Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/ijchijM80_Gn-9Ma291376GKElg.roa
File: ijchijM80_Gn-9Ma291376GKElg.roa (raw, json)
Hash identifier: eLyTqATS2ApgI5qzdXLcdpdRpjgCTD+uPq0tAW6iPBc=
Subject key identifier: 8A:37:21:8A:33:3C:D3:F1:A7:FB:D3:1A:DB:DD:77:EF:A1:8A:12:58
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 018571D7B987423EC72FC2CC451C60D7BFDC
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/ijchijM80_Gn-9Ma291376GKElg.roa
Signing time: Mon 02 Jan 2023 09:37:21 +0000
ROA not before: Mon 02 Jan 2023 09:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213238
IP address blocks: 193.30.81.0/24 maxlen: 24
2a02:1161:800::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:b9:87:42:3e:c7:2f:c2:cc:45:1c:60:d7:bf:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 2 09:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a37218a333cd3f1a7fbd31adbdd77efa18a1258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:32:9b:c5:6a:97:37:2e:aa:71:fd:52:82:d3:
c3:f8:9b:12:71:2e:8a:16:b4:b9:60:ef:6a:3a:43:
74:84:1d:d7:37:3b:a8:5d:8c:d0:a1:a4:0e:74:d5:
1b:2e:01:5c:22:4b:bf:1a:99:05:e3:fd:39:2f:2d:
62:df:1c:5d:31:a7:24:38:23:50:73:9c:2e:3e:59:
6a:d6:44:08:7e:3e:30:56:85:9e:48:9c:47:0b:c4:
f1:19:bb:6d:68:6e:3f:0c:f5:e6:3d:d0:a9:35:08:
54:47:31:c0:28:f0:e8:ea:74:e8:14:d0:bf:88:09:
33:ea:5b:18:f9:6b:db:bc:7b:ed:c8:dc:eb:5f:25:
de:b2:60:c0:87:37:90:17:e9:0d:90:cc:c1:1b:c7:
8b:25:eb:3f:7c:05:d6:c5:2d:3c:28:56:68:05:20:
10:d1:43:f0:9f:4f:e7:b9:e7:13:5b:00:6f:a8:03:
d9:52:90:43:05:6b:48:50:3b:37:9d:ce:0b:57:b8:
71:14:05:a9:56:59:70:b5:aa:80:f0:e1:0c:d9:81:
4a:0e:20:51:0f:ab:33:16:aa:56:46:24:2d:18:79:
0b:ab:ea:bf:82:a1:d0:28:f0:1c:a8:38:85:52:13:
3a:31:2f:66:8e:df:41:88:b0:32:58:94:71:5f:4c:
2b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:37:21:8A:33:3C:D3:F1:A7:FB:D3:1A:DB:DD:77:EF:A1:8A:12:58
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/ijchijM80_Gn-9Ma291376GKElg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.81.0/24
IPv6:
2a02:1161:800::/40
Signature Algorithm: sha256WithRSAEncryption
7a:df:ae:d3:e1:34:9c:57:08:be:b7:56:56:d6:b4:18:fc:5a:
c1:78:27:8e:43:e3:cb:3a:c9:1e:88:7e:bb:39:ce:68:33:85:
e7:50:eb:ac:bd:e4:6c:05:45:e6:51:06:e2:bf:de:96:7d:54:
1c:00:99:29:50:ce:90:e2:87:8b:65:7c:55:bf:dc:cb:20:fd:
0c:a3:bd:86:72:52:7d:6d:41:49:8e:5a:6b:1d:80:b1:9e:bd:
43:cb:14:5b:d4:1a:29:f8:0e:4f:7c:45:08:1d:fa:20:ca:0e:
d5:b4:68:fd:3f:3c:10:d9:e0:6f:79:18:21:8e:b6:c2:f5:af:
26:f4:d8:f6:1a:06:2a:e3:91:38:51:d3:4d:4e:bc:dd:8d:d3:
a5:69:08:ce:51:22:8e:43:3e:f4:7d:57:90:58:6b:93:f2:ac:
01:71:2e:65:3b:eb:b5:b4:d0:b0:57:ec:68:f3:c5:5d:93:1b:
48:c9:90:fa:aa:c5:ef:c9:7a:77:91:f7:8e:a2:d9:72:e1:97:
8b:94:64:7a:63:86:59:c3:8c:a0:c5:93:b7:34:63:29:6b:c5:
a5:9d:30:18:ea:c1:8f:cb:56:84:a8:68:a3:9a:86:59:98:10:
1f:10:b6:14:92:cb:d3:70:2f:ed:1d:78:64:10:5c:a9:39:f6:
4f:e2:49:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org