Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/nStm9RBONyye5a7SqKZkbp4I7Jw.roa
File: nStm9RBONyye5a7SqKZkbp4I7Jw.roa (raw, json)
Hash identifier: YQAa9/mF16h9S5FsRL+afjk8LkGZymPrkD0KmH7klAM=
Subject key identifier: 9D:2B:66:F5:10:4E:37:2C:9E:E5:AE:D2:A8:A6:64:6E:9E:08:EC:9C
Certificate issuer: /CN=41e09dfb9dcef8a532fb211d2e8a6546cef9f580
Certificate serial: 0185723A0816ACDCC42BAF08AAC8AC1CA16B
Authority key identifier: 41:E0:9D:FB:9D:CE:F8:A5:32:FB:21:1D:2E:8A:65:46:CE:F9:F5:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeCd-53O-KUy-yEdLoplRs759YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/nStm9RBONyye5a7SqKZkbp4I7Jw.roa
Signing time: Mon 02 Jan 2023 11:24:43 +0000
ROA not before: Mon 02 Jan 2023 11:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15608
IP address blocks: 193.41.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:08:16:ac:dc:c4:2b:af:08:aa:c8:ac:1c:a1:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e09dfb9dcef8a532fb211d2e8a6546cef9f580
Validity
Not Before: Jan 2 11:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d2b66f5104e372c9ee5aed2a8a6646e9e08ec9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f0:76:22:5d:6e:db:20:67:36:00:eb:ab:9b:
ca:61:31:92:c0:29:99:ea:38:85:b1:2f:97:3d:19:
9c:05:d2:7f:3a:27:ee:37:f4:c5:31:5d:12:a9:4f:
a9:ff:6b:de:71:86:70:7b:63:25:57:cc:07:e9:26:
eb:73:fe:0a:e3:80:eb:da:ba:f2:6b:be:7e:ea:3b:
c6:91:1a:67:2e:21:53:77:4b:fc:f5:7b:0b:ac:c9:
1c:2f:92:9f:c1:df:62:a7:e5:bd:3e:75:96:89:88:
9e:8d:ea:f6:8f:b5:28:d4:e0:0f:af:b6:33:05:b0:
b9:a1:30:07:73:d7:3b:ea:c3:0b:9b:a6:76:0f:dd:
12:41:40:68:0e:9f:31:e2:41:07:69:3e:36:2a:ca:
c2:6f:e9:1f:7b:98:ad:51:85:6d:0c:a7:88:a8:16:
27:a6:f6:2e:ae:04:17:ac:3c:87:55:f6:57:a0:ec:
98:74:5f:3c:b2:59:b1:16:7a:1e:c4:cc:63:d1:1f:
ba:3e:ff:15:4a:48:be:96:61:99:89:59:e6:61:53:
b4:47:89:38:32:c9:06:7d:0e:38:67:56:9b:4f:1c:
dd:99:0f:9b:94:58:59:5a:60:75:b6:8c:22:bc:52:
c6:b5:40:36:c6:81:0f:2d:58:3a:a3:02:e5:3a:2d:
80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2B:66:F5:10:4E:37:2C:9E:E5:AE:D2:A8:A6:64:6E:9E:08:EC:9C
X509v3 Authority Key Identifier:
keyid:41:E0:9D:FB:9D:CE:F8:A5:32:FB:21:1D:2E:8A:65:46:CE:F9:F5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeCd-53O-KUy-yEdLoplRs759YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/nStm9RBONyye5a7SqKZkbp4I7Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/QeCd-53O-KUy-yEdLoplRs759YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.43.0/24
Signature Algorithm: sha256WithRSAEncryption
05:81:7d:2e:de:77:14:6e:94:85:94:b7:e4:2c:2d:52:30:b0:
85:ba:35:08:56:bd:bd:1c:2f:c0:cd:bb:25:d7:2b:2b:b2:e7:
56:2c:28:74:cf:bc:d2:6e:9a:b7:4d:cb:0c:0e:50:72:72:e7:
b4:23:74:7f:62:1e:dd:42:bc:6c:42:2b:e8:8a:a5:78:6e:3f:
16:8b:ee:64:63:0d:b2:a6:a7:ad:f4:53:fe:5f:b9:2b:a3:15:
0b:53:8a:c4:fd:a3:1a:a9:99:25:32:a4:5a:ea:35:c8:c5:d1:
2e:a3:1b:9c:67:dc:90:c8:2f:52:a2:f9:7d:99:ab:ca:a3:d9:
73:0b:aa:b5:ee:7e:8c:2b:35:5d:1e:00:c3:ae:47:0f:30:e8:
70:ad:e1:be:ab:0f:c0:3b:e9:e2:eb:d6:19:a4:d9:b1:14:3a:
61:0b:f5:91:83:2d:58:d6:ab:3f:43:a1:16:55:3d:d6:51:a7:
c7:bc:5d:ea:b0:8e:da:eb:bf:e0:af:d0:a5:e6:29:6a:ed:57:
3b:e1:d3:2a:63:3c:5a:d2:c0:5a:d6:8c:ff:e9:8e:f0:d5:51:
85:62:c5:ff:5b:3b:74:ca:1f:81:17:06:33:06:dc:11:41:85:
59:ce:c3:a9:f0:a4:dd:c7:22:fd:fa:1b:c5:0f:55:17:6b:8b:
89:63:a1:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:23 2024 by rpki-client on console-fra.rpki-client.org