Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/85ec1c-e97e-422e-975c-1f54b80ce020/1/NcTEn1BF2GIcZIIfQPQJTS4u50Y.roa
File: NcTEn1BF2GIcZIIfQPQJTS4u50Y.roa (raw, json)
Hash identifier: aauorML4Hu/GAVUegmkYeEps9SoV1q8qkK++y0IkkYc=
Subject key identifier: 35:C4:C4:9F:50:45:D8:62:1C:64:82:1F:40:F4:09:4D:2E:2E:E7:46
Certificate issuer: /CN=588db30c807839cc534dd6d11ab90420f873d639
Certificate serial: 018B8AC434040E1AEB10F768DA8355D1DC8C
Authority key identifier: 58:8D:B3:0C:80:78:39:CC:53:4D:D6:D1:1A:B9:04:20:F8:73:D6:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WI2zDIB4OcxTTdbRGrkEIPhz1jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/85ec1c-e97e-422e-975c-1f54b80ce020/1/NcTEn1BF2GIcZIIfQPQJTS4u50Y.roa
Signing time: Wed 01 Nov 2023 12:03:15 +0000
ROA not before: Wed 01 Nov 2023 12:03:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395754
IP address blocks: 193.138.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8a:c4:34:04:0e:1a:eb:10:f7:68:da:83:55:d1:dc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588db30c807839cc534dd6d11ab90420f873d639
Validity
Not Before: Nov 1 12:03:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35c4c49f5045d8621c64821f40f4094d2e2ee746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:53:6d:2a:62:eb:f4:90:c7:b4:c2:80:fd:9f:
02:a7:47:a9:c7:d6:bc:e3:1c:98:a7:55:e7:6c:3a:
80:ee:53:67:98:fa:3b:e6:c8:b8:08:54:ee:f1:eb:
59:7d:19:b2:81:07:c2:7f:30:00:7c:7e:f1:b1:0a:
04:3c:a1:17:58:42:6e:b7:75:ad:b5:39:3e:92:f4:
94:ae:55:e5:88:b3:2e:42:28:e2:46:18:17:e0:7c:
6d:ad:85:e1:a4:1d:5f:43:f4:87:6e:73:f9:46:53:
7f:9c:42:2e:db:f4:27:21:91:08:0c:70:8d:b0:cd:
42:d8:c3:53:9e:69:1b:06:c8:5c:21:36:04:b5:53:
cf:83:44:3c:33:f8:4f:f8:cc:02:58:7a:06:7b:ff:
d0:85:91:77:5c:fd:91:89:d3:28:87:7b:1c:43:05:
9f:6a:55:6e:04:9f:dd:ff:ae:8b:c5:bd:e6:cc:0c:
d4:41:4f:50:5d:0e:3e:c0:93:72:24:7e:3e:90:f2:
aa:01:12:37:d3:b4:3e:12:88:b9:43:ea:0a:ff:59:
5f:80:85:db:32:a4:78:48:9b:b9:ae:de:b5:7d:cd:
2d:47:95:5e:2b:ca:46:de:90:b7:04:4d:c7:ac:dc:
84:3a:70:22:61:9b:4f:c5:d2:2b:4b:f1:88:8e:29:
31:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:C4:C4:9F:50:45:D8:62:1C:64:82:1F:40:F4:09:4D:2E:2E:E7:46
X509v3 Authority Key Identifier:
keyid:58:8D:B3:0C:80:78:39:CC:53:4D:D6:D1:1A:B9:04:20:F8:73:D6:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WI2zDIB4OcxTTdbRGrkEIPhz1jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/85ec1c-e97e-422e-975c-1f54b80ce020/1/NcTEn1BF2GIcZIIfQPQJTS4u50Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/85ec1c-e97e-422e-975c-1f54b80ce020/1/WI2zDIB4OcxTTdbRGrkEIPhz1jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.77.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:cf:c4:ef:ba:3d:3d:7c:f9:1a:c0:62:40:83:60:c9:cd:dc:
71:ba:e0:97:cb:37:3f:51:15:44:e1:bd:67:2c:38:a7:69:73:
53:7a:86:a8:3f:10:e2:9c:ca:fa:4b:e3:e9:f3:17:a5:54:2d:
a4:55:bf:80:83:46:99:86:5f:09:3a:7a:ae:c4:32:90:1f:3f:
bd:fc:80:12:bb:50:d0:cc:98:b4:78:de:43:1b:88:ed:f9:d3:
98:fb:43:2f:16:a5:66:bb:24:43:b7:0d:0a:87:85:1a:da:15:
ce:6c:44:63:e9:62:3a:94:ac:19:2a:1a:40:4e:df:a1:bc:10:
f4:78:97:f8:de:31:0c:3e:01:f6:7f:71:f5:05:e9:10:05:13:
43:80:3f:81:68:86:ad:9e:07:21:30:a0:f2:8e:64:30:7f:ee:
27:01:eb:4e:21:3f:eb:ee:c3:8c:8d:36:a7:0e:b9:1e:be:44:
85:c4:14:17:c8:19:2f:c1:46:3a:bf:e9:b2:87:a9:5a:e4:73:
de:71:08:2a:b2:03:31:78:ac:4b:7d:c5:82:37:82:40:3f:24:
08:a2:f8:df:f3:63:70:c4:79:9b:99:fd:55:ce:e1:64:95:27:
96:7c:55:75:cb:89:fc:db:65:42:13:b6:cf:db:f3:e8:83:63:
50:33:b1:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:36 2024 by rpki-client on console-fra.rpki-client.org