Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/oSs7SZmSBrk2wvxmlnwCzil4pWY.roa
File: oSs7SZmSBrk2wvxmlnwCzil4pWY.roa (raw, json)
Hash identifier: T7U7k1Ft7mAboSBr+DAUj0a9NHR/BHPKU3t0FyqvVZg=
Subject key identifier: A1:2B:3B:49:99:92:06:B9:36:C2:FC:66:96:7C:02:CE:29:78:A5:66
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E7DBF2008A1F2CEEA10AA96F60550
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/oSs7SZmSBrk2wvxmlnwCzil4pWY.roa
Signing time: Mon 02 Jan 2023 08:34:50 +0000
ROA not before: Mon 02 Jan 2023 08:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43832
IP address blocks: 193.232.160.0/24 maxlen: 24
193.232.177.0/24 maxlen: 24
2a0c:a9c7:160::/48 maxlen: 48
2a0c:a9c7:177::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:7d:bf:20:08:a1:f2:ce:ea:10:aa:96:f6:05:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a12b3b49999206b936c2fc66967c02ce2978a566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fa:29:76:91:90:9b:46:9a:bd:42:85:e5:5f:
10:be:a4:6c:00:b5:d9:e0:a9:f9:23:a1:4d:ee:e8:
39:51:fb:bc:4d:28:a1:f7:7f:9a:c5:37:52:9f:fa:
e0:a7:54:68:36:a6:f6:fd:2a:9b:4b:e7:a0:c4:54:
a2:64:97:f0:c5:0a:f6:44:9a:bd:d4:de:a8:09:07:
dc:ba:ac:68:a9:6d:e1:3e:21:37:41:ea:74:d7:f3:
2e:45:ee:59:04:d8:a3:f2:1c:2b:9a:96:fe:d0:1c:
6b:0a:2e:db:fe:af:09:57:d8:9b:ff:cd:1a:fd:07:
99:1e:d0:ed:32:69:f3:c4:c1:0d:53:d1:c1:e6:c6:
4f:fa:da:22:fc:98:83:18:3d:14:26:dd:07:91:71:
76:c4:89:06:75:21:e0:68:09:7a:61:47:81:4f:80:
79:ac:35:80:9d:2a:6b:0f:a8:71:e4:f7:b1:f8:bd:
4f:44:cc:3b:51:db:b6:db:98:54:38:64:e9:c6:a1:
c2:7c:3d:53:d7:54:51:4a:82:ca:80:67:14:bd:0f:
24:3a:9c:00:fb:c5:b5:f4:58:a9:8b:2d:0d:85:07:
f7:c2:9a:cc:60:ce:b0:19:74:61:d3:c2:ce:85:9b:
dd:31:52:87:5e:51:1d:ba:78:3a:45:d6:be:44:51:
cf:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:2B:3B:49:99:92:06:B9:36:C2:FC:66:96:7C:02:CE:29:78:A5:66
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/oSs7SZmSBrk2wvxmlnwCzil4pWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.160.0/24
193.232.177.0/24
IPv6:
2a0c:a9c7:160::/48
2a0c:a9c7:177::/48
Signature Algorithm: sha256WithRSAEncryption
39:63:bb:99:01:20:e6:43:9b:a2:7c:bd:9d:56:7d:c0:69:f8:
31:4c:3c:2b:2c:81:bf:5b:a1:27:68:6b:d4:17:d4:e0:c7:a2:
c5:05:64:53:13:11:8f:bd:a0:cf:08:1f:96:ae:91:11:52:bc:
99:e8:b4:15:bb:ed:40:04:00:be:07:05:84:e7:3d:1e:c8:f3:
6d:c8:fd:de:d1:af:09:ab:38:2d:ff:dd:61:e3:7d:25:30:9d:
4f:f7:80:a6:62:68:55:85:3c:44:93:4d:9c:44:e6:02:66:2e:
b9:d9:e1:9a:35:30:0d:0e:bc:ba:4a:31:c3:81:ab:88:bb:07:
38:79:af:30:60:22:70:2f:b2:50:92:b3:72:6a:0e:0c:1c:46:
27:7f:d6:4d:57:24:32:27:a5:fa:ca:2b:d2:db:7d:6a:a1:6b:
02:d1:eb:e1:b4:2a:0e:7f:52:dc:66:18:99:aa:0d:5d:50:6c:
2e:97:44:4d:94:eb:e5:59:07:8e:25:89:e4:58:d9:83:5b:25:
6a:56:50:96:16:8e:ca:bd:27:c9:a0:2a:05:cb:b1:10:95:8e:
a6:de:6f:fa:b7:ad:17:a6:c3:f2:ff:46:1c:5b:10:db:a5:30:
8b:3d:27:48:4d:fd:99:d0:d0:ea:b3:bb:05:98:c4:bd:d0:67:
22:71:f1:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org