Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/aFojZ4OQ2ueh-K-AEY5Fm5DJUeE.roa
File: aFojZ4OQ2ueh-K-AEY5Fm5DJUeE.roa (raw, json)
Hash identifier: 4xwg0Qo5qGqw6YJNlkDV8kbiTeRzmMBk4jl0XCTQJ/U=
Subject key identifier: 68:5A:23:67:83:90:DA:E7:A1:F8:AF:80:11:8E:45:9B:90:C9:51:E1
Certificate issuer: /CN=703c48ed46cb79490e1662db01c31d02d02effe2
Certificate serial: 018CC4252589A18A50E1CA80BD86DD3B46A3
Authority key identifier: 70:3C:48:ED:46:CB:79:49:0E:16:62:DB:01:C3:1D:02:D0:2E:FF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDxI7UbLeUkOFmLbAcMdAtAu_-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/aFojZ4OQ2ueh-K-AEY5Fm5DJUeE.roa
Signing time: Mon 01 Jan 2024 08:30:17 +0000
ROA not before: Mon 01 Jan 2024 08:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13030
IP address blocks: 193.110.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 19:39:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:25:89:a1:8a:50:e1:ca:80:bd:86:dd:3b:46:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=703c48ed46cb79490e1662db01c31d02d02effe2
Validity
Not Before: Jan 1 08:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=685a23678390dae7a1f8af80118e459b90c951e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:54:d4:a5:c4:d0:56:6e:a6:99:87:72:2f:10:
4d:a4:43:40:32:5a:d2:28:03:3c:2b:65:de:99:f3:
ea:e7:b0:dc:6c:5b:85:92:4f:b8:8e:39:c2:ef:79:
80:b7:11:ee:11:0f:79:1f:ba:2f:ea:bc:32:c3:e4:
dd:a3:6a:01:59:21:b7:e1:c8:4c:62:06:80:c5:59:
2d:8d:8f:e6:26:ac:c5:9f:c8:8c:93:12:06:28:fb:
76:b1:8a:0e:c8:be:f8:ae:dc:60:0b:be:b1:ea:92:
18:cb:fe:cc:65:67:c2:3a:20:46:bd:86:ef:37:f6:
e5:2e:e3:44:ae:99:b9:89:91:2a:c9:7e:45:0a:a3:
0e:2a:57:dc:01:0c:a6:97:7b:c8:6f:86:51:70:e4:
fc:11:25:87:64:be:93:fe:dd:64:45:37:eb:a1:f8:
44:ac:05:12:48:ae:44:cc:60:66:39:94:19:b5:6d:
83:32:b4:fe:73:44:f3:db:17:63:e4:b4:3a:c0:fe:
27:ce:ba:ec:51:a0:80:5a:61:cf:a6:84:9e:c2:de:
fe:cc:60:41:bd:dc:1e:53:46:fb:2a:fb:85:ab:eb:
db:07:9f:6e:99:58:71:76:78:10:2f:c4:16:a1:75:
71:0e:38:54:04:98:ca:af:29:34:cb:7e:28:cc:be:
3f:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5A:23:67:83:90:DA:E7:A1:F8:AF:80:11:8E:45:9B:90:C9:51:E1
X509v3 Authority Key Identifier:
keyid:70:3C:48:ED:46:CB:79:49:0E:16:62:DB:01:C3:1D:02:D0:2E:FF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDxI7UbLeUkOFmLbAcMdAtAu_-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/aFojZ4OQ2ueh-K-AEY5Fm5DJUeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/da1c43-1916-46ae-8491-35883af9a323/1/cDxI7UbLeUkOFmLbAcMdAtAu_-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.95.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:1c:b2:c8:45:f3:78:e7:58:da:47:7a:74:2a:26:d2:1a:ea:
83:7f:c2:ea:aa:b8:c8:cc:65:5a:32:35:ed:a3:87:6e:ba:87:
34:6c:9c:cf:da:c9:41:97:08:7b:93:6a:47:81:aa:81:49:8b:
34:e2:8b:d4:12:ad:02:c3:02:7b:bd:03:18:d6:be:79:fb:9f:
90:bb:be:0c:2e:2c:a1:ad:88:cd:a7:7b:4b:c7:cb:5d:b9:af:
3c:76:c0:16:a9:be:4c:74:a9:15:e5:3c:12:00:15:ba:93:62:
63:e6:2a:5f:66:58:3e:3d:be:29:4c:63:1a:d6:07:f7:e3:96:
75:13:df:da:0a:94:bf:e7:86:85:69:fd:5e:37:60:7c:f3:5f:
1d:6e:8e:84:54:43:5f:66:f9:16:de:30:35:9b:1e:9f:87:7d:
0e:cc:e6:cc:b6:c0:62:cd:bc:20:f9:9a:bc:eb:a8:30:a4:23:
ec:87:01:e6:e0:4e:08:23:09:39:eb:f1:26:f8:42:22:be:17:
8a:e5:ba:90:b5:40:0d:1f:47:7e:03:0b:f1:ee:15:d9:c5:50:
90:67:1d:c7:8e:1b:ad:45:d5:c1:d0:6c:bf:29:49:f6:29:28:
8b:88:09:68:8e:4a:fc:53:bb:a1:47:0b:7a:39:c9:1b:ac:45:
98:8d:50:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org