Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yZIbiV5EdzMcZz4UlhWM9cdvrx4.roa
File: yZIbiV5EdzMcZz4UlhWM9cdvrx4.roa (raw, json)
Hash identifier: WbO+Dg+TqRKIC8RnCbtx8SyNY3yZn9FIEI3TbKCh3MA=
Subject key identifier: C9:92:1B:89:5E:44:77:33:1C:67:3E:14:96:15:8C:F5:C7:6F:AF:1E
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018A21D9DD10DA787BE544454D82AF89C23D
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yZIbiV5EdzMcZz4UlhWM9cdvrx4.roa
Signing time: Wed 23 Aug 2023 10:04:00 +0000
ROA not before: Wed 23 Aug 2023 10:04:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216459
IP address blocks: 193.56.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Aug 2023 16:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:d9:dd:10:da:78:7b:e5:44:45:4d:82:af:89:c2:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 23 10:04:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9921b895e4477331c673e1496158cf5c76faf1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ba:12:a5:e3:1d:f0:c4:9d:60:b1:dd:90:c3:
b8:5b:c8:b2:ec:f4:90:dc:ad:5a:12:cd:45:dd:47:
85:20:73:2e:df:46:29:84:c0:e3:fc:61:e3:d2:f8:
59:9b:eb:57:41:86:27:32:de:6a:9d:be:c7:72:45:
14:15:c0:5d:b0:36:0e:f3:bb:9b:6a:d5:3d:11:82:
6b:9d:8e:08:b3:b4:bd:37:40:8a:42:a4:6b:58:e8:
28:fc:ae:8e:2b:1d:f7:c0:49:63:25:45:02:b1:81:
19:11:b5:22:0f:1b:c1:e9:62:90:6f:37:f7:02:48:
d4:83:15:74:71:da:9e:c5:49:c8:c2:9f:53:2a:fb:
a9:cb:a6:14:bc:95:b5:74:66:49:6c:fa:8c:44:74:
2f:22:24:60:74:6a:7b:5b:69:30:29:08:a5:3a:60:
2a:32:1c:e7:24:28:b5:34:c3:34:e8:f7:dd:41:8c:
94:12:72:67:1f:8d:e0:98:ad:e8:5e:6c:f9:3f:d7:
fb:f1:f6:51:4d:af:5f:b9:5c:6d:8c:57:b4:5c:ae:
83:4b:e9:42:87:11:04:94:44:b3:8f:7c:e2:76:b9:
f0:f7:71:ca:51:0e:9a:ae:6d:31:55:73:86:86:7e:
c8:79:6d:c3:1e:32:2f:22:7a:f3:26:c5:81:48:ed:
77:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:92:1B:89:5E:44:77:33:1C:67:3E:14:96:15:8C:F5:C7:6F:AF:1E
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/yZIbiV5EdzMcZz4UlhWM9cdvrx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.239.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:70:4a:b4:a8:54:fb:f6:8d:ff:86:44:96:7c:be:af:7f:04:
6b:30:88:33:de:34:af:c1:df:6d:43:4e:c4:a9:31:dc:fa:fb:
c2:c2:f2:07:ba:d1:c1:09:6d:bc:be:8f:a4:53:55:f4:4d:d4:
f5:62:1d:9e:be:ee:3d:40:09:97:c1:9f:34:00:ad:c6:f8:5f:
83:37:9e:24:7e:12:88:12:76:7d:88:a2:3d:1d:f9:3b:13:8d:
df:68:0e:71:08:f6:97:14:ce:6d:ce:f7:90:b3:8c:b3:be:24:
c7:9f:eb:32:e4:b0:21:9d:e8:7c:ae:bc:4a:92:fc:b7:89:67:
f6:13:b1:78:01:38:f3:81:26:dc:93:61:ca:46:3c:3c:d6:a9:
f2:5a:db:b3:36:13:db:a2:0a:f0:96:73:55:0f:42:5b:26:94:
f4:b1:c2:8d:ed:2c:54:c2:73:0c:85:f7:d6:84:39:82:7e:0e:
a5:43:07:4b:31:8d:60:15:c4:84:6c:24:e2:5a:58:a3:73:d6:
04:92:39:6f:b6:46:4b:43:75:03:b6:9e:7f:6f:e8:59:76:7c:
cc:3b:78:a3:c2:39:73:76:6e:8b:b3:42:9d:3b:3a:04:fd:ef:
76:a0:19:be:4b:f1:3e:a9:ac:4e:a7:90:80:f0:ed:4b:00:bb:
22:e1:59:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org