Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/ny5bA5GWQSMLiuCg7K4Tys364cU.roa
File: ny5bA5GWQSMLiuCg7K4Tys364cU.roa (raw, json)
Hash identifier: C2DLDQjZTbAcGk5GPPPIJjNhuy9Wc+hgTI+yTxAwB9E=
Subject key identifier: 9F:2E:5B:03:91:96:41:23:0B:8A:E0:A0:EC:AE:13:CA:CD:FA:E1:C5
Certificate issuer: /CN=113f03bf1451eee62ea72405fa8b64abfae3c4e9
Certificate serial: 01856F796412FA0C96E4DB6C36F6DF0A0199
Authority key identifier: 11:3F:03:BF:14:51:EE:E6:2E:A7:24:05:FA:8B:64:AB:FA:E3:C4:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ET8DvxRR7uYupyQF-otkq_rjxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/ny5bA5GWQSMLiuCg7K4Tys364cU.roa
Signing time: Sun 01 Jan 2023 22:35:04 +0000
ROA not before: Sun 01 Jan 2023 22:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60627
IP address blocks: 193.228.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:64:12:fa:0c:96:e4:db:6c:36:f6:df:0a:01:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=113f03bf1451eee62ea72405fa8b64abfae3c4e9
Validity
Not Before: Jan 1 22:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f2e5b03919641230b8ae0a0ecae13cacdfae1c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4d:4a:fa:67:c9:45:d6:35:57:4b:8a:b3:f7:
0d:f6:ba:e4:60:d7:72:b3:6f:fd:c1:4c:cb:14:b4:
1a:5a:ae:e9:1f:3b:10:03:59:77:d0:78:70:5e:ff:
5b:ea:ba:c0:fc:48:d4:c7:4f:04:9d:ce:15:13:62:
8b:7c:5c:4f:1f:78:bb:a1:b8:34:8b:62:4f:41:1f:
09:8b:3f:16:ee:5a:5c:66:e4:82:69:3a:ad:fd:2f:
04:8c:01:05:2a:43:b4:cd:e5:a5:8e:c1:dc:75:62:
aa:50:16:00:48:e1:4e:36:b9:04:f1:8c:65:20:f2:
5e:4d:c4:7b:99:c8:90:e8:f4:0c:98:04:59:ec:53:
9a:30:5a:f8:68:4b:29:70:6e:d3:87:5a:3e:51:ef:
bc:73:1a:6b:75:3e:9a:00:2e:f1:83:e9:5f:b2:42:
28:e7:fe:8b:bd:ef:3e:24:66:7d:6a:8c:c2:6c:de:
d1:64:f0:8a:b1:2b:a0:4a:61:60:2b:bd:61:6c:9f:
7d:42:8a:89:53:e0:e7:68:94:1a:b3:a3:94:2f:97:
40:74:20:2a:35:37:2b:78:b7:85:79:78:00:d0:98:
d1:04:21:16:c5:70:71:24:00:b9:9f:f4:7e:d1:a2:
c6:46:09:75:d1:09:ac:10:bf:20:ec:9d:21:a5:d5:
b0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:2E:5B:03:91:96:41:23:0B:8A:E0:A0:EC:AE:13:CA:CD:FA:E1:C5
X509v3 Authority Key Identifier:
keyid:11:3F:03:BF:14:51:EE:E6:2E:A7:24:05:FA:8B:64:AB:FA:E3:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ET8DvxRR7uYupyQF-otkq_rjxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/ny5bA5GWQSMLiuCg7K4Tys364cU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a2be14-aec9-4ada-8784-debe5747b293/1/ET8DvxRR7uYupyQF-otkq_rjxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.136.0/24
Signature Algorithm: sha256WithRSAEncryption
39:cc:8f:7d:b6:1f:7a:6f:09:43:b2:7a:eb:41:94:f8:9f:9c:
c5:7c:4c:e8:d4:5f:bc:7e:a5:61:5a:b4:8a:d8:f8:54:5a:21:
03:de:f0:4c:52:83:bd:18:f0:b9:1e:d7:30:19:ee:5e:d0:74:
2d:16:62:e7:01:ea:ae:24:f2:b0:c6:03:34:a0:04:05:75:0e:
bc:be:ec:f8:8d:76:54:fa:a3:50:25:71:16:27:1c:cc:7c:48:
c0:9f:dc:5c:ed:32:43:33:90:f7:e5:4c:59:d7:36:17:42:d9:
d0:87:be:7f:42:18:15:36:73:a9:4a:01:1d:65:e1:cc:d5:d0:
31:69:42:e5:da:f4:85:e9:cc:8b:e9:09:0a:fa:66:bd:c1:c9:
f7:2d:b5:e6:54:06:40:79:f0:4f:c9:fc:57:c2:c8:e1:d9:89:
57:b7:13:6c:c3:6c:78:63:a3:2d:34:ad:98:45:9f:99:ba:e0:
61:a4:e3:fe:90:23:cc:48:c4:68:e6:b5:de:be:9f:7a:47:df:
aa:cf:b4:88:a9:d5:6a:65:82:18:8c:95:12:4b:15:a1:49:e6:
39:42:bb:a3:4e:b8:82:ed:0a:42:e7:8c:0d:7b:72:f7:9b:87:
2a:6f:e5:4e:72:75:b7:ac:fa:51:98:75:3f:51:97:91:e5:4b:
04:0d:b2:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:20 2024 by rpki-client on console-ams.rpki-client.org