Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/DkdPywxqaIhLrBr0JmPCw1dYP84.roa
File: DkdPywxqaIhLrBr0JmPCw1dYP84.roa (raw, json)
Hash identifier: v+Leqh743uCurQuJ3AEMT1JguLgcdW1PLes9yC7Ay8U=
Subject key identifier: 0E:47:4F:CB:0C:6A:68:88:4B:AC:1A:F4:26:63:C2:C3:57:58:3F:CE
Certificate issuer: /CN=174737d8a484d12534ca40f8dd818a588c3b3de2
Certificate serial: 018572C38445CF1ABFB48F5BA835E3BF6213
Authority key identifier: 17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/DkdPywxqaIhLrBr0JmPCw1dYP84.roa
Signing time: Mon 02 Jan 2023 13:54:54 +0000
ROA not before: Mon 02 Jan 2023 13:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208890
IP address blocks: 193.228.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:84:45:cf:1a:bf:b4:8f:5b:a8:35:e3:bf:62:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174737d8a484d12534ca40f8dd818a588c3b3de2
Validity
Not Before: Jan 2 13:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e474fcb0c6a68884bac1af42663c2c357583fce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ed:4d:ab:6e:e4:9c:81:c5:fb:78:ac:06:23:
67:94:53:1b:88:03:c1:04:91:c8:7d:7e:56:08:30:
bb:ea:15:83:81:e2:a6:d9:c9:11:0a:61:22:25:82:
fd:49:f6:19:be:10:da:cc:6e:95:db:e7:f4:9c:76:
85:a7:f9:20:92:6e:b3:df:33:ac:51:d9:19:59:37:
ba:29:6c:86:3a:fa:b3:b6:70:6f:1c:62:80:a7:27:
08:9a:5a:07:5d:f8:be:f9:24:b7:d2:da:42:a3:7b:
58:d5:40:5c:f5:07:fc:58:b8:32:38:a9:dc:e5:46:
1c:cb:5e:a5:15:a6:79:f5:c2:da:4c:b1:93:17:73:
d1:13:dc:1d:37:5e:31:43:7f:d0:a9:0d:20:b1:92:
1d:48:21:2b:d7:84:09:74:95:26:ed:21:fc:be:9b:
b1:b0:b4:8f:f7:50:8e:07:69:69:20:b7:eb:2a:8e:
4f:92:9b:8c:20:63:a1:0f:3f:5a:83:1c:7e:af:d5:
8d:59:57:14:66:bd:53:64:4a:ce:00:bd:e5:f5:f9:
4e:1f:a5:60:52:7d:78:24:38:dd:0d:78:01:47:b4:
04:8f:d2:5c:85:ff:63:df:7d:0e:ad:e9:d2:2a:0f:
28:5a:2e:32:20:c6:19:2d:d4:7a:76:1b:06:e6:e0:
6b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:47:4F:CB:0C:6A:68:88:4B:AC:1A:F4:26:63:C2:C3:57:58:3F:CE
X509v3 Authority Key Identifier:
keyid:17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/DkdPywxqaIhLrBr0JmPCw1dYP84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/F0c32KSE0SU0ykD43YGKWIw7PeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.162.0/24
Signature Algorithm: sha256WithRSAEncryption
75:71:0d:5a:7a:d7:1b:07:99:cd:be:4f:a6:0b:21:f7:6b:6d:
0e:5e:9c:6b:07:f7:13:94:a8:d3:25:09:c8:ac:7f:36:79:49:
a2:bf:2c:17:15:f4:d4:6e:72:7d:a4:20:0e:e5:92:4c:69:e2:
e0:5c:c1:ad:c3:b7:6a:37:90:a7:94:76:cb:ca:0f:dc:54:16:
df:2e:d7:a3:69:9d:b4:da:2b:10:58:21:ae:19:d0:83:30:4e:
3f:82:e8:33:e7:cd:58:5a:51:4a:53:b1:ec:25:76:07:97:20:
93:f5:77:58:96:f4:c0:4a:21:e6:12:b4:64:f8:c2:8c:92:4a:
06:1e:d1:59:d9:76:62:77:3d:bd:a9:22:b4:5f:95:e8:c6:79:
77:76:85:c5:ca:7b:ec:27:72:90:80:cd:72:eb:43:68:63:ff:
a8:07:2d:a1:3c:87:87:2e:20:2b:a9:f2:bd:a8:ed:02:d2:da:
c3:ec:ac:43:95:4a:c8:e9:20:21:20:4d:d3:a5:08:5c:02:52:
a9:6f:25:74:0d:dc:96:47:27:aa:19:76:e0:54:52:10:b1:fe:
19:04:fc:b1:ef:87:4d:58:db:0d:9e:dc:be:ec:5a:fa:a3:5c:
40:20:69:1a:fd:0b:ef:29:74:8f:8e:39:e3:f3:5e:b1:f8:8c:
ec:27:7c:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:22 2024 by rpki-client on console-fra.rpki-client.org