Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/1fIqMmoErzHD5DlGdE2KeHed9sQ.roa
File: 1fIqMmoErzHD5DlGdE2KeHed9sQ.roa (raw, json)
Hash identifier: fChdpt620PuJAEDpmmKqQkyHQ5SUmbT0o/JPDeQ+2js=
Subject key identifier: D5:F2:2A:32:6A:04:AF:31:C3:E4:39:46:74:4D:8A:78:77:9D:F6:C4
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF7F75CAD6CAB1CAED157A6717ABB4
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/1fIqMmoErzHD5DlGdE2KeHed9sQ.roa
Signing time: Sun 01 Jan 2023 15:24:50 +0000
ROA not before: Sun 01 Jan 2023 15:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206802
IP address blocks: 193.59.50.0/24 maxlen: 24
195.187.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:7f:75:ca:d6:ca:b1:ca:ed:15:7a:67:17:ab:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5f22a326a04af31c3e43946744d8a78779df6c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:0a:7a:12:17:40:39:b1:2e:db:4a:38:b9:8a:
04:3b:c9:c8:78:cb:99:df:33:2b:8e:20:07:65:8e:
bd:8d:11:9b:e3:d5:db:f9:f3:d2:88:46:42:8f:1a:
54:15:ea:f4:aa:fe:b9:f3:22:3d:61:53:be:a9:cd:
00:d6:f1:a9:7b:f1:6e:9d:98:ae:68:31:bb:c1:ba:
8c:86:90:37:f9:b2:4c:9d:cd:af:bc:ce:27:54:78:
8b:86:e2:67:e1:48:65:ff:96:e2:fb:1c:92:32:52:
01:0f:51:06:ff:1d:d2:6d:13:b9:a7:fe:2a:14:82:
36:f6:34:45:84:6a:f5:5d:a0:a5:11:4c:e5:d0:3c:
d1:5a:79:3a:68:cf:e2:07:78:e7:72:26:8a:e1:e2:
7f:2e:20:98:4a:32:fc:53:40:b5:4a:24:39:c6:42:
b7:08:4e:c3:32:08:60:5d:67:1b:c4:83:ed:5c:da:
88:7e:09:ce:5a:93:cc:5c:a8:0b:ed:1b:1e:39:8a:
22:a3:5a:23:5e:ae:4b:fe:67:4d:c8:6a:a3:59:a6:
f5:1a:82:7d:19:22:f1:a3:da:89:15:7d:10:6a:00:
75:fe:61:6c:b9:9e:de:6e:a2:f5:bd:0c:2d:52:37:
37:be:b3:90:bb:1a:c8:98:09:8d:20:3e:1e:61:11:
55:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F2:2A:32:6A:04:AF:31:C3:E4:39:46:74:4D:8A:78:77:9D:F6:C4
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/1fIqMmoErzHD5DlGdE2KeHed9sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.50.0/24
195.187.82.0/24
Signature Algorithm: sha256WithRSAEncryption
16:b6:54:5c:0b:39:ab:2f:69:d0:d3:c8:9a:44:6e:65:9a:fe:
09:0b:65:37:a8:1b:8a:ad:a1:16:d2:46:57:fa:1f:e7:ad:05:
af:9b:46:2d:b0:79:c0:66:e5:e7:ad:83:e1:b7:77:a5:72:fb:
bf:f7:44:dd:45:1c:d7:3f:1b:ab:c5:fd:10:d9:86:ed:11:42:
e5:b2:08:11:72:92:1d:50:73:1b:d7:47:7b:a9:de:f3:18:64:
2a:15:60:78:ae:aa:fa:81:4d:72:46:d3:20:e1:8c:3b:7f:54:
a2:1a:3a:d2:25:b3:6a:66:ae:6d:12:a3:51:b6:30:5d:78:e8:
5f:9e:78:3c:03:17:fe:db:47:a9:38:b5:d8:97:7b:c0:4c:de:
d6:ba:3e:28:93:a2:44:2c:eb:ca:ed:08:97:65:b8:4c:65:35:
97:ed:df:3b:bb:5a:1d:81:cb:97:8d:28:39:76:9e:28:aa:0c:
b2:65:ce:ac:56:e2:27:42:49:83:6f:1b:7d:5f:6b:9d:4e:a3:
f7:e8:5b:62:5d:87:e4:b8:45:17:d2:1a:91:2f:21:fa:84:36:
e5:cd:08:bb:be:4c:4c:bc:df:dd:f5:10:a8:9f:12:62:36:69:
3a:76:d2:98:ee:9f:2e:d4:95:ad:c3:c7:60:9f:4a:7c:b6:1b:
da:4d:50:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org