Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/9JqK_KUxa4l0A0nmhOgytjA0Xzw.roa
File: 9JqK_KUxa4l0A0nmhOgytjA0Xzw.roa (raw, json)
Hash identifier: au7W+MjsyONDDgVfZHKO30tRe3aVsh2/IFg6jQibT9c=
Subject key identifier: F4:9A:8A:FC:A5:31:6B:89:74:03:49:E6:84:E8:32:B6:30:34:5F:3C
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018C9203E6879AD0C0131E8535AE64A490DD
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/9JqK_KUxa4l0A0nmhOgytjA0Xzw.roa
Signing time: Fri 22 Dec 2023 14:52:58 +0000
ROA not before: Fri 22 Dec 2023 14:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62163
IP address blocks: 193.56.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:92:03:e6:87:9a:d0:c0:13:1e:85:35:ae:64:a4:90:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 22 14:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f49a8afca5316b89740349e684e832b630345f3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:98:8d:ee:d8:2a:dd:45:66:6e:b6:c4:3b:34:
66:f8:3b:87:21:24:bb:f1:3d:70:9a:99:98:68:ee:
10:7c:ee:61:97:be:8d:5d:25:03:7c:ea:85:10:54:
0a:b9:bc:c9:67:1a:f2:5b:fd:ac:ee:f6:80:28:79:
c8:8a:b4:ff:41:dd:2c:5d:b6:b7:bb:da:69:e6:d7:
ee:cb:8f:f6:35:a4:9a:1c:bb:d8:6a:54:86:36:b1:
81:83:1e:c1:b3:75:ad:b0:a7:26:a3:30:76:0a:43:
76:5d:d9:19:85:29:30:e5:41:7f:3e:f2:09:d2:03:
cd:76:b9:95:84:82:6a:08:a5:13:56:83:fd:26:65:
49:67:2a:59:af:92:fd:7f:eb:65:53:5a:f7:83:35:
30:69:48:a5:20:37:77:3f:cf:c0:30:c7:ae:ad:de:
c0:af:68:a7:80:17:d1:cd:e4:17:48:99:35:ee:68:
af:04:ff:dc:5a:4f:bc:8c:25:8f:f3:65:e6:43:c3:
39:7e:7c:5f:84:46:a8:fe:10:7d:e8:a0:e0:d2:1a:
77:3a:5a:52:f1:92:34:e2:2d:1b:8e:0e:ef:bf:59:
c7:ee:f5:9f:4a:be:7f:f0:28:a4:70:02:4e:f2:47:
48:6b:44:3f:a8:18:a9:dd:94:5d:a0:dc:db:f6:4a:
c4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9A:8A:FC:A5:31:6B:89:74:03:49:E6:84:E8:32:B6:30:34:5F:3C
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/9JqK_KUxa4l0A0nmhOgytjA0Xzw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.239.0/24
Signature Algorithm: sha256WithRSAEncryption
80:37:e9:ce:4e:cc:a5:ef:54:8c:4f:c6:51:5c:36:08:13:e9:
82:86:d6:87:d1:66:b1:12:99:e6:6d:ae:14:7c:ea:95:73:36:
7b:e4:e3:8f:e1:15:2a:b1:ca:db:22:b1:f1:f0:a2:15:14:4b:
84:2c:6e:08:bf:0d:f6:a2:e8:07:16:b2:1c:07:86:e4:d0:94:
7c:a4:19:4d:26:80:84:ac:a0:a3:d4:79:30:cd:af:91:0a:07:
3f:d1:96:ac:c5:81:ee:2a:b7:07:c9:b3:e6:48:6c:69:fd:c8:
7f:32:e2:7e:9e:63:1f:8a:48:f8:20:eb:f6:11:60:21:81:a0:
15:e3:29:c7:f6:78:47:b0:fa:d2:a6:e6:d7:2e:f4:50:81:b8:
64:4a:99:97:ac:41:f0:4b:be:5b:a3:c6:29:46:a5:89:cb:f7:
a5:c3:c2:4b:36:45:5d:c2:81:fa:6d:67:8f:64:58:97:b0:7c:
c1:d2:d6:93:44:aa:54:98:42:ce:c9:c5:ae:2b:5e:7e:d2:e8:
e4:75:7a:f5:43:65:f2:b2:50:f6:9a:ca:4d:87:81:07:ca:a0:
51:75:6b:cf:45:08:45:3b:4a:a3:a7:8f:81:38:2f:bf:67:58:
bd:26:e2:84:27:99:0c:4d:5e:e5:54:b6:9d:e4:11:5e:92:66:
f4:c6:46:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org