Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/44mQXzhfnKxS2ovkIEw_VGxYwYI.roa
File: 44mQXzhfnKxS2ovkIEw_VGxYwYI.roa (raw, json)
Hash identifier: y3bP1/1DkojUWlGO2+B3A8RGAkdeVqFH3XPNxlmweZA=
Subject key identifier: E3:89:90:5F:38:5F:9C:AC:52:DA:8B:E4:20:4C:3F:54:6C:58:C1:82
Certificate issuer: /CN=8d843b57d0afcc112fe389668bf675d80d8223da
Certificate serial: 018A87DC3467EF10B0CA0D1083736EA9BC8A
Authority key identifier: 8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/44mQXzhfnKxS2ovkIEw_VGxYwYI.roa
Signing time: Tue 12 Sep 2023 05:27:49 +0000
ROA not before: Tue 12 Sep 2023 05:27:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199979
IP address blocks: 212.11.92.0/24 maxlen: 24
193.22.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:87:dc:34:67:ef:10:b0:ca:0d:10:83:73:6e:a9:bc:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d843b57d0afcc112fe389668bf675d80d8223da
Validity
Not Before: Sep 12 05:27:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e389905f385f9cac52da8be4204c3f546c58c182
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ae:86:01:f0:ad:6c:b7:11:36:8d:75:3e:32:
a0:65:2e:bc:36:e6:1f:13:4b:dc:ca:79:b8:8e:2d:
11:90:a2:d4:e2:d7:35:ba:04:1f:3d:7d:8b:3b:82:
8e:9c:76:0e:fd:65:34:4e:37:48:ca:17:ef:63:6e:
39:e8:67:68:0c:af:5b:62:3a:17:4b:b3:91:1e:88:
59:4b:5c:c5:60:4e:30:1c:e6:14:b4:ee:cb:f5:06:
4b:f4:3d:ea:d1:f1:96:3d:cb:13:fd:d6:12:c3:cd:
9f:39:c2:91:13:0c:f8:8e:78:75:cf:ac:0f:bd:f5:
b4:e1:85:c3:0b:de:4c:d5:46:40:a3:fb:29:b0:0f:
65:fa:b9:ad:07:b0:28:f1:bb:ae:f8:7d:6a:a1:78:
15:ed:4b:65:4e:0e:ed:cc:ad:3d:30:e2:ed:34:82:
73:8c:08:1a:25:92:cc:b7:b3:8b:81:83:c3:17:e1:
5d:70:60:b1:79:10:d3:a1:b2:ce:59:71:89:ee:1e:
4b:a4:8d:d1:97:71:5c:d7:2c:e6:2b:85:8d:68:03:
fd:04:47:2f:3f:8f:2d:bd:bf:da:51:b4:81:38:3a:
21:4a:8e:a6:83:b4:27:2c:78:ae:6f:c5:f9:ea:96:
37:2f:13:72:7f:76:47:25:8d:c4:90:f3:01:d3:20:
5d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:89:90:5F:38:5F:9C:AC:52:DA:8B:E4:20:4C:3F:54:6C:58:C1:82
X509v3 Authority Key Identifier:
keyid:8D:84:3B:57:D0:AF:CC:11:2F:E3:89:66:8B:F6:75:D8:0D:82:23:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQ7V9CvzBEv44lmi_Z12A2CI9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/44mQXzhfnKxS2ovkIEw_VGxYwYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/1ac271-6be9-4a14-8616-465a333ab444/1/jYQ7V9CvzBEv44lmi_Z12A2CI9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.131.0/24
212.11.92.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:5c:bd:ed:20:75:c5:f2:f0:b4:c9:bf:65:57:ff:d1:91:dc:
7b:6a:2f:c9:d1:66:58:b4:8c:af:4a:c7:de:a1:cf:05:97:2e:
85:0a:b4:86:88:54:ad:63:81:8b:dc:84:df:4e:96:79:9e:94:
0e:a7:5f:12:f1:71:19:b2:c1:e8:a9:56:0c:23:3a:74:c2:91:
79:cf:7d:b7:e2:f8:cc:6d:61:9c:3d:e6:5e:f7:12:aa:09:7f:
93:23:f1:48:0d:e2:a2:f0:af:60:4f:b0:22:7b:b0:0c:d5:6b:
53:55:e4:b3:b7:44:6f:c3:bd:66:1a:3d:30:cf:e7:e1:b9:f0:
ac:98:fc:22:8f:89:96:76:90:b0:11:00:e6:0b:1f:86:f8:3b:
8e:fc:b5:64:7c:9d:65:c4:33:c1:08:46:16:5b:45:73:53:68:
f9:a3:ac:35:22:5f:ff:fe:74:f2:32:31:ff:0f:77:cd:9c:49:
27:d8:dc:5c:f9:9a:57:1c:06:26:66:92:4e:33:4d:a8:59:84:
7c:9a:e1:cc:98:3e:bc:ec:d5:87:c7:5e:3d:aa:14:9c:94:4b:
b3:ad:d2:3e:26:eb:c3:65:eb:45:77:45:42:ed:c3:82:b0:75:
33:2e:92:20:dc:85:98:d1:60:e7:10:8e:c5:54:a1:5f:bc:26:
32:8f:c9:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:43 2024 by rpki-client on console-ams.rpki-client.org