Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Dur6cFH3DTQrM687mAD5golXmrc.roa
File: Dur6cFH3DTQrM687mAD5golXmrc.roa (raw, json)
Hash identifier: HGjQqUcY8Rf+5wOTJB2IrNeRSBrPuq2vVRfmE6iCsu4=
Subject key identifier: 0E:EA:FA:70:51:F7:0D:34:2B:33:AF:3B:98:00:F9:82:89:57:9A:B7
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01884C49B5272DA48228D349713F0C14F0FD
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Dur6cFH3DTQrM687mAD5golXmrc.roa
Signing time: Wed 24 May 2023 05:44:38 +0000
ROA not before: Wed 24 May 2023 05:44:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59832
IP address blocks: 193.59.104.0/22 maxlen: 24
193.59.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:49:b5:27:2d:a4:82:28:d3:49:71:3f:0c:14:f0:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: May 24 05:44:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0eeafa7051f70d342b33af3b9800f98289579ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a1:fc:8a:e6:a0:95:67:d0:65:6e:98:7e:29:
fd:71:9a:fa:1f:51:19:4a:f7:2e:19:6d:e9:fa:ca:
71:54:14:7d:34:c2:39:82:17:26:f5:77:af:20:16:
a3:78:86:a0:76:92:ae:85:09:c3:1d:c5:24:28:f0:
50:55:3f:33:de:31:bd:00:3c:21:a0:e2:95:cb:b9:
41:c4:85:89:cf:00:46:60:de:db:fe:a1:86:f3:1a:
03:f0:c4:17:f3:e4:8b:cb:b5:d3:0d:0c:7d:40:0f:
a6:3a:2f:4d:75:2c:05:b8:60:ea:f1:67:d2:0c:75:
fb:d7:bf:b0:6a:f0:70:c1:16:45:70:73:f7:41:ed:
69:28:81:07:d2:60:c3:4e:b1:7f:bf:57:d6:6e:28:
19:0c:ae:92:5f:1f:98:fd:1c:f7:2d:bd:4e:09:eb:
b2:2b:1a:84:ab:79:87:55:97:03:84:d8:7f:95:25:
62:14:1b:31:16:f0:c2:7e:26:34:9e:51:57:fb:b6:
83:26:e7:fd:28:c1:f6:79:c6:8b:1c:ee:69:5e:83:
5f:9a:67:26:dd:dd:0d:13:46:89:50:f5:a8:f3:da:
03:83:8f:da:be:15:03:38:e5:bb:78:b3:66:58:43:
22:65:12:8b:4c:71:af:90:4e:c5:15:65:a8:48:9f:
7e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:EA:FA:70:51:F7:0D:34:2B:33:AF:3B:98:00:F9:82:89:57:9A:B7
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Dur6cFH3DTQrM687mAD5golXmrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.104.0/22
193.59.111.0/24
Signature Algorithm: sha256WithRSAEncryption
81:30:e0:d3:ca:67:78:c1:12:54:da:4f:16:07:f2:50:07:fc:
01:2a:10:44:d6:50:6f:2a:09:a8:22:c4:d0:b2:be:fc:fa:7f:
2c:bf:62:c9:2d:66:35:ce:41:33:3e:cb:48:ac:c6:99:09:52:
aa:3d:27:20:7d:d5:fc:e9:ab:09:ed:52:72:83:04:ee:2e:bd:
2a:43:85:3c:7f:91:ad:42:55:fd:7c:c7:00:73:be:9c:42:46:
6d:87:2f:20:bc:68:ac:6f:45:1f:9c:c1:a2:12:cb:f5:db:b4:
e5:79:2c:f1:34:1d:80:f6:33:e6:fa:41:ab:cc:9b:f5:d3:af:
04:35:b8:56:75:7e:9f:fc:fb:b8:76:ff:40:8b:e4:86:1d:59:
7a:03:b7:9b:5a:1b:45:0a:ee:f1:fe:64:f3:39:ab:6f:6d:fd:
5b:7a:bc:a5:20:45:c2:c1:67:ce:45:d7:47:eb:0c:e0:11:52:
b8:01:86:95:64:d7:fb:28:01:90:a1:59:9c:4f:bd:d5:ae:e9:
54:e9:7e:dc:c7:65:de:b0:65:ea:28:50:f5:6f:26:86:48:30:
2e:f6:ea:c5:da:77:f2:80:29:97:23:a8:c3:30:c3:30:d2:c6:
cc:3d:9a:a4:90:a5:33:cf:78:a5:1a:64:92:8d:8a:7c:b2:61:
ee:66:fb:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org