Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/878c4d-d9e4-4488-b18c-b629bb4762f0/1/EYIkXg0p2YCc0fEIfhfV65BxbLk.roa
File: EYIkXg0p2YCc0fEIfhfV65BxbLk.roa (raw, json)
Hash identifier: MDWyg6g6gKZADrW1mlY8ARf6c3mko2LyqesAABS5Ntg=
Subject key identifier: 11:82:24:5E:0D:29:D9:80:9C:D1:F1:08:7E:17:D5:EB:90:71:6C:B9
Certificate issuer: /CN=8a34a7a3febafbc8400abe1dc12f22c6c1e8a5be
Certificate serial: 018BDA78A4B6BCFE998F0A272899B6E4D655
Authority key identifier: 8A:34:A7:A3:FE:BA:FB:C8:40:0A:BE:1D:C1:2F:22:C6:C1:E8:A5:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijSno_66-8hACr4dwS8ixsHopb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/878c4d-d9e4-4488-b18c-b629bb4762f0/1/EYIkXg0p2YCc0fEIfhfV65BxbLk.roa
Signing time: Thu 16 Nov 2023 23:30:21 +0000
ROA not before: Thu 16 Nov 2023 23:30:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8351
IP address blocks: 193.105.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:da:78:a4:b6:bc:fe:99:8f:0a:27:28:99:b6:e4:d6:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a34a7a3febafbc8400abe1dc12f22c6c1e8a5be
Validity
Not Before: Nov 16 23:30:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1182245e0d29d9809cd1f1087e17d5eb90716cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b3:76:95:58:1e:e8:4d:99:9b:ea:3f:b1:dd:
d9:04:a4:43:c6:d4:60:aa:1a:75:b7:3c:94:27:b6:
f5:72:6b:c8:39:67:c8:b0:3e:37:9d:01:5b:b3:fc:
62:31:3f:67:99:0f:8e:fc:69:11:fb:ef:27:1c:39:
40:a0:0d:82:51:10:80:dc:5e:fb:2d:d4:26:c4:c8:
4a:7c:70:b3:d9:51:26:8e:a0:57:c6:e7:5d:14:71:
ae:db:81:3b:a2:38:60:4c:99:c8:e4:d2:68:26:60:
7f:42:92:1a:6a:86:14:af:56:a4:dc:79:78:85:d9:
f6:2f:11:6e:44:36:4b:72:b6:99:fc:5e:8f:2a:0f:
1d:7d:d8:59:bf:9b:99:ce:50:61:cb:e7:b1:cf:54:
78:e7:e8:83:32:83:fe:1d:4c:3e:86:d4:8a:49:81:
63:18:7a:df:e6:4f:9a:73:0f:ac:85:ee:dc:3f:34:
1e:b3:e2:67:be:49:a4:a1:ee:ee:f0:c4:03:fc:d9:
60:4e:2f:c8:52:8c:c7:2b:0f:dd:bc:85:1e:d8:ee:
5d:cc:d0:c1:ff:4b:ec:e7:b6:c4:81:9c:ab:64:27:
6b:aa:64:fe:cb:fa:a4:c5:10:6d:4b:31:e4:45:14:
7c:97:09:11:ab:c5:8a:a8:68:9a:56:e6:0f:63:2c:
93:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:82:24:5E:0D:29:D9:80:9C:D1:F1:08:7E:17:D5:EB:90:71:6C:B9
X509v3 Authority Key Identifier:
keyid:8A:34:A7:A3:FE:BA:FB:C8:40:0A:BE:1D:C1:2F:22:C6:C1:E8:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijSno_66-8hACr4dwS8ixsHopb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/878c4d-d9e4-4488-b18c-b629bb4762f0/1/EYIkXg0p2YCc0fEIfhfV65BxbLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/878c4d-d9e4-4488-b18c-b629bb4762f0/1/ijSno_66-8hACr4dwS8ixsHopb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.137.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:fd:7d:bb:b2:a6:ee:b3:cf:9e:21:32:ae:f4:92:83:cb:5c:
24:87:ff:7e:f7:cb:30:7d:6f:47:6a:74:d7:15:21:0a:d1:db:
8c:2e:eb:5e:9f:02:bf:04:3a:13:65:0b:c6:ba:70:f2:27:d9:
55:b7:e2:f3:72:a5:ff:92:9e:75:aa:5b:da:5e:4a:d4:10:7b:
fc:93:bb:a2:83:9a:ee:57:45:f6:94:33:de:3f:6f:a7:e4:db:
5a:1e:1d:e6:ae:e4:78:51:8c:64:65:19:30:42:01:7b:55:ea:
3d:2c:4c:d5:79:80:6b:4e:71:72:a0:b9:34:51:24:cc:b9:b6:
64:4e:fe:2b:84:67:88:72:91:cc:51:7d:7e:b1:fe:f4:a6:36:
db:33:49:97:0b:c0:f9:25:75:52:1d:45:c7:df:d6:b5:23:a1:
f3:04:f9:5a:48:fd:fb:0f:0f:9e:e7:55:63:05:77:3e:ab:76:
9c:43:db:81:c0:32:e6:2e:40:75:57:40:dc:93:e0:73:d1:db:
ed:e0:1f:7f:25:d8:96:5a:11:a4:5d:ef:01:6e:73:91:06:78:
31:f3:6f:eb:77:6d:d5:76:5a:73:1a:6d:a4:b6:d4:0f:5f:0f:
70:19:a9:ce:3d:7f:48:89:1c:fa:d4:34:2d:88:ab:6b:06:3f:
a9:2b:9d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:08 2024 by rpki-client on console-ams.rpki-client.org