Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/xzRdryL2LOc4aDUPyL1uslmXt-w.roa
File: xzRdryL2LOc4aDUPyL1uslmXt-w.roa (raw, json)
Hash identifier: nsZdomOwCVNY5ETisIPdaxftP9KuCre4UX4lYGieIJU=
Subject key identifier: C7:34:5D:AF:22:F6:2C:E7:38:68:35:0F:C8:BD:6E:B2:59:97:B7:EC
Certificate issuer: /CN=3d3f87bb7f7874aa7e15cfec9bbf6aae3c9ce33a
Certificate serial: 018C4A52F7B2F5808D13A0F05E986EDC842D
Authority key identifier: 3D:3F:87:BB:7F:78:74:AA:7E:15:CF:EC:9B:BF:6A:AE:3C:9C:E3:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PT-Hu394dKp-Fc_sm79qrjyc4zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/xzRdryL2LOc4aDUPyL1uslmXt-w.roa
Signing time: Fri 08 Dec 2023 16:46:40 +0000
ROA not before: Fri 08 Dec 2023 16:46:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210194
IP address blocks: 194.39.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 18:16:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4a:52:f7:b2:f5:80:8d:13:a0:f0:5e:98:6e:dc:84:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d3f87bb7f7874aa7e15cfec9bbf6aae3c9ce33a
Validity
Not Before: Dec 8 16:46:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7345daf22f62ce73868350fc8bd6eb25997b7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f0:7e:33:47:a2:b5:20:da:71:e5:ed:e6:c8:
9e:fd:8e:e5:a3:9b:ec:93:78:33:78:41:38:f5:dc:
ee:f7:3b:5d:08:7a:b0:5c:63:3f:75:e0:75:ae:ee:
b9:50:46:b7:63:e2:24:0a:a0:ee:2f:26:48:20:16:
59:f5:34:86:41:27:79:ea:36:ef:65:99:e0:6f:f9:
7d:39:5a:04:66:57:7f:51:cf:5b:36:4b:d0:cc:bb:
a1:73:35:12:21:fc:75:3b:e3:27:ad:f4:21:eb:9e:
7f:1e:1a:f1:ee:98:64:0f:a5:12:8a:44:f4:aa:17:
b1:ba:39:86:6b:c8:da:a4:dd:a4:c0:1d:5a:36:05:
45:d5:c9:1c:46:a1:ae:97:e1:5e:70:c2:2e:29:cf:
65:9b:33:e9:6a:d0:f4:3a:43:06:f9:88:fe:84:0c:
64:71:52:c5:ec:fa:fa:72:78:f3:ff:6d:95:c3:35:
71:2e:7c:8c:8e:9f:b5:b1:7e:83:ad:5d:9f:e2:55:
a9:cb:ad:27:a9:36:0c:4b:bf:34:d0:3a:f3:82:cf:
a7:bf:6a:db:c7:96:d8:99:5c:5e:f4:f8:51:8e:af:
6c:2a:e7:dd:66:0f:32:50:e7:2f:26:6d:30:ec:d5:
1a:4e:8b:94:b2:c5:a7:a8:b8:0c:13:15:21:b1:0c:
b9:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:34:5D:AF:22:F6:2C:E7:38:68:35:0F:C8:BD:6E:B2:59:97:B7:EC
X509v3 Authority Key Identifier:
keyid:3D:3F:87:BB:7F:78:74:AA:7E:15:CF:EC:9B:BF:6A:AE:3C:9C:E3:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PT-Hu394dKp-Fc_sm79qrjyc4zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/xzRdryL2LOc4aDUPyL1uslmXt-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/PT-Hu394dKp-Fc_sm79qrjyc4zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.230.0/24
Signature Algorithm: sha256WithRSAEncryption
64:5f:0e:2d:65:68:de:71:05:1b:8f:b7:c6:dc:92:c9:29:84:
aa:c5:f4:55:35:6c:41:e6:f7:5a:d8:38:19:4e:ef:f8:c7:12:
43:45:c9:f4:5b:8a:93:33:3f:4c:b3:46:33:ba:b3:bd:f8:06:
5a:1b:cc:99:0a:45:cd:b2:95:c9:19:7f:ab:5b:d8:72:75:ff:
6f:bf:7a:cf:39:aa:27:bc:c7:ad:08:e9:5c:aa:7d:6e:86:53:
7c:a3:b4:70:36:cc:49:3c:0b:df:dc:1f:5f:70:c0:40:0a:0f:
16:b9:a3:dd:35:92:86:dd:8d:ee:2c:ed:1a:40:aa:e3:fe:97:
f9:17:f4:aa:af:2a:a0:8d:13:9d:d7:d8:19:9f:cb:06:72:80:
43:f6:58:7c:85:87:d8:f7:25:29:08:f6:48:c5:09:f6:5b:bc:
1d:a6:5d:6e:a3:c9:4b:42:73:c6:83:5e:14:3c:69:51:bc:0d:
e4:39:9f:a2:c7:4b:3f:61:5f:f5:49:f7:e5:bd:d3:cc:0f:b9:
d3:a5:a4:35:73:cf:96:81:06:9d:3f:af:2f:b8:1b:49:bc:df:
31:3e:71:51:8e:be:26:93:ff:f2:a8:39:96:4e:4d:37:8f:7a:
b8:a5:c0:4f:6a:27:5c:96:a9:de:cd:50:ee:7d:55:fa:16:89:
39:f2:79:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:13 2024 by rpki-client on console-ams.rpki-client.org