Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/dcddfa-a059-4ff0-a809-5eabfb1e5130/1/8fToigkbdmPxZOEtA46YgrHHjoQ.roa
File: 8fToigkbdmPxZOEtA46YgrHHjoQ.roa (raw, json)
Hash identifier: PnhuxWw2vytsujkjCn//lzM2YXHC/xuxSnEKz1w+2vI=
Subject key identifier: F1:F4:E8:8A:09:1B:76:63:F1:64:E1:2D:03:8E:98:82:B1:C7:8E:84
Certificate issuer: /CN=c9d11b707878bd77fbff15f27752c08a4aa556f4
Certificate serial: 0188E1F788CF3A3A602EA501FC04B126F15A
Authority key identifier: C9:D1:1B:70:78:78:BD:77:FB:FF:15:F2:77:52:C0:8A:4A:A5:56:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydEbcHh4vXf7_xXyd1LAikqlVvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/dcddfa-a059-4ff0-a809-5eabfb1e5130/1/8fToigkbdmPxZOEtA46YgrHHjoQ.roa
Signing time: Thu 22 Jun 2023 07:17:55 +0000
ROA not before: Thu 22 Jun 2023 07:17:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201228
IP address blocks: 193.247.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Oct 2023 13:18:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e1:f7:88:cf:3a:3a:60:2e:a5:01:fc:04:b1:26:f1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d11b707878bd77fbff15f27752c08a4aa556f4
Validity
Not Before: Jun 22 07:17:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1f4e88a091b7663f164e12d038e9882b1c78e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e0:06:d0:c5:1f:c1:94:ca:e3:26:14:78:05:
e9:dd:ef:d6:ca:59:f8:06:cd:f2:84:20:9e:e4:e2:
40:0c:29:ac:75:66:80:3e:f9:81:88:52:4f:bb:b5:
cb:eb:ef:8b:03:e3:55:d4:18:08:d4:3c:21:0f:5f:
40:95:13:63:ad:5e:12:a1:5f:9c:8a:dc:d6:00:9b:
8d:a4:03:cb:5a:d7:31:f0:5b:7b:b7:2f:98:07:55:
b0:6f:c9:ba:66:fb:5f:f4:0a:8a:b3:d6:3d:ce:49:
07:a3:1e:7e:60:a7:5a:df:cb:90:40:8b:d1:a8:72:
f2:24:90:d8:99:e4:6e:4e:a2:97:74:bb:1f:f4:30:
fb:ab:c0:f2:70:70:75:b2:47:f7:41:cb:f2:56:9a:
95:97:37:14:6c:95:37:9f:1f:7b:3f:1d:76:51:df:
97:2b:d1:a0:f4:fd:29:5b:4c:d0:e4:f1:1a:52:cc:
ff:6d:68:1a:99:af:0f:bd:cb:c5:98:b7:c7:6a:3f:
0f:c5:ec:3f:eb:d6:6c:ac:68:ed:0e:3f:88:6a:e7:
5a:87:58:2c:86:38:ea:bf:bb:85:95:b6:9a:58:42:
fd:74:c8:9e:e6:34:b6:53:b2:01:06:05:fd:39:d4:
2e:90:a0:70:71:ab:cc:e5:6e:4a:8e:a3:eb:3e:f5:
02:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F4:E8:8A:09:1B:76:63:F1:64:E1:2D:03:8E:98:82:B1:C7:8E:84
X509v3 Authority Key Identifier:
keyid:C9:D1:1B:70:78:78:BD:77:FB:FF:15:F2:77:52:C0:8A:4A:A5:56:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydEbcHh4vXf7_xXyd1LAikqlVvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/dcddfa-a059-4ff0-a809-5eabfb1e5130/1/8fToigkbdmPxZOEtA46YgrHHjoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/dcddfa-a059-4ff0-a809-5eabfb1e5130/1/ydEbcHh4vXf7_xXyd1LAikqlVvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.210.0/24
Signature Algorithm: sha256WithRSAEncryption
46:4f:9f:5d:88:a5:af:12:39:4a:b0:c5:2c:b6:dc:03:9c:ab:
6f:f0:a6:44:28:16:84:0b:19:02:14:50:8b:48:a0:07:15:6e:
de:9c:a1:d9:1a:62:25:e8:ba:79:92:70:43:b7:e0:19:f8:81:
5e:3b:b6:34:cc:57:cc:82:31:fe:eb:69:37:2d:9c:b5:5e:0b:
c0:10:7f:11:07:9a:8f:40:dd:ee:aa:7f:2c:80:b9:90:5d:eb:
ef:9a:ce:88:e9:9e:df:5a:b4:14:fd:ff:fe:6e:af:9a:6a:c4:
b5:0c:b4:0c:dc:9a:c4:a5:6d:70:ff:9c:df:d2:88:a9:08:1d:
73:e5:a1:12:52:ef:59:b0:75:dd:3c:47:8e:22:b2:17:e1:6c:
83:2e:d3:21:0d:0e:65:37:3d:67:0c:91:ec:d9:88:42:85:5b:
d5:28:13:42:7f:0f:e6:da:7d:d7:79:cd:11:31:0b:a6:39:e9:
d5:fa:1c:d2:86:bb:70:01:3d:ab:cc:c7:e0:29:ac:25:3f:fc:
9e:d5:ca:ca:c7:1d:05:84:bb:14:55:2c:89:2e:f4:ce:76:82:
f9:fb:b8:51:65:61:dc:15:c2:f5:9a:c9:8c:df:f9:c6:e4:94:
26:30:de:c2:f4:fe:f3:27:77:0d:57:31:91:3d:f8:af:76:8e:
33:e7:2e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:17 2024 by rpki-client on console-fra.rpki-client.org