Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/RAPbAMjXGtf1nf_VqFxk8qv8KzE.roa
File: RAPbAMjXGtf1nf_VqFxk8qv8KzE.roa (raw, json)
Hash identifier: p1XaheWz4opgu7Z0QEc5/KF4+QrVNYFmxfpK0+H5T7g=
Subject key identifier: 44:03:DB:00:C8:D7:1A:D7:F5:9D:FF:D5:A8:5C:64:F2:AB:FC:2B:31
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 01893F5C762644BD4579E39FEEF8A41B369F
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/RAPbAMjXGtf1nf_VqFxk8qv8KzE.roa
Signing time: Mon 10 Jul 2023 10:32:51 +0000
ROA not before: Mon 10 Jul 2023 10:32:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55002
IP address blocks: 193.8.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 08:45:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:3f:5c:76:26:44:bd:45:79:e3:9f:ee:f8:a4:1b:36:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Jul 10 10:32:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4403db00c8d71ad7f59dffd5a85c64f2abfc2b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:09:49:c1:9d:5c:d0:ab:eb:0c:cd:af:18:de:
d4:ab:2e:39:ee:99:65:f5:53:85:d1:17:d4:0d:10:
b1:57:e4:47:75:63:4f:4c:4e:c2:22:a7:97:64:4e:
3d:75:99:25:5c:46:93:8e:94:c7:1b:62:bf:50:c3:
08:98:ea:39:14:56:67:58:a9:94:bd:49:3e:22:f4:
bd:84:e0:f6:4f:86:fb:59:55:4a:69:30:6b:cd:32:
fe:7e:ab:ac:9e:78:6a:02:4a:10:54:51:c7:69:b8:
8b:82:9f:3c:e7:24:c6:70:0c:71:63:1a:ed:71:de:
a2:63:50:ce:fe:2c:63:f2:a6:42:9c:aa:08:ed:75:
6a:b8:67:47:bf:88:e2:56:aa:a5:fb:1c:57:0f:13:
90:86:b8:34:e9:61:d5:b3:1c:a1:84:32:b4:a0:e1:
42:a0:21:1d:74:22:04:b0:fb:48:94:c6:c9:c5:38:
cf:cf:4f:1f:3d:dc:91:97:0a:08:3f:00:ea:cd:b5:
02:5f:60:7b:29:17:02:d9:13:be:3d:c4:bc:64:ee:
32:56:df:cc:f8:b1:a6:67:43:5e:28:01:ec:36:72:
c4:8f:24:05:44:2a:be:f9:42:05:b1:7a:4c:e9:c3:
43:63:6f:56:96:91:7a:9f:0d:2e:6b:fc:da:7a:ca:
8f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:03:DB:00:C8:D7:1A:D7:F5:9D:FF:D5:A8:5C:64:F2:AB:FC:2B:31
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/RAPbAMjXGtf1nf_VqFxk8qv8KzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.191.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e3:bc:72:f1:17:ef:15:71:d7:8b:6c:0a:a9:fb:91:e4:0f:
bb:08:6a:cf:c0:fb:16:0f:f1:52:e1:04:ce:3d:50:7a:31:87:
f9:d0:98:00:00:61:f0:62:3d:0d:00:7b:e9:91:23:d4:56:cf:
ca:cb:c2:50:18:4e:6a:f7:75:76:17:8e:3f:d9:e8:98:79:45:
65:12:1c:e3:74:31:31:c2:8b:20:c5:a5:2d:a8:26:95:48:bc:
e1:5b:fb:4d:0c:29:d8:a6:57:d5:78:11:a7:96:1f:56:88:38:
2c:14:3f:8e:52:99:e1:db:fb:8b:d3:3e:9a:c5:20:de:07:2b:
4a:0d:3a:8f:76:ef:62:26:9d:49:88:ab:a2:33:50:3e:e2:ad:
34:07:63:de:9d:a8:69:88:66:aa:fb:fa:78:04:c3:a9:a1:36:
28:44:49:d7:f7:27:95:49:e5:e8:dc:26:e3:12:16:68:98:ba:
d8:bb:46:c4:46:f6:5c:05:13:87:b2:74:b9:3e:58:70:42:cd:
66:5f:25:be:a5:dc:8e:ee:93:93:22:6e:ba:79:73:b3:1f:89:
e4:d2:94:ac:5d:74:43:bf:34:14:ac:88:87:be:39:4d:a9:ba:
2c:76:ba:82:3c:ad:c8:ec:d6:cb:7b:b8:16:75:a3:81:e5:9c:
f2:2d:be:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:43 2024 by rpki-client on console-fra.rpki-client.org