Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a2b051-3a23-4835-b30d-2af4791d96eb/1/0poAlN48RAOUAKFsYRxuGca7AYA.roa
File: 0poAlN48RAOUAKFsYRxuGca7AYA.roa (raw, json)
Hash identifier: W7eBCI4mDdt1nCWrI8CaH/L3YP5Pc1WchWV1HgiEEEE=
Subject key identifier: D2:9A:00:94:DE:3C:44:03:94:00:A1:6C:61:1C:6E:19:C6:BB:01:80
Certificate issuer: /CN=855c5d0fe25935ac91ab5aada6452600e58d25a5
Certificate serial: 018570B06B684D2B7CC0DFD8591C5298DA27
Authority key identifier: 85:5C:5D:0F:E2:59:35:AC:91:AB:5A:AD:A6:45:26:00:E5:8D:25:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVxdD-JZNayRq1qtpkUmAOWNJaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/a2b051-3a23-4835-b30d-2af4791d96eb/1/0poAlN48RAOUAKFsYRxuGca7AYA.roa
Signing time: Mon 02 Jan 2023 04:14:48 +0000
ROA not before: Mon 02 Jan 2023 04:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211499
IP address blocks: 193.16.98.0/24 maxlen: 24
2001:678:f2c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:6b:68:4d:2b:7c:c0:df:d8:59:1c:52:98:da:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=855c5d0fe25935ac91ab5aada6452600e58d25a5
Validity
Not Before: Jan 2 04:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d29a0094de3c44039400a16c611c6e19c6bb0180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:18:f1:0f:4f:79:51:b1:60:d6:20:8d:5d:9f:
1d:04:d2:19:db:85:f4:7f:7d:8c:c1:02:1a:88:a8:
7c:5f:d4:46:65:45:9f:ec:a6:5a:57:d7:23:74:76:
07:b6:bd:85:82:98:3a:9f:fd:84:00:89:f5:b6:e9:
f6:71:02:a6:85:f8:c8:ba:77:89:3f:41:fd:d0:63:
e2:48:1b:3a:c0:55:e6:ff:4a:5e:8a:c6:29:58:3e:
26:8b:31:31:bf:57:c3:6e:f8:02:29:3a:b9:07:06:
69:de:b2:4a:17:8e:2a:fb:70:09:85:49:e8:90:d3:
d8:47:36:3e:31:f9:57:c3:f4:5d:ad:bf:cd:f4:60:
cb:e8:9f:28:8e:5f:29:40:57:20:06:91:37:30:b4:
da:7d:3b:34:0b:22:e4:7b:45:8b:19:83:fb:ef:b9:
26:96:d4:21:7d:c8:f9:9d:41:88:78:a4:57:71:02:
70:f4:ca:fd:29:bc:2b:f9:92:c6:a1:ca:93:12:a9:
5b:eb:f7:dc:ea:84:3a:a1:cc:00:15:8a:c9:d8:73:
db:e1:96:8d:91:e9:1c:ba:e0:40:4f:58:c9:96:64:
70:51:78:8c:a2:88:67:a3:7a:ca:fc:d2:5f:36:0c:
99:ed:8d:d4:10:29:fa:06:b3:b1:02:5e:9a:72:e8:
d5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9A:00:94:DE:3C:44:03:94:00:A1:6C:61:1C:6E:19:C6:BB:01:80
X509v3 Authority Key Identifier:
keyid:85:5C:5D:0F:E2:59:35:AC:91:AB:5A:AD:A6:45:26:00:E5:8D:25:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVxdD-JZNayRq1qtpkUmAOWNJaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a2b051-3a23-4835-b30d-2af4791d96eb/1/0poAlN48RAOUAKFsYRxuGca7AYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a2b051-3a23-4835-b30d-2af4791d96eb/1/hVxdD-JZNayRq1qtpkUmAOWNJaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.98.0/24
IPv6:
2001:678:f2c::/48
Signature Algorithm: sha256WithRSAEncryption
11:80:c9:84:a9:47:1f:b1:ba:15:c4:58:a7:1c:35:ef:fc:4f:
93:02:34:15:46:bb:84:a3:9e:7d:04:91:a1:c1:13:46:44:a4:
54:6e:6c:37:3d:97:bb:83:9a:4f:fe:ba:16:12:a3:e0:81:6c:
6b:a4:22:ab:6a:18:57:99:68:19:af:6f:a1:e4:d4:a3:00:45:
f4:9e:ca:81:06:ae:2f:c5:4e:c5:02:ea:4f:ea:f1:55:6a:cf:
13:6a:eb:38:69:27:cf:80:34:90:0a:5a:40:6a:64:26:43:b8:
3c:c4:52:8f:00:83:4a:9f:a2:12:dc:ae:d3:5b:8a:e1:4d:03:
b7:30:4f:d2:69:2d:e0:58:b8:0e:56:57:3b:a0:ee:84:00:88:
f6:80:6b:68:f5:17:e4:1f:6f:15:5a:a5:6b:88:5f:fb:dc:6c:
04:27:22:ed:86:28:8b:28:34:0d:d4:33:e3:b7:37:e5:27:52:
d4:1f:ae:c6:3d:5a:25:4c:d3:90:64:f9:84:64:8b:02:b1:d3:
36:6d:53:e1:32:1b:9e:f6:7b:26:17:d0:c5:82:1d:02:3e:55:
21:e4:cc:90:12:0c:3b:33:e9:ae:c5:72:99:fe:ae:fa:e0:0b:
6b:37:7a:d5:21:24:68:15:99:9c:5b:87:5c:70:32:62:a6:c3:
b0:5c:ac:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:24 2024 by rpki-client on console-fra.rpki-client.org