Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/xx51Lpu851Z44WTjGGR40-BYKuw.roa
File: xx51Lpu851Z44WTjGGR40-BYKuw.roa (raw, json)
Hash identifier: SIQt+TZ/gSK25fuiBXdZlbClYxj8Y5HdL3VgKAXTQk4=
Subject key identifier: C7:1E:75:2E:9B:BC:E7:56:78:E1:64:E3:18:64:78:D3:E0:58:2A:EC
Certificate issuer: /CN=461207a3eef2b44f8e2731b7b0ac7d1716e355c5
Certificate serial: 01856FC27ACD46B0CB80DDB6B7D47F023370
Authority key identifier: 46:12:07:A3:EE:F2:B4:4F:8E:27:31:B7:B0:AC:7D:17:16:E3:55:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhIHo-7ytE-OJzG3sKx9FxbjVcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/xx51Lpu851Z44WTjGGR40-BYKuw.roa
Signing time: Sun 01 Jan 2023 23:54:54 +0000
ROA not before: Sun 01 Jan 2023 23:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207851
IP address blocks: 193.105.250.0/24 maxlen: 24
193.106.239.0/24 maxlen: 24
193.105.208.0/24 maxlen: 24
193.105.217.0/24 maxlen: 24
2a0f:8b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 16 Oct 2023 10:42:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:7a:cd:46:b0:cb:80:dd:b6:b7:d4:7f:02:33:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=461207a3eef2b44f8e2731b7b0ac7d1716e355c5
Validity
Not Before: Jan 1 23:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c71e752e9bbce75678e164e3186478d3e0582aec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:21:f0:8a:e1:85:1b:ff:d6:94:48:77:4c:e8:
d3:55:76:44:91:f7:0e:cb:c3:f5:31:06:22:03:32:
f6:18:12:01:b0:ae:60:c2:90:65:aa:3f:52:3d:f1:
de:0f:b9:f2:7c:5a:a7:3d:52:47:3c:b6:64:db:ab:
8c:3c:34:34:06:15:4e:95:9d:6c:51:c7:e9:74:f7:
41:00:bb:74:2f:97:bc:15:b0:4b:b8:f4:63:90:48:
b5:4a:ce:82:8d:29:04:65:cb:5f:5c:a1:a3:66:b5:
a3:bd:de:68:64:7a:81:44:07:f0:a9:92:09:17:35:
41:07:4d:63:d1:7d:60:0e:af:c0:32:6a:cb:14:b2:
2a:a7:0c:a8:67:98:de:15:3f:06:5c:e4:fb:9f:ad:
ee:4c:51:a2:13:5a:ad:a2:1e:69:f1:fc:6c:9c:e3:
f9:87:1b:e1:69:f5:a5:d6:8c:af:d7:9e:c4:33:4f:
c0:c7:c0:14:a3:cb:d9:06:7b:75:b0:a7:79:a4:8d:
78:a8:98:7d:ec:ad:df:6e:51:cd:52:54:7e:56:1b:
0d:e6:26:e6:ef:29:84:f0:ee:a1:3b:be:c9:b2:fb:
79:2a:c3:53:c1:4e:3f:f6:66:43:32:af:dc:08:40:
16:09:fb:7b:e7:03:65:63:72:47:86:f2:15:50:24:
75:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:1E:75:2E:9B:BC:E7:56:78:E1:64:E3:18:64:78:D3:E0:58:2A:EC
X509v3 Authority Key Identifier:
keyid:46:12:07:A3:EE:F2:B4:4F:8E:27:31:B7:B0:AC:7D:17:16:E3:55:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhIHo-7ytE-OJzG3sKx9FxbjVcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/xx51Lpu851Z44WTjGGR40-BYKuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/38c198-0f1b-4c59-81fe-1c8ce7c33ac0/1/RhIHo-7ytE-OJzG3sKx9FxbjVcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.208.0/24
193.105.217.0/24
193.105.250.0/24
193.106.239.0/24
IPv6:
2a0f:8b40::/29
Signature Algorithm: sha256WithRSAEncryption
72:88:57:df:f8:8a:ce:5f:b1:22:d4:38:3f:54:97:d6:65:8b:
65:75:ea:0f:90:21:ba:90:97:c6:70:5e:0b:64:1e:0c:02:f1:
de:3d:12:65:6a:10:64:b4:b9:b4:81:1a:c1:be:55:67:92:07:
77:e4:d0:b7:1f:07:b9:6f:a1:a3:16:cf:73:49:cc:41:f9:a3:
08:87:71:b0:67:8d:a9:9e:f6:10:11:0e:43:f0:b6:8b:3b:79:
35:27:93:c0:6d:78:45:39:d2:cd:e2:0e:85:09:8d:89:45:10:
29:4c:32:53:df:8b:4c:f9:72:32:37:ba:74:fc:1b:43:86:7c:
96:31:78:1e:fc:98:ff:e9:4a:d8:50:35:76:73:a9:a2:d8:8c:
ae:9d:e4:72:54:1e:e2:5c:b1:2a:e2:f4:14:7b:1a:ea:0e:8a:
80:5f:f7:6c:13:80:8d:cf:0b:64:3a:4e:b7:3d:71:96:7d:ea:
48:74:29:83:b2:74:d4:22:ea:27:ed:e1:ce:fa:a2:04:a4:38:
a3:14:72:5e:43:37:2d:2e:41:32:75:8a:73:ea:1a:38:0a:da:
c6:88:70:22:71:f4:22:0f:19:82:75:ea:b8:0b:14:9f:3a:b9:
f1:8a:f6:05:88:ac:f0:dc:78:8b:48:c4:c2:39:d0:86:41:45:
af:da:7c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:53 2024 by rpki-client on console-fra.rpki-client.org