Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9260d5-f97d-4168-b22a-fbb9f91c8cce/1/D6lgOGFTfV-TrpMe-Pf30Hv3R64.roa
File: D6lgOGFTfV-TrpMe-Pf30Hv3R64.roa (raw, json)
Hash identifier: ATSCiBGZPp93wCD9qEzzoViAW4MxuyIrHy9fNngefA0=
Subject key identifier: 0F:A9:60:38:61:53:7D:5F:93:AE:93:1E:F8:F7:F7:D0:7B:F7:47:AE
Certificate issuer: /CN=cf70f3d1118361b59f3315f591643e1dabbb2008
Certificate serial: 018572A7F08EC1787229BFAF4C11D439F717
Authority key identifier: CF:70:F3:D1:11:83:61:B5:9F:33:15:F5:91:64:3E:1D:AB:BB:20:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z3Dz0RGDYbWfMxX1kWQ-Hau7IAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9260d5-f97d-4168-b22a-fbb9f91c8cce/1/D6lgOGFTfV-TrpMe-Pf30Hv3R64.roa
Signing time: Mon 02 Jan 2023 13:24:46 +0000
ROA not before: Mon 02 Jan 2023 13:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211322
IP address blocks: 193.228.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:a7:f0:8e:c1:78:72:29:bf:af:4c:11:d4:39:f7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf70f3d1118361b59f3315f591643e1dabbb2008
Validity
Not Before: Jan 2 13:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fa9603861537d5f93ae931ef8f7f7d07bf747ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:91:d4:72:4f:d4:f4:09:38:59:88:59:46:df:
54:42:a8:0a:cd:98:2c:96:f8:74:3f:5e:86:86:ab:
4d:7d:14:7a:5f:e5:2b:f0:80:88:58:e2:e0:0c:bd:
ff:07:09:90:7e:41:61:25:23:36:be:aa:c2:b3:ef:
8f:12:9e:b2:02:00:2d:c0:55:ed:c1:c1:8b:3b:e4:
c5:a9:95:1a:9f:97:02:d5:db:d6:f1:27:25:e9:de:
57:03:7d:1f:88:f1:2e:86:2c:36:e6:1f:dd:67:5f:
88:6f:e3:0b:bb:58:8f:d2:3b:98:15:15:4b:bb:4c:
43:94:e6:95:d4:b6:81:2a:3f:5f:5b:5b:64:70:25:
35:c1:fa:d8:14:51:0c:81:bb:a6:3a:70:33:84:71:
16:71:7b:09:e1:45:01:ab:ac:af:4e:28:73:2a:0d:
42:0d:14:76:16:17:23:4a:a3:93:9e:45:c8:bb:cf:
07:c7:95:d2:dd:b2:d5:44:ce:39:c6:92:e7:e2:8b:
28:a3:45:62:f1:9f:8b:ff:6e:05:c3:10:c6:64:48:
72:4c:b5:e3:e8:1f:bd:d9:47:ea:1b:79:e5:fe:70:
87:37:ad:b4:77:36:05:d0:11:9c:c4:bf:1d:85:89:
15:8f:60:88:72:fe:dd:90:5f:06:37:47:61:14:b8:
79:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A9:60:38:61:53:7D:5F:93:AE:93:1E:F8:F7:F7:D0:7B:F7:47:AE
X509v3 Authority Key Identifier:
keyid:CF:70:F3:D1:11:83:61:B5:9F:33:15:F5:91:64:3E:1D:AB:BB:20:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z3Dz0RGDYbWfMxX1kWQ-Hau7IAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9260d5-f97d-4168-b22a-fbb9f91c8cce/1/D6lgOGFTfV-TrpMe-Pf30Hv3R64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9260d5-f97d-4168-b22a-fbb9f91c8cce/1/z3Dz0RGDYbWfMxX1kWQ-Hau7IAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.126.0/24
Signature Algorithm: sha256WithRSAEncryption
56:36:e5:0e:80:01:cc:e2:ba:96:aa:69:3f:7f:33:1a:2b:b9:
05:82:33:58:b3:18:0d:8d:57:b8:ae:f4:ef:cf:b1:3a:5e:b2:
ea:15:91:c9:78:d8:b4:50:dc:10:b5:cb:b5:89:38:48:d1:9f:
4e:3d:13:89:ab:5a:47:4a:c1:39:89:26:2c:fc:0d:90:0f:01:
a4:6e:90:d0:ab:8e:0b:0f:9b:d2:9e:a5:dd:04:ba:92:28:1d:
6e:7d:09:5c:1a:b9:1b:76:08:4b:c4:b6:81:bc:8f:cd:1f:42:
bd:7e:70:b4:65:33:c5:7f:8b:79:05:ea:f8:ea:3e:c7:41:d9:
a9:fa:1c:fc:0e:f6:07:fa:4f:78:7e:8d:1c:0c:fb:e3:34:a5:
6e:3a:d8:a7:3a:0c:53:d0:21:30:2a:54:fd:b7:af:ea:94:54:
04:4d:5f:70:c7:f3:94:64:94:71:d7:c3:75:73:75:f8:2a:56:
84:9f:57:59:1a:a8:53:e7:8d:c5:97:d3:1e:72:ff:1c:ea:36:
46:97:41:c8:c8:38:cd:63:43:f6:07:bb:1d:7f:37:59:31:8d:
33:18:79:e5:4d:ef:10:d2:73:25:a9:c3:01:eb:39:2b:53:fb:
ab:73:e3:a0:63:b9:0d:2c:53:80:cd:9c:87:a0:ac:e3:c6:8d:
43:b4:39:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:45 2024 by rpki-client on console-fra.rpki-client.org