0:
9f:84:04:82:7b:b1:0f:b2:d2:06:d7:fb:84:ba:d7:
18:98:5f:5b:28:15:16:49:65:3e:3b:91:c6:d5:56:
8a:27:13:de:92:b8:ef:40:94:b5:9a:bf:88:98:b7:
b6:d3:f6:c7:46:bb:1f:31:8e:10:1d:e7:76:87:67:
ce:6e:b8:f9:7e:f1:f4:4d:eb:05:05:79:6e:1e:f0:
26:41:e8:74:c0:86:61:57:af:aa:66:ff:7e:03:51:
44:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:19:FB:66:2B:C4:A9:22:A8:49:B4:E5:B8:8F:CF:B2:7D:1A:6E:84
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/sRn7ZivEqSKoSbTluI_Psn0aboQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.41.0/24
Signature Algorithm: sha256WithRSAEncryption
39:64:b3:69:3c:fa:23:84:e7:e7:24:47:48:af:32:77:64:8d:
13:9c:2a:72:37:dd:7a:3a:a6:f4:30:bf:ef:6e:3f:5c:ab:17:
e1:ef:31:ca:95:1e:e5:96:f3:2e:4d:bb:bf:b7:4c:95:cf:25:
a4:2f:d1:bd:44:41:46:b4:90:8c:ed:c3:80:56:08:52:1c:9e:
09:30:4a:a4:16:f1:1f:9e:fb:22:2b:5a:2a:c2:be:9e:0e:a5:
6d:69:9d:74:ce:22:57:0d:d4:5a:6a:74:cc:74:05:ce:2f:5d:
20:87:6a:f8:c5:81:e7:20:43:13:95:1c:e6:c1:2b:04:60:da:
ce:df:65:55:83:73:bf:d8:ed:3e:0c:00:86:06:18:62:7d:60:
6c:22:97:43:5d:7b:72:13:3a:70:de:ec:a2:ed:f2:43:6b:8a:
8c:39:fc:39:4b:71:d4:b8:38:f3:e8:58:9f:15:11:1d:b5:b5:
54:1c:94:63:af:dd:a9:28:1e:9c:96:1f:cf:35:75:0d:1c:8b:
33:de:4f:26:3b:87:56:82:ea:8d:bb:86:3a:81:19:34:76:ea:
54:0b:19:ba:93:05:2e:f8:d1:e3:f4:2a:f4:ef:21:57:47:c6:
86:be:dd:02:c9:96:20:67:1f:e4:4c:5a:d9:ad:23:19:68:78:
fb:20:d5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:19 2024 by rpki-client on console-ams.rpki-client.org