Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/AE_3Fnu8Lfs5E1kuY3OfxnFl3TI.roa
File: AE_3Fnu8Lfs5E1kuY3OfxnFl3TI.roa (raw, json)
Hash identifier: NJ/uci0qpcufQO1572TjBcxrdB6ABrCPyO2jR8ESmpI=
Subject key identifier: 00:4F:F7:16:7B:BC:2D:FB:39:13:59:2E:63:73:9F:C6:71:65:DD:32
Certificate issuer: /CN=5dc67c6be367ab9e941d1427d050449447b8865c
Certificate serial: 0189F3D01EFF874EDBFED69EB33B2D2E8D77
Authority key identifier: 5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/AE_3Fnu8Lfs5E1kuY3OfxnFl3TI.roa
Signing time: Mon 14 Aug 2023 11:30:50 +0000
ROA not before: Mon 14 Aug 2023 11:30:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.219.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 12:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f3:d0:1e:ff:87:4e:db:fe:d6:9e:b3:3b:2d:2e:8d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dc67c6be367ab9e941d1427d050449447b8865c
Validity
Not Before: Aug 14 11:30:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=004ff7167bbc2dfb3913592e63739fc67165dd32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3f:a0:a8:7b:63:c4:08:d1:8f:2f:17:dd:06:
3b:ac:e5:be:2d:67:56:10:9e:5e:6b:cf:ee:4e:ce:
a9:93:6e:dd:03:a6:70:c1:ad:db:a5:90:21:b2:3b:
7f:86:d4:db:0b:b3:f6:e2:77:c6:86:21:6a:b5:f2:
94:32:b3:f7:cb:47:23:65:da:57:2c:3d:3a:74:2b:
48:a9:cc:e1:3f:f9:2d:2d:8e:01:af:7b:fa:3e:67:
12:e9:4e:25:66:82:24:8c:4f:2d:f4:33:c0:5d:39:
f5:1a:f6:f8:21:76:d0:44:b3:c6:45:b6:ab:d2:0a:
a9:e6:ab:dd:38:f4:76:a7:c8:bc:68:de:87:34:79:
dc:1c:aa:bd:0c:65:70:cb:18:d8:97:87:f2:38:1b:
11:b8:31:67:b8:3a:7f:74:d3:83:03:2a:e8:8f:b6:
9b:45:82:96:5d:46:61:1b:08:19:7b:bf:71:3f:4a:
ba:bd:ae:1c:50:e7:2c:e8:7b:dd:10:e7:26:a5:d8:
aa:71:16:bd:fd:67:b2:e0:e7:a9:3f:3d:34:d2:4c:
08:8d:47:2e:93:40:b8:eb:a1:fe:b7:9e:61:c6:d5:
4d:7e:c8:e8:e2:fa:95:dc:04:f5:85:3d:a9:a4:bd:
1b:3f:13:f7:9a:b1:f2:7d:38:aa:86:5c:e6:04:85:
91:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4F:F7:16:7B:BC:2D:FB:39:13:59:2E:63:73:9F:C6:71:65:DD:32
X509v3 Authority Key Identifier:
keyid:5D:C6:7C:6B:E3:67:AB:9E:94:1D:14:27:D0:50:44:94:47:B8:86:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XcZ8a-Nnq56UHRQn0FBElEe4hlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/AE_3Fnu8Lfs5E1kuY3OfxnFl3TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/76275a-6f41-4804-837b-89799deadc47/1/XcZ8a-Nnq56UHRQn0FBElEe4hlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.0.0/24
Signature Algorithm: sha256WithRSAEncryption
61:50:63:92:a2:66:61:7d:9d:95:e1:cd:0d:d8:5a:93:68:fd:
80:73:25:95:89:af:fb:6a:ed:6b:7c:89:77:7f:fa:0b:ff:60:
76:90:22:d0:b2:31:41:01:6c:20:a9:2a:26:eb:06:4f:36:7b:
1b:ee:36:94:9e:81:7a:2c:e9:7e:16:ae:cd:7d:09:b3:64:c3:
ff:82:bc:d8:7f:3f:ec:2b:12:c0:97:d5:67:c7:67:47:ac:26:
c9:f6:f8:cb:bf:d2:e0:6a:d9:ac:ec:5d:8b:07:2b:78:cd:43:
cf:3e:27:44:87:01:44:54:dd:0e:91:73:fa:1a:6a:d3:e4:cf:
a4:53:ad:ea:58:e5:4d:11:61:2c:57:38:78:8b:c9:64:72:bc:
0b:34:2a:01:68:52:6f:ce:6a:53:35:c0:34:ab:2a:e4:a4:8f:
54:92:e8:98:50:57:c8:f0:0e:5e:43:f6:a9:7b:f0:6a:87:7f:
6f:82:b6:f7:c5:74:1a:59:e9:20:ec:19:7b:11:7f:e4:66:40:
09:f6:2f:53:96:5d:72:1a:b8:ef:d5:70:10:4e:15:9d:70:b3:
05:ce:d2:0b:a0:6c:cd:0e:c2:9d:5f:ac:22:d7:c5:60:40:30:
e3:62:e6:28:9b:f3:1a:56:31:b7:25:2f:99:98:58:db:ff:7a:
61:b2:b4:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:32 2024 by rpki-client on console-fra.rpki-client.org