Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/v-ovT5Qas-M7dRJRmm9A1gQq9qQ.roa
File: v-ovT5Qas-M7dRJRmm9A1gQq9qQ.roa (raw, json)
Hash identifier: UCf4WYcJ48+dOChQnaLg/JbvKqREYq06rxmS3UlFvd8=
Subject key identifier: BF:EA:2F:4F:94:1A:B3:E3:3B:75:12:51:9A:6F:40:D6:04:2A:F6:A4
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018CC56E003A24E9420C56FE271BB648EF64
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/v-ovT5Qas-M7dRJRmm9A1gQq9qQ.roa
Signing time: Mon 01 Jan 2024 14:29:29 +0000
ROA not before: Mon 01 Jan 2024 14:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50738
IP address blocks: 193.37.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 08:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:00:3a:24:e9:42:0c:56:fe:27:1b:b6:48:ef:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 14:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfea2f4f941ab3e33b7512519a6f40d6042af6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:26:8e:8b:0b:6a:94:13:73:f9:85:12:a9:9e:
65:1f:44:6c:80:f8:69:31:cb:db:4a:7d:47:da:47:
89:0c:89:77:86:12:12:f3:ed:90:e0:97:c4:8d:e7:
1b:9e:59:10:8a:33:6c:6e:72:b9:0a:b1:8a:8f:9f:
01:29:81:ea:49:2d:c3:4f:ed:f6:df:2c:22:0c:cc:
ba:7a:cb:9c:42:90:af:29:8c:ec:9a:99:24:26:4e:
12:87:cb:9f:c7:f1:6c:1c:57:ab:26:3d:0e:75:60:
7f:83:29:55:0c:01:12:7d:b1:80:69:82:18:e1:27:
95:e9:51:e8:62:86:2a:f7:7e:87:ed:49:12:7d:2c:
41:1a:1a:e3:5d:b1:a6:a5:e7:92:63:21:66:e7:11:
2a:af:3a:92:cf:3a:d6:2e:46:89:32:ad:5d:d8:92:
5c:5c:b1:92:65:bd:d2:52:78:9d:3e:ca:d8:ec:d8:
f3:28:82:93:9d:95:36:0f:fd:e1:a2:c7:c9:07:55:
dd:e3:97:17:ee:f8:81:8f:66:b8:d6:5a:ec:5b:85:
eb:16:d8:d6:01:44:7f:a0:2f:51:35:be:7f:fc:3a:
bc:12:10:20:7a:24:6c:f6:ca:cc:42:ee:b1:e6:6e:
66:53:d4:35:ac:f3:6e:99:04:db:a8:e6:cf:91:bb:
7a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:EA:2F:4F:94:1A:B3:E3:3B:75:12:51:9A:6F:40:D6:04:2A:F6:A4
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/v-ovT5Qas-M7dRJRmm9A1gQq9qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.197.0/24
Signature Algorithm: sha256WithRSAEncryption
89:18:34:7e:fe:17:15:0d:04:fa:0b:b5:47:b6:1b:74:6e:7c:
9f:93:2a:88:98:3b:ee:39:67:78:2f:98:20:33:8f:99:27:58:
16:98:e1:4f:44:a2:f4:77:14:8a:ad:96:13:cc:dd:4d:71:0b:
29:6b:b3:f4:04:50:ea:8a:58:f7:5c:b7:26:8a:54:74:b3:ea:
8a:eb:7e:5e:ca:48:8d:7f:e0:e1:b5:43:05:3d:68:72:15:48:
36:27:15:b8:05:17:c9:0f:cc:bd:96:cd:f0:4a:b6:bd:0e:9c:
05:7e:6a:56:d5:f3:56:d4:fc:c4:91:52:cc:3a:ce:eb:f0:d5:
1b:75:19:67:ef:a8:96:2c:ba:76:7c:7f:ae:1f:c7:20:d6:58:
fb:38:d4:7f:b5:f3:d2:99:ee:97:bf:b0:f2:65:d0:80:ad:bb:
c0:a9:2b:44:b3:bd:6a:57:ea:c5:0f:fc:5c:5a:3c:d6:5d:66:
c2:3c:f2:5a:02:f6:9c:ef:e2:94:a7:e7:bd:d8:07:2f:d9:62:
23:f2:65:9a:81:a7:d5:c1:d7:be:3a:18:0b:0e:42:60:45:b5:
a0:72:e1:b3:bc:fe:66:5a:da:6b:ae:86:0b:7e:dc:37:43:c7:
39:90:7e:0d:0e:21:a1:ab:db:a5:08:36:dd:e1:ba:e0:d4:3c:
ed:e9:70:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org