Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/eUhwvkn4OMAhBOKGPr4BfCfBOTE.roa
File: eUhwvkn4OMAhBOKGPr4BfCfBOTE.roa (raw, json)
Hash identifier: Xc5pvvcHDKXEHF/k8YhElub3gOEXmanbGXE+tPzLv88=
Subject key identifier: 79:48:70:BE:49:F8:38:C0:21:04:E2:86:3E:BE:01:7C:27:C1:39:31
Certificate issuer: /CN=f02e3224e3e32928192628d26487d500f2707765
Certificate serial: 01856DA642F561D6E938453D965628A9FC0E
Authority key identifier: F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/eUhwvkn4OMAhBOKGPr4BfCfBOTE.roa
Signing time: Sun 01 Jan 2023 14:04:50 +0000
ROA not before: Sun 01 Jan 2023 14:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204642
IP address blocks: 193.203.96.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:42:f5:61:d6:e9:38:45:3d:96:56:28:a9:fc:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02e3224e3e32928192628d26487d500f2707765
Validity
Not Before: Jan 1 14:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=794870be49f838c02104e2863ebe017c27c13931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a1:26:11:00:70:6c:80:d3:d4:11:b5:03:60:
43:8f:6b:eb:3b:0d:19:27:77:da:c7:f3:93:0e:7d:
3b:af:5f:8c:3c:fd:c3:54:b1:53:82:91:63:03:89:
0c:1f:8c:f9:8c:40:b9:72:93:11:8b:23:1e:eb:67:
ad:db:f2:ad:26:92:b6:3d:71:ba:63:6d:fd:77:2d:
da:ff:65:06:47:8d:f0:0c:71:a7:19:12:c9:0a:4e:
eb:32:fb:f0:1f:4c:29:eb:22:e4:6a:b9:be:e5:b5:
d1:5a:e5:85:dc:91:6c:19:1f:4c:d6:c2:e6:e8:aa:
8e:26:a4:fe:c0:14:83:f0:a1:65:f1:7a:2a:47:b9:
66:ab:d0:4e:36:c6:2e:fe:ce:a5:d5:88:d0:0f:16:
6c:f4:34:c6:c4:01:33:4c:bf:dd:a1:0a:ea:72:35:
86:b7:32:1b:b0:5e:6e:97:cf:02:d0:a8:c2:4d:68:
4a:2b:73:40:00:ff:b4:72:6a:56:e0:6b:09:c3:3f:
59:53:ac:92:8a:73:a3:6c:a2:76:80:50:3b:53:a7:
e1:65:bf:9c:c6:da:da:42:db:f3:4a:c0:e2:c3:45:
32:a8:43:f9:e9:d5:4e:f8:83:53:17:f9:17:b6:39:
fe:5d:c3:4f:ea:73:e4:b9:57:b2:bb:29:1a:9d:e7:
0a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:48:70:BE:49:F8:38:C0:21:04:E2:86:3E:BE:01:7C:27:C1:39:31
X509v3 Authority Key Identifier:
keyid:F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/eUhwvkn4OMAhBOKGPr4BfCfBOTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/8C4yJOPjKSgZJijSZIfVAPJwd2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.96.0/23
Signature Algorithm: sha256WithRSAEncryption
81:5b:23:03:91:96:f0:e3:bb:50:24:2a:4f:81:1d:db:0d:21:
c0:76:63:14:b7:87:18:ad:2b:fa:a1:ba:63:3c:92:38:f6:2d:
13:36:ff:74:82:19:89:01:b7:2e:ac:b8:e5:d8:06:85:52:f8:
ad:93:fb:69:3f:ca:89:10:e4:6b:e5:c9:49:82:84:5e:4c:f0:
9b:e8:a4:60:69:59:7f:a7:04:ef:9f:72:87:24:42:d9:64:91:
dc:3c:07:27:0b:f4:27:44:ea:fe:e1:8f:67:04:91:b9:a8:dc:
78:62:76:95:52:6e:38:48:55:cb:39:7c:52:72:1d:cd:2f:79:
59:c7:cf:a4:c0:7a:4c:c7:3f:cf:4c:31:79:86:8c:a0:45:b2:
49:f6:4f:e7:fe:95:78:94:3a:ca:fb:9f:3c:f7:3c:90:8d:13:
e6:a4:68:cb:d8:7f:02:8c:f6:f5:e8:8c:8b:fe:b6:48:00:5f:
4a:93:61:62:37:da:0b:6b:d9:28:7d:a0:02:5c:bd:3f:ce:d0:
c9:f5:d8:7a:d3:9b:95:1a:cd:a8:1a:32:ee:c8:70:97:71:87:
fc:5e:f4:06:09:b1:75:97:50:02:5a:fb:e8:b4:11:3e:72:9b:
65:fb:38:f1:43:23:0b:8a:76:6f:0a:ef:ae:6b:eb:b1:48:c5:
14:87:3f:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:32 2024 by rpki-client on console-ams.rpki-client.org