Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/yNmFxvAf7buTrxQvLpiuQ_VfMho.roa
File: yNmFxvAf7buTrxQvLpiuQ_VfMho.roa (raw, json)
Hash identifier: jr5UyF3zFoYwD+6KXpkh0/1NGIEoOu4cWZkrqq3SYto=
Subject key identifier: C8:D9:85:C6:F0:1F:ED:BB:93:AF:14:2F:2E:98:AE:43:F5:5F:32:1A
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14ED2792CC4DCA88DFDB3E85CE7A08
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/yNmFxvAf7buTrxQvLpiuQ_VfMho.roa
Signing time: Sun 01 Jan 2023 20:45:20 +0000
ROA not before: Sun 01 Jan 2023 20:45:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12442
IP address blocks: 193.230.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:ed:27:92:cc:4d:ca:88:df:db:3e:85:ce:7a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8d985c6f01fedbb93af142f2e98ae43f55f321a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c1:25:50:0a:76:0c:a3:10:0d:28:a4:72:6f:
22:72:a3:98:44:7b:72:1c:87:15:f7:06:ac:05:19:
3f:78:63:19:64:bb:0c:68:2c:63:db:36:35:2f:8a:
41:3f:96:0a:81:fc:e5:91:69:57:97:f2:db:b3:e7:
39:c1:30:33:03:8f:0a:1d:12:d9:2a:35:cc:32:1f:
1e:f5:d9:51:4b:62:48:b3:77:bc:82:e4:cf:67:ad:
f1:14:6c:1b:1d:87:49:19:fb:56:70:ae:26:0a:65:
c1:b5:07:37:7f:35:55:b2:23:8a:f0:96:c4:d4:f9:
f8:ac:8c:d2:37:c0:0d:09:1f:a7:d7:07:b8:69:81:
d3:d2:e9:ab:9d:ca:6a:74:95:c3:59:e0:e6:23:19:
94:d8:02:b9:2a:0f:0e:ca:02:20:97:21:5e:5e:63:
99:24:7e:4c:ee:c2:d9:9b:e0:f1:5c:41:ae:b2:7e:
79:47:f2:6c:3b:02:c8:1d:61:64:02:5c:ca:ef:6a:
3f:d1:9a:98:a4:03:b4:f7:b1:ef:60:45:87:65:ba:
bd:3b:31:16:4b:79:d2:71:ce:c7:65:5d:c2:ec:f3:
04:81:5e:c4:c1:6f:b8:11:24:22:13:ad:ae:eb:01:
34:f6:a0:61:44:4d:91:20:a6:c7:58:f2:28:32:74:
25:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D9:85:C6:F0:1F:ED:BB:93:AF:14:2F:2E:98:AE:43:F5:5F:32:1A
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/yNmFxvAf7buTrxQvLpiuQ_VfMho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.227.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:bc:4f:cc:05:b0:b6:09:ec:18:6b:c5:e4:6f:ce:7e:11:21:
1f:fc:60:23:13:79:9c:39:2a:21:b4:48:9e:46:f6:1e:b4:56:
31:37:42:10:51:0e:bc:9a:90:4a:5d:7d:d9:3d:05:d2:42:4d:
35:79:ed:e4:38:39:44:ed:a3:1a:32:da:8b:b6:d3:67:c3:ee:
bd:3b:eb:53:d4:79:ae:11:6f:a0:79:29:cf:db:d4:79:23:e5:
9c:4a:ee:26:d8:e9:95:36:61:89:1e:7f:f4:01:9f:7b:c2:fe:
a2:8a:66:ab:43:50:aa:7b:9b:26:14:01:c9:64:01:7b:cc:34:
ac:31:d5:6d:05:f8:94:39:a5:10:63:32:11:92:cf:31:65:8b:
e7:33:76:de:7d:e5:7c:f5:6e:8e:85:46:47:d7:f7:04:61:2a:
99:25:86:0d:47:14:11:c6:8f:27:00:5a:a7:f0:43:14:bb:a3:
b0:af:a0:f0:1e:36:ad:cf:8d:92:dc:4a:a2:b4:3d:80:43:39:
85:d5:75:a1:55:52:ff:99:ba:32:19:07:53:c2:83:40:8a:35:
ea:41:fb:f7:07:fe:e6:0c:b2:b6:79:41:4d:fe:66:3e:66:bb:
d6:5a:e3:52:c1:50:3f:c4:b6:4c:3a:eb:79:b7:7f:7f:6e:97:
15:aa:56:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org