Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/CycV5y_l1Z36jr5ACYWYXmQWKps.roa
File: CycV5y_l1Z36jr5ACYWYXmQWKps.roa (raw, json)
Hash identifier: KUK0C9y3OkDAnMhtLdGd+1rejMrwTHtVjDIVHrFQaxc=
Subject key identifier: 0B:27:15:E7:2F:E5:D5:9D:FA:8E:BE:40:09:85:98:5E:64:16:2A:9B
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 01856C6F1BF0256D19732F42D24F894A103A
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/CycV5y_l1Z36jr5ACYWYXmQWKps.roa
Signing time: Sun 01 Jan 2023 08:24:58 +0000
ROA not before: Sun 01 Jan 2023 08:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60458
IP address blocks: 193.84.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:1b:f0:25:6d:19:73:2f:42:d2:4f:89:4a:10:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Jan 1 08:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b2715e72fe5d59dfa8ebe400985985e64162a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3c:3e:86:2d:43:42:90:ce:13:f1:3c:57:eb:
ce:a0:36:86:da:57:a5:9b:5f:81:55:3f:cb:8e:18:
45:2f:66:01:2d:3c:31:90:d0:a9:92:08:5e:2d:11:
26:ac:bd:20:e6:e6:79:f2:ce:9d:9d:eb:10:8a:dd:
30:ee:2e:ea:07:50:f1:6e:6d:33:23:f2:8e:53:69:
28:e3:94:f0:5c:55:2c:f6:d2:05:e2:38:01:9b:4f:
98:b4:bb:cf:ac:1f:6a:36:e3:e1:41:ff:ea:9d:65:
3d:eb:94:f0:f7:ba:c9:4f:60:b1:55:75:36:bd:34:
c5:4f:38:a0:ec:4a:75:46:88:76:39:35:75:0d:4a:
67:59:c4:4a:a6:d3:9c:68:98:87:a3:0f:2f:04:d2:
54:6c:bd:00:ad:38:1d:db:2f:f7:f1:ff:c1:8a:ea:
99:b0:11:78:c4:93:41:fe:a7:6d:84:d8:59:c4:1c:
b9:81:bf:3b:f8:31:18:35:df:9c:9e:06:d4:b5:f3:
5d:04:19:92:9a:2e:79:3f:f5:c7:12:da:2d:30:e0:
07:6c:29:4e:5e:e4:fa:83:c1:02:15:3c:9f:d9:8d:
a3:13:ae:b5:40:8d:fa:3b:e8:3f:3e:46:ac:f9:0d:
75:18:11:8c:1b:94:a4:09:e3:18:2b:f3:26:9c:57:
db:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:27:15:E7:2F:E5:D5:9D:FA:8E:BE:40:09:85:98:5E:64:16:2A:9B
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/CycV5y_l1Z36jr5ACYWYXmQWKps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.177.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c6:f6:e7:1d:57:a6:66:a3:ee:f3:5b:06:3b:96:d3:1d:64:
20:fe:29:33:65:45:4e:1c:7c:8a:f2:b4:34:f8:14:83:7e:34:
c3:af:0a:03:3a:1a:24:da:4d:df:86:63:99:7c:7e:a9:70:84:
cd:bd:bb:15:aa:77:70:e5:94:22:44:bf:0e:05:55:0a:56:55:
63:e8:58:8f:2a:ed:73:4f:de:b6:f4:89:d5:de:5d:7a:2f:17:
50:03:3a:3a:6e:87:3b:ae:79:8b:1b:8d:e7:00:28:6e:6a:ce:
9c:e1:c4:dc:c4:5f:34:71:28:6c:9c:c8:6d:20:39:2e:2d:5f:
a4:4b:b2:7d:b6:92:aa:89:70:9c:3c:d0:48:12:f3:be:ee:3a:
61:b3:4f:06:61:83:db:74:ce:a8:e4:0f:00:63:24:59:46:26:
82:fa:33:ab:5d:ca:3a:d4:ba:13:f6:e2:b8:87:fe:76:ff:d4:
49:ce:89:91:f0:05:77:e8:d5:28:d7:44:e5:c9:b2:ed:5a:98:
69:58:b3:9a:43:ca:87:4d:15:25:a5:9f:65:d6:8b:cf:59:85:
2c:23:1a:23:12:25:c8:3f:42:37:34:75:58:45:17:18:9d:c4:
eb:e9:63:e9:1a:ee:ed:1f:8b:af:a7:5a:7e:7c:7f:05:43:77:
a9:5a:cb:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:28 2024 by rpki-client on console-fra.rpki-client.org