Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/8edca0-2706-4ec7-94eb-2b20894adec0/1/D1K06qN-0MY5YPjEk5r_kh3SLO4.roa
File: D1K06qN-0MY5YPjEk5r_kh3SLO4.roa (raw, json)
Hash identifier: WAXb47bcUAjcNMnhZFQdY7PKtUhS1uhasBO96sqnRwo=
Subject key identifier: 0F:52:B4:EA:A3:7E:D0:C6:39:60:F8:C4:93:9A:FF:92:1D:D2:2C:EE
Certificate issuer: /CN=855dd93f2c7e6f522f2b2894b0359f6679bc8dfb
Certificate serial: 018BF1C28FCE3C7EC71909398CD378613427
Authority key identifier: 85:5D:D9:3F:2C:7E:6F:52:2F:2B:28:94:B0:35:9F:66:79:BC:8D:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hV3ZPyx-b1IvKyiUsDWfZnm8jfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/8edca0-2706-4ec7-94eb-2b20894adec0/1/D1K06qN-0MY5YPjEk5r_kh3SLO4.roa
Signing time: Tue 21 Nov 2023 12:02:21 +0000
ROA not before: Tue 21 Nov 2023 12:02:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216453
IP address blocks: 193.7.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:c2:8f:ce:3c:7e:c7:19:09:39:8c:d3:78:61:34:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=855dd93f2c7e6f522f2b2894b0359f6679bc8dfb
Validity
Not Before: Nov 21 12:02:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f52b4eaa37ed0c63960f8c4939aff921dd22cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:66:7b:38:cf:4a:87:cb:a2:55:c9:c0:32:d1:
5a:84:fb:5d:ca:08:ec:91:87:c4:ab:22:d9:52:ab:
3b:e4:27:89:22:93:e1:4c:37:d7:36:11:70:56:0d:
46:80:75:f0:b3:a0:c5:d0:d9:65:9a:b8:5f:43:45:
d1:b4:30:92:b7:2a:76:4f:44:8c:cc:8c:e7:d8:76:
96:86:26:ba:ed:16:24:00:0b:1b:70:47:ce:d0:81:
3a:24:51:92:f4:d2:99:c5:28:cf:e3:83:7d:f4:34:
4d:0d:cd:f4:96:5a:67:ed:10:02:36:77:9b:ae:f8:
59:ac:c0:05:2e:7a:59:cf:bf:b3:de:05:5b:cc:64:
9f:a5:e9:a0:6b:9d:3f:c1:5b:2e:78:64:4d:05:d3:
1a:ea:bb:d9:c9:04:14:98:32:01:ad:b6:37:b6:ad:
36:1d:55:d0:31:28:f3:1d:8e:42:f9:0d:4d:2a:fb:
16:72:28:ea:80:d3:ed:08:5b:fc:92:c4:aa:ad:41:
4b:77:3e:fb:a9:4f:d5:c5:34:27:e2:c3:0a:e3:cc:
43:14:0d:03:db:2b:9e:82:a0:18:0d:e1:32:46:c4:
ef:50:c0:82:9a:9f:ec:49:5c:f2:19:cf:07:05:b3:
80:4c:0b:40:be:d4:d5:3f:26:60:a1:e5:ab:23:ca:
49:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:52:B4:EA:A3:7E:D0:C6:39:60:F8:C4:93:9A:FF:92:1D:D2:2C:EE
X509v3 Authority Key Identifier:
keyid:85:5D:D9:3F:2C:7E:6F:52:2F:2B:28:94:B0:35:9F:66:79:BC:8D:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hV3ZPyx-b1IvKyiUsDWfZnm8jfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/8edca0-2706-4ec7-94eb-2b20894adec0/1/D1K06qN-0MY5YPjEk5r_kh3SLO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/8edca0-2706-4ec7-94eb-2b20894adec0/1/hV3ZPyx-b1IvKyiUsDWfZnm8jfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.7.209.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:61:73:8c:1a:fc:c6:9d:61:22:4c:ff:87:9e:0c:5d:a4:ba:
a7:48:4b:b0:dc:28:e8:f7:f1:19:91:e2:23:3e:b9:13:e2:05:
63:8c:fe:29:7b:01:fe:56:4d:9a:e0:c7:7a:1b:f7:d5:f8:ae:
59:8e:69:b1:f0:9f:07:c8:57:60:69:df:ab:4b:77:b5:52:fe:
2a:65:29:db:4e:3d:45:e0:93:0d:18:60:26:57:9f:2c:71:3d:
8b:44:27:dc:49:8c:67:e1:bf:2a:74:30:96:13:c6:ec:b9:d7:
46:59:94:71:08:3a:87:6d:f8:7b:08:d5:85:a0:9d:86:03:3c:
c4:20:23:6f:8a:f3:26:41:a9:9f:90:79:13:37:c8:89:af:d6:
dc:e4:06:5d:da:3b:a5:9b:ec:ad:0e:7b:12:ad:d8:e1:b6:58:
24:ac:92:36:0e:a2:15:f1:d4:7d:25:f6:a0:57:1f:79:c4:bc:
e2:de:be:c0:4e:ef:ba:58:49:1c:9e:12:51:25:25:f9:f5:ea:
93:cd:f1:01:f3:f4:9e:a8:46:08:30:37:78:12:e5:57:37:55:
24:21:de:2d:bf:ba:34:64:1b:0e:58:7b:4f:84:e8:24:c6:f1:
84:dc:5c:20:c3:9b:79:37:61:b7:e5:bf:3f:7e:d7:03:3c:10:
92:07:61:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:36 2024 by rpki-client on console-fra.rpki-client.org