Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/fYhNflI50fvZGOHmoDswhnak7RE.roa
File: fYhNflI50fvZGOHmoDswhnak7RE.roa (raw, json)
Hash identifier: renK+5O+S5nKETzteNjeJoUOqfoOcP760eTI/1TvcKw=
Subject key identifier: 7D:88:4D:7E:52:39:D1:FB:D9:18:E1:E6:A0:3B:30:86:76:A4:ED:11
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF8201B1C1E82F9C3E8E12C7C91B54
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/fYhNflI50fvZGOHmoDswhnak7RE.roa
Signing time: Sun 01 Jan 2023 15:24:51 +0000
ROA not before: Sun 01 Jan 2023 15:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210271
IP address blocks: 193.59.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:82:01:b1:c1:e8:2f:9c:3e:8e:12:c7:c9:1b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d884d7e5239d1fbd918e1e6a03b308676a4ed11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5d:a7:1c:db:c2:3a:11:62:c8:6a:19:63:9d:
f9:e3:e7:ff:45:34:ce:fc:23:f1:0b:fd:9b:99:49:
3a:03:c7:4f:2a:25:93:ed:22:2b:61:1c:af:c7:17:
06:1b:e8:42:95:5d:29:9f:48:5a:48:18:2c:e0:95:
91:46:cb:ea:67:d6:d9:a0:4f:ae:39:f7:b4:68:fc:
07:4d:cd:0a:95:c7:34:17:0c:cb:f8:7d:f3:c3:ba:
02:be:51:16:9f:c4:36:60:a2:44:3b:c9:c4:af:8c:
3c:a2:9a:60:b2:a9:40:e1:54:61:3a:32:cc:d7:15:
e9:58:eb:6d:17:ed:f9:b7:68:9c:ff:4b:b7:b8:62:
e1:d8:27:03:e5:3b:05:e6:40:e1:d4:5a:b6:05:5d:
13:6d:ba:65:f5:a7:cd:5d:7f:52:55:ce:33:cf:f4:
8f:c4:1e:02:33:e5:d2:1d:0c:e5:17:11:41:c8:1a:
51:fb:51:3b:ae:17:42:29:1b:e6:24:30:cf:7a:65:
5a:50:9d:45:8b:12:21:72:0f:9f:4d:1a:8f:8b:8e:
c6:2b:8b:4b:22:a3:62:4f:5e:bd:67:31:51:6f:40:
7e:46:54:26:18:34:f7:e9:88:89:bc:39:56:a5:22:
fb:e3:20:99:ab:13:72:7d:ac:7f:38:6b:27:ba:0c:
b1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:88:4D:7E:52:39:D1:FB:D9:18:E1:E6:A0:3B:30:86:76:A4:ED:11
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/fYhNflI50fvZGOHmoDswhnak7RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.80.0/24
Signature Algorithm: sha256WithRSAEncryption
34:62:f8:98:36:b1:8d:2b:0a:55:96:a5:52:24:1f:f6:70:9d:
39:33:ca:81:fc:4e:e2:76:77:22:8f:da:3f:88:df:98:ca:ac:
fb:75:39:75:cc:a5:ac:15:3c:8d:5e:f4:2d:10:ec:dd:6e:d2:
81:d1:e1:20:6f:1f:64:44:a3:43:9d:44:50:bc:bc:2e:cc:66:
92:72:ff:4d:84:ce:8e:fa:cc:88:43:50:cb:ab:20:c3:38:b5:
94:3b:7c:5c:bc:54:72:a1:33:23:b8:28:43:5f:33:5b:c8:f7:
75:50:f5:1c:7e:d0:f9:76:90:9e:1d:e2:6c:e4:aa:17:cb:01:
d0:84:bc:3f:8d:f7:7d:b6:d6:79:c7:db:76:c9:14:2a:18:83:
87:44:18:db:42:dd:55:a4:ed:dd:8f:29:bb:3d:84:a7:1f:18:
9b:4a:00:1a:12:b8:5d:ed:18:ea:58:21:60:3d:a8:e9:44:cf:
fe:a8:0a:3e:a1:de:97:1d:3a:6d:82:51:cb:95:9e:9e:4b:e4:
56:33:b8:8e:b9:62:a4:fc:c6:ec:a9:0b:33:c7:89:92:87:1f:
cf:54:7c:c7:33:7b:b7:4b:b9:47:c2:8e:b0:5d:66:97:16:67:
a9:9b:7e:08:b8:3e:56:2a:17:1d:30:5e:2e:a1:6e:19:d7:f1:
1f:94:04:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org