Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/bc6d1e-0146-4a35-8e9b-cf5fb042566a/1/eZH9LI17ojiIg2JaCrG63y77DYU.roa
File: eZH9LI17ojiIg2JaCrG63y77DYU.roa (raw, json)
Hash identifier: 0TE7LezcnDpNVJXqVZ273gWtPCuc08Rz4kLZf/WMZdE=
Subject key identifier: 79:91:FD:2C:8D:7B:A2:38:88:83:62:5A:0A:B1:BA:DF:2E:FB:0D:85
Certificate issuer: /CN=169f4ed6620c8960521fbb81ff72e837dc0038af
Certificate serial: 018CC64ABE78D85A61C13276B0BE2D830EE6
Authority key identifier: 16:9F:4E:D6:62:0C:89:60:52:1F:BB:81:FF:72:E8:37:DC:00:38:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fp9O1mIMiWBSH7uB_3LoN9wAOK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/bc6d1e-0146-4a35-8e9b-cf5fb042566a/1/eZH9LI17ojiIg2JaCrG63y77DYU.roa
Signing time: Mon 01 Jan 2024 18:30:36 +0000
ROA not before: Mon 01 Jan 2024 18:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212824
IP address blocks: 193.151.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 22:20:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:be:78:d8:5a:61:c1:32:76:b0:be:2d:83:0e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=169f4ed6620c8960521fbb81ff72e837dc0038af
Validity
Not Before: Jan 1 18:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7991fd2c8d7ba2388883625a0ab1badf2efb0d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b9:ef:ff:62:62:84:d3:58:04:a9:1a:b6:55:
4e:f1:94:b0:f0:5d:30:94:92:8e:cd:d6:6c:75:87:
2f:fc:b1:31:d9:71:15:f3:ad:e2:22:52:7e:63:c5:
5f:f4:f4:c5:55:94:99:5d:d1:33:16:dd:54:94:82:
60:68:a8:5b:47:cd:ae:18:de:1c:dc:52:6a:0c:28:
a8:61:81:19:07:d7:49:8e:77:9a:89:97:cb:7d:a5:
1d:d7:fc:cb:bc:d8:4d:e0:88:15:f7:73:95:51:c1:
75:f0:7a:2e:c2:6b:08:0d:99:6c:94:dc:9a:72:66:
b2:ed:2f:88:d3:d7:97:fe:33:41:b2:6a:0b:8f:a8:
29:33:bc:78:9f:80:74:fe:15:8d:f9:80:88:c4:95:
b3:2f:76:cc:1c:5b:c7:24:0b:62:99:bc:20:73:1d:
1f:25:00:19:35:fe:f6:58:f0:06:e5:5e:80:0f:e4:
77:aa:2b:c2:33:00:ef:56:21:41:ab:b9:e0:e8:36:
5e:d4:08:23:4c:fe:f1:87:df:12:9d:1a:79:ac:7e:
c5:f3:c7:23:4e:51:52:a3:78:3a:2c:8c:b0:d1:69:
7c:5a:86:7c:8b:b1:5d:2e:cb:98:7c:99:73:7e:b3:
b4:ff:a3:98:46:5d:4c:cb:27:3d:96:bc:7a:f3:10:
36:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:91:FD:2C:8D:7B:A2:38:88:83:62:5A:0A:B1:BA:DF:2E:FB:0D:85
X509v3 Authority Key Identifier:
keyid:16:9F:4E:D6:62:0C:89:60:52:1F:BB:81:FF:72:E8:37:DC:00:38:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fp9O1mIMiWBSH7uB_3LoN9wAOK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/bc6d1e-0146-4a35-8e9b-cf5fb042566a/1/eZH9LI17ojiIg2JaCrG63y77DYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/bc6d1e-0146-4a35-8e9b-cf5fb042566a/1/Fp9O1mIMiWBSH7uB_3LoN9wAOK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.151.243.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:31:8f:c8:37:89:88:2f:1e:99:68:4d:5d:b5:cb:1e:78:85:
73:c2:b9:c7:27:10:ff:a5:56:a8:5b:43:2e:e0:e5:9c:10:76:
77:38:1b:ba:64:1c:7c:16:af:89:89:8b:f4:85:4d:87:d2:43:
c8:52:44:3b:60:c2:c4:6d:04:85:2b:10:72:78:60:21:e6:81:
0a:37:29:5d:9c:aa:20:f9:23:93:bf:96:7e:18:bd:10:ad:bf:
20:49:b1:54:25:4f:1a:06:99:7e:72:f6:00:c2:0b:18:45:45:
cb:2f:8f:ff:8a:da:bb:d4:77:31:69:03:c2:77:18:a0:a4:fe:
82:11:f2:50:bc:cd:c2:02:e5:80:19:12:dd:67:a3:ce:38:61:
7f:8c:90:cb:9b:17:b5:f9:60:f1:1f:7b:40:7b:99:dc:02:da:
8b:8b:25:61:ac:e7:1d:20:85:7f:00:80:bb:60:76:7a:cc:6f:
b9:4f:cd:98:57:d7:d7:17:ef:08:c2:27:68:02:37:c3:c1:76:
b0:cd:14:7d:69:59:ef:b5:53:6d:c1:60:34:1a:d1:c9:75:6b:
ff:cf:06:01:23:62:78:b5:6d:45:ad:c4:60:5f:2c:87:f5:00:
ab:9b:53:52:04:7e:6f:44:21:1f:37:75:ed:44:66:76:83:cf:
b8:1d:3e:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 10 01:26:27 2024 by rpki-client on console-ams.rpki-client.org