Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/33d71a-9350-4345-b6b8-a83d6c3cf053/1/vh7OYqYoFMZd3jzpTku0LCOlaKQ.roa
File: vh7OYqYoFMZd3jzpTku0LCOlaKQ.roa (raw, json)
Hash identifier: RGGTfJwF+83mLRqOOABJRZvqkJbY+Kt31gwKW84jqSE=
Subject key identifier: BE:1E:CE:62:A6:28:14:C6:5D:DE:3C:E9:4E:4B:B4:2C:23:A5:68:A4
Certificate issuer: /CN=a63c6dbaf2bcf52f27e58c2d89c6c1c55b95df26
Certificate serial: 01882A56D798444388A8727B5DE7BE23C2FC
Authority key identifier: A6:3C:6D:BA:F2:BC:F5:2F:27:E5:8C:2D:89:C6:C1:C5:5B:95:DF:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjxtuvK89S8n5YwticbBxVuV3yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/33d71a-9350-4345-b6b8-a83d6c3cf053/1/vh7OYqYoFMZd3jzpTku0LCOlaKQ.roa
Signing time: Wed 17 May 2023 15:31:54 +0000
ROA not before: Wed 17 May 2023 15:31:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.17.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2a:56:d7:98:44:43:88:a8:72:7b:5d:e7:be:23:c2:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63c6dbaf2bcf52f27e58c2d89c6c1c55b95df26
Validity
Not Before: May 17 15:31:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be1ece62a62814c65dde3ce94e4bb42c23a568a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e3:3f:9c:80:4f:5b:48:5f:78:12:11:34:4e:
47:1a:6f:b1:bf:2f:07:7b:f8:e0:b4:1f:75:a4:7b:
8d:39:ea:c1:83:f8:6a:cb:9d:a8:22:13:63:e0:0a:
75:fa:9c:2f:3b:38:d8:1e:16:d8:06:af:67:0b:fc:
e4:d9:c2:eb:fa:1c:19:aa:36:4a:f2:8a:b6:8c:94:
fc:f3:d3:b0:68:61:f1:20:f8:8c:84:28:77:9f:e4:
88:9d:43:c2:71:dd:d8:b5:36:48:b7:6a:5c:bf:31:
c6:df:ab:bc:03:59:30:ea:53:b3:a0:cc:1f:16:18:
5f:ae:c4:d6:3a:1a:d4:0f:6b:87:e6:8a:0e:84:f9:
6e:b7:d0:f5:35:ae:7e:5f:57:5c:60:45:10:50:00:
00:5a:e5:41:a5:ec:d6:2f:5b:b0:dc:bf:5f:dc:65:
f6:f2:4c:43:f2:7d:b6:0e:0d:ca:57:73:ea:c0:80:
e4:ef:38:a5:1a:e2:0e:2b:1a:34:a3:4b:b7:94:fc:
4f:80:ac:d8:de:0f:69:31:85:9e:67:ee:06:98:24:
a5:ea:77:a8:ad:b6:ae:74:16:7f:6a:63:95:cd:95:
3c:b6:0a:c6:cc:72:0f:bd:b9:dd:77:da:d3:58:c9:
65:59:cf:43:47:68:0a:c9:9b:30:9c:fc:68:c8:5a:
66:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:1E:CE:62:A6:28:14:C6:5D:DE:3C:E9:4E:4B:B4:2C:23:A5:68:A4
X509v3 Authority Key Identifier:
keyid:A6:3C:6D:BA:F2:BC:F5:2F:27:E5:8C:2D:89:C6:C1:C5:5B:95:DF:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjxtuvK89S8n5YwticbBxVuV3yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/33d71a-9350-4345-b6b8-a83d6c3cf053/1/vh7OYqYoFMZd3jzpTku0LCOlaKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/33d71a-9350-4345-b6b8-a83d6c3cf053/1/pjxtuvK89S8n5YwticbBxVuV3yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.209.0/24
Signature Algorithm: sha256WithRSAEncryption
39:80:3a:4b:7d:93:9f:84:b8:f6:6e:ed:c5:d0:b9:bf:c6:06:
7c:1c:46:32:a6:0e:93:6b:11:b3:41:ed:e5:af:71:34:e1:79:
cd:65:7b:d3:e1:65:4f:9e:99:c5:96:8e:b3:65:e1:d7:bf:ad:
35:46:5f:3b:f4:c5:4a:85:84:38:e3:97:a5:35:ab:35:70:c4:
ff:a1:50:72:62:8b:73:a2:32:e0:ca:5a:22:1a:5e:d5:82:c1:
a7:eb:aa:3f:8e:b5:a0:01:8c:a7:59:1d:6c:29:af:94:cb:c9:
b7:36:f3:fd:ca:cc:79:6c:dd:ac:82:3b:69:27:0d:97:67:b8:
c6:aa:3f:2d:2b:1b:2b:cb:4f:70:f4:a6:e4:d9:96:af:f1:7a:
05:51:f2:1d:cb:07:22:25:1d:3d:29:0a:ed:8e:a0:48:b1:77:
f6:ee:83:36:22:ee:4a:31:76:ff:c3:3a:96:8b:75:37:fd:62:
b9:0b:61:a6:c7:fd:a4:3e:97:e4:8e:11:e3:7f:fa:7d:e5:13:
5e:d1:51:8b:81:bc:74:20:f2:af:bf:95:d5:7d:10:26:f8:6a:
7a:7a:da:20:80:79:bb:0c:d6:dc:8a:11:02:a3:c2:a2:d0:de:
25:ea:ff:0a:e8:a8:86:0b:3d:f1:77:29:03:8f:19:13:6a:6a:
ae:ce:55:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org