Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/sL1lcV63z3k5JbF0m-7-u3nzPMM.roa
File: sL1lcV63z3k5JbF0m-7-u3nzPMM.roa (raw, json)
Hash identifier: 8fjWQXmGq1Xa0uZ1yDERN7NYsrkmB1KU0sXTU8iUq8M=
Subject key identifier: B0:BD:65:71:5E:B7:CF:79:39:25:B1:74:9B:EE:FE:BB:79:F3:3C:C3
Certificate issuer: /CN=7ef532ebb07ea8506b653430c046ec8d402f968b
Certificate serial: 018AD6E9960100292A7EE43748785506D0C4
Authority key identifier: 7E:F5:32:EB:B0:7E:A8:50:6B:65:34:30:C0:46:EC:8D:40:2F:96:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fvUy67B-qFBrZTQwwEbsjUAvlos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/sL1lcV63z3k5JbF0m-7-u3nzPMM.roa
Signing time: Wed 27 Sep 2023 13:52:27 +0000
ROA not before: Wed 27 Sep 2023 13:52:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202050
IP address blocks: 193.108.215.0/24 maxlen: 24
193.108.219.0/24 maxlen: 24
193.109.94.0/24 maxlen: 24
193.109.92.0/24 maxlen: 24
2a0f:f840::/48 maxlen: 64
Validation: Failed, certificate revoked on Wed 27 Sep 2023 16:51:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:e9:96:01:00:29:2a:7e:e4:37:48:78:55:06:d0:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ef532ebb07ea8506b653430c046ec8d402f968b
Validity
Not Before: Sep 27 13:52:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0bd65715eb7cf793925b1749beefebb79f33cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:41:9d:2f:a4:ac:09:86:c7:ab:2c:81:4e:9d:
75:35:9b:65:ca:96:11:0b:ac:f5:e2:58:05:1b:b3:
5c:0e:b5:93:c8:40:10:f2:b2:4f:25:1a:16:55:74:
fb:7b:55:ed:86:c4:39:63:5c:8a:00:eb:f2:f1:59:
12:1b:29:8d:fa:68:62:1d:e7:8c:1c:46:97:32:3d:
cb:39:fd:72:99:ac:04:bf:ad:04:50:8c:fc:d2:4a:
2b:b4:ed:bb:4f:ac:b8:59:46:21:4d:3e:36:b0:40:
d1:32:12:00:77:74:68:4e:77:d4:2a:84:85:bb:f5:
e9:ce:ff:10:84:d2:43:93:2e:38:d6:07:1a:58:f8:
08:4b:3f:dd:ee:63:d9:81:7a:79:d9:40:45:e2:9c:
2c:04:8e:15:7d:ac:78:7f:c4:b8:24:13:90:59:0d:
1e:c1:f3:91:aa:b7:83:f8:b0:d1:42:cf:2e:09:8c:
62:2e:2a:bc:86:b6:c1:67:de:2b:48:ac:9b:11:02:
fa:b5:30:a5:2a:1c:9c:30:06:54:76:d1:45:ef:61:
7e:fe:7b:d0:c7:57:40:b7:8e:bd:12:bd:d0:eb:03:
a9:b9:a1:0c:4b:0f:ef:08:39:c8:c6:b1:c6:ab:bc:
98:a9:d0:e9:a5:90:bf:d8:1f:ac:76:e6:ba:dc:60:
1e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BD:65:71:5E:B7:CF:79:39:25:B1:74:9B:EE:FE:BB:79:F3:3C:C3
X509v3 Authority Key Identifier:
keyid:7E:F5:32:EB:B0:7E:A8:50:6B:65:34:30:C0:46:EC:8D:40:2F:96:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fvUy67B-qFBrZTQwwEbsjUAvlos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/sL1lcV63z3k5JbF0m-7-u3nzPMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/9275ff-ba9e-48e0-90a1-477270661163/1/fvUy67B-qFBrZTQwwEbsjUAvlos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.215.0/24
193.108.219.0/24
193.109.92.0/24
193.109.94.0/24
IPv6:
2a0f:f840::/48
Signature Algorithm: sha256WithRSAEncryption
49:1d:4b:a4:51:14:20:c3:91:8c:1f:1d:b4:9e:0c:ee:83:9b:
c1:3f:e8:41:ea:22:10:66:14:ed:ac:00:4d:49:d7:c2:b0:98:
dd:2d:71:5b:96:a1:3b:b2:f2:83:d1:02:d3:e5:30:65:b0:c7:
65:20:b0:33:47:3c:c0:63:d7:3b:2c:a5:25:aa:35:25:7c:fa:
1c:65:7c:76:d0:db:26:90:b4:16:a5:86:33:40:6d:9b:9d:95:
99:33:58:ed:e2:0f:32:03:ad:ae:40:75:5f:75:69:4e:cf:78:
cc:4a:58:27:02:84:7d:3f:04:2a:4f:53:be:36:84:fb:82:b9:
18:e3:a3:95:e1:55:04:1c:21:8f:57:6b:4f:a0:d7:7f:25:30:
8a:2c:b5:d6:ed:34:10:17:02:2f:c7:85:dd:00:d0:b2:ff:74:
ff:aa:a4:6a:ee:4c:69:20:da:f9:21:67:84:d1:24:fa:7b:05:
71:f1:ca:5c:cb:bf:18:d8:2e:d4:b1:4a:a6:9c:48:b0:86:66:
85:5d:d6:d3:87:43:54:0d:69:8e:a1:e0:f9:8d:a3:99:ff:e9:
54:5d:75:8a:9d:b3:4e:cc:39:e0:f3:40:bf:b6:42:e8:50:e5:
8f:51:81:fa:e4:1a:17:11:bc:bf:a7:ca:1a:30:13:cc:79:3f:
df:1e:40:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org