Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TRCjBvZy9EfgvvwkJjWtZZtVxwU.roa
File: TRCjBvZy9EfgvvwkJjWtZZtVxwU.roa (raw, json)
Hash identifier: pSXBYydXu+xRsbwurdlAL8+m5We8IKh7rBNeqNbh16U=
Subject key identifier: 4D:10:A3:06:F6:72:F4:47:E0:BE:FC:24:26:35:AD:65:9B:55:C7:05
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0192997543E698235436F5E400F7FBBA0E97
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TRCjBvZy9EfgvvwkJjWtZZtVxwU.roa
Signing time: Thu 17 Oct 2024 07:50:51 +0000
ROA not before: Thu 17 Oct 2024 07:50:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41798
IP address blocks: 193.124.93.0/24 maxlen: 24
194.58.42.0/24 maxlen: 24
195.133.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 18 Oct 2024 10:13:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:99:75:43:e6:98:23:54:36:f5:e4:00:f7:fb:ba:0e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 17 07:50:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d10a306f672f447e0befc242635ad659b55c705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3a:05:1d:1b:04:3a:46:fe:78:d8:e1:19:63:
a7:7b:aa:6b:fc:31:28:cb:85:ac:b9:9d:2b:1d:23:
91:0e:2e:50:9e:2a:89:d5:35:2a:93:5f:02:8a:f4:
de:fd:20:ad:73:7c:f0:28:ab:25:80:c5:ee:9b:91:
fd:ba:30:34:fa:e4:71:dd:06:81:a8:e3:cb:77:44:
f4:37:e8:69:2b:fb:de:93:ae:34:6a:1a:22:4a:43:
cd:95:ac:6f:a1:31:e6:14:7c:80:c7:a4:22:1e:8b:
e0:47:c9:a9:99:8b:38:26:85:bf:2e:90:37:b4:78:
6b:e1:e0:ca:52:85:80:ba:f1:c8:fe:16:00:35:0a:
42:4f:ed:f7:65:4c:e1:2b:1d:1a:1e:01:b6:85:05:
fd:72:54:63:c3:81:79:73:a1:bf:01:19:04:14:61:
c6:61:46:91:62:34:93:ab:73:b5:e5:d5:41:d5:7c:
51:28:36:15:56:e2:5e:c6:6a:e7:d1:a1:53:41:ba:
c2:1a:69:37:df:f7:d8:60:e9:75:b2:21:93:d4:73:
ea:67:87:1d:fa:da:cc:ad:21:4b:cb:90:af:7e:d8:
ee:7a:3b:4e:b6:ff:32:b9:c3:d8:2c:d0:0b:0b:66:
f2:b6:8d:83:c8:82:b1:49:fe:a0:52:cd:60:37:c8:
a5:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:10:A3:06:F6:72:F4:47:E0:BE:FC:24:26:35:AD:65:9B:55:C7:05
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/TRCjBvZy9EfgvvwkJjWtZZtVxwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.93.0/24
194.58.42.0/24
195.133.62.0/24
Signature Algorithm: sha256WithRSAEncryption
04:27:87:6b:6c:53:d0:a8:25:b2:58:d4:e6:fa:eb:e9:c1:4a:
f0:47:8c:5b:28:b8:eb:6b:ee:24:b0:fb:d0:da:81:0e:2b:13:
39:4b:ca:cc:d1:47:28:77:b0:8b:91:f4:43:49:f2:e4:a3:11:
e7:f2:ce:02:1d:77:6d:6e:6a:1d:ad:6a:e9:8d:56:72:1c:dd:
3a:f9:47:79:61:50:98:e9:70:b6:ad:f2:2a:22:bc:bc:c4:a5:
97:1c:c3:fd:7b:a7:cb:eb:ae:43:f6:b7:e8:43:26:ad:4b:1e:
f6:ab:c7:e1:76:1c:7f:25:2c:01:bc:c7:44:7e:35:d2:9e:88:
5f:26:8f:c9:43:89:4b:e6:e9:e4:5c:c7:73:57:79:13:d5:c6:
19:b1:d1:0f:8a:42:18:bf:44:d8:d1:03:87:4d:d5:3e:51:64:
b9:01:1d:96:a2:be:00:f3:62:ee:a7:13:08:6c:46:f8:55:c1:
9d:e9:63:fd:14:59:a6:5a:9f:90:66:f4:94:0d:4b:c8:79:8a:
72:38:33:c4:56:68:39:03:09:dd:7a:ee:89:13:18:14:96:92:
81:82:bb:e8:be:69:d1:7e:d9:6a:89:bb:ef:b6:47:40:73:78:
c0:ba:ff:c9:cc:6c:a9:f2:ff:3d:46:91:b5:7e:f0:dc:d5:bd:
9f:a8:9b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 12:04:42 2024 by rpki-client on console-fra.rpki-client.org