Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CihrOAQrOoF6iJO0hJdbg9X8wNA.roa
File: CihrOAQrOoF6iJO0hJdbg9X8wNA.roa (raw, json)
Hash identifier: IkO4kxKDAo8/ZGzu/zP0NqKZ3f1mx6GRSWnBSKWYj20=
Subject key identifier: 0A:28:6B:38:04:2B:3A:81:7A:88:93:B4:84:97:5B:83:D5:FC:C0:D0
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC425716E2F9AD83BA1BAE9EF9F4431A5
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CihrOAQrOoF6iJO0hJdbg9X8wNA.roa
Signing time: Mon 01 Jan 2024 08:30:37 +0000
ROA not before: Mon 01 Jan 2024 08:30:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211715
IP address blocks: 193.105.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 16:04:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:71:6e:2f:9a:d8:3b:a1:ba:e9:ef:9f:44:31:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a286b38042b3a817a8893b484975b83d5fcc0d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:11:f8:23:7d:1e:58:40:cd:12:0e:38:19:1f:
c2:b5:e0:42:3a:0b:45:53:f1:8d:9e:76:06:3b:1b:
c8:25:6f:83:7e:bf:26:69:9e:92:3a:e1:cc:3c:95:
06:6b:27:09:0e:1f:0b:98:d0:e2:f7:cc:2d:ab:55:
a0:80:4c:ad:c5:3f:0c:3f:9d:7c:65:7e:b4:7a:a5:
81:be:1a:bc:99:4f:10:a6:92:c0:62:f2:47:51:6f:
1c:cd:96:d5:26:b0:f8:7a:2d:0d:72:8e:93:d7:a9:
68:66:a6:ab:f7:3e:1d:19:21:07:17:86:51:ed:62:
c9:96:bb:e9:2e:05:a6:1c:05:f5:9d:86:97:82:3d:
6d:af:87:9e:39:36:9e:b5:6e:dd:70:05:2c:ec:e7:
73:3a:10:50:23:44:15:34:b9:d1:3e:8a:f1:52:d0:
45:ad:56:7a:33:69:33:8b:26:c9:db:48:43:72:76:
44:ff:19:84:45:f5:48:e3:c2:d4:3f:61:f2:f2:7f:
05:04:93:89:c9:b3:17:f0:c1:b3:5a:db:b8:bd:2b:
f7:46:2f:e3:e8:35:11:c2:8f:fd:b9:ab:03:ab:e2:
53:07:9b:0d:6a:1b:cc:fb:ca:72:96:d3:54:30:13:
37:ff:bc:f3:f2:a1:65:98:09:4a:13:30:91:ad:70:
54:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:28:6B:38:04:2B:3A:81:7A:88:93:B4:84:97:5B:83:D5:FC:C0:D0
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CihrOAQrOoF6iJO0hJdbg9X8wNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.207.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d3:fa:04:ca:50:a3:ce:5a:76:5d:f0:07:e6:6c:ba:ac:69:
66:05:f6:33:f9:f2:06:10:6d:a4:01:a9:9a:ff:d1:b7:ec:04:
e9:51:e3:3e:47:7e:5c:7b:44:f6:c5:30:a1:05:ed:2b:f2:fe:
34:e8:ee:5b:20:dd:0e:f3:71:7c:97:e6:d2:5e:d2:13:6a:c4:
f0:07:01:b0:f1:b6:65:61:35:6c:53:63:ce:4a:b1:bf:60:ff:
88:fb:28:38:d4:00:d6:bd:95:16:ae:16:9f:a0:00:20:53:29:
a6:30:d2:6f:67:c0:e4:58:68:7c:23:16:2e:68:7b:78:4b:e6:
e8:19:f1:50:8f:5e:a7:70:ff:ed:77:2f:58:73:13:07:3b:df:
f9:2b:58:a0:dd:35:83:a8:6e:14:22:f8:1c:6e:da:63:3d:14:
20:e9:35:76:e4:df:58:80:65:c0:22:22:e0:fb:4e:5c:75:d1:
c1:35:c3:98:6d:ef:6b:f1:d3:c0:30:db:08:57:d3:1e:89:0c:
17:46:65:13:68:49:07:ce:8f:f5:65:b9:6f:03:ee:83:8b:6e:
ce:c1:a1:2c:b5:45:ac:9c:5f:db:2e:49:77:2f:63:44:16:6f:
c2:21:aa:9a:6f:c1:5e:d7:87:3c:c2:51:74:7c:8e:43:1d:1f:
44:65:a2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org