Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/0-esmjL0FBEIBL7C85s5k5mF-Wg.roa
File: 0-esmjL0FBEIBL7C85s5k5mF-Wg.roa (raw, json)
Hash identifier: dwshXBN7By/cjV2JVTo7AVrY9uiO9No/nMWW/S9Pzx8=
Subject key identifier: D3:E7:AC:9A:32:F4:14:11:08:04:BE:C2:F3:9B:39:93:99:85:F9:68
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 018AFC4114D1115884A874FCBAFEB9EA65B4
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/0-esmjL0FBEIBL7C85s5k5mF-Wg.roa
Signing time: Wed 04 Oct 2023 19:53:57 +0000
ROA not before: Wed 04 Oct 2023 19:53:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.135.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 06:36:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fc:41:14:d1:11:58:84:a8:74:fc:ba:fe:b9:ea:65:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Oct 4 19:53:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3e7ac9a32f414110804bec2f39b39939985f968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:de:0b:95:09:43:a2:3d:d3:01:c4:77:41:41:
c7:bc:c8:ec:c4:97:97:00:0e:17:68:0d:12:d5:d3:
aa:78:59:43:cf:d0:41:9f:c5:53:fb:66:aa:a4:06:
24:d6:ba:59:16:77:dd:c0:8c:24:87:b0:ef:59:f0:
1f:06:2a:6c:73:4e:57:3e:4f:af:35:01:47:85:ce:
4c:dc:32:94:1b:c9:aa:29:ba:cc:d0:db:88:b6:8d:
a4:be:3f:c2:a2:21:97:65:fa:fb:ea:86:15:92:2b:
61:fe:2a:da:09:23:e6:26:6f:80:f5:ff:ef:9a:74:
89:76:e4:ac:82:82:cc:26:5e:cc:5f:23:d9:f6:25:
fc:24:82:6a:56:9f:6b:31:34:83:c9:4c:aa:49:af:
18:08:03:50:86:62:c9:f9:6d:0c:3b:53:9a:79:8f:
c3:00:27:c9:67:18:1a:2e:6d:ce:43:0b:b9:63:00:
a6:d3:22:5b:0a:bb:52:0f:9d:db:91:54:9f:0e:4c:
61:2c:d5:97:3c:9f:f4:bf:d7:e9:85:1a:23:bc:e1:
21:17:6f:9f:00:07:73:84:e1:c4:d3:ac:5e:22:87:
d8:28:f4:84:8f:18:95:9b:0e:76:da:b6:5e:27:2f:
ac:34:81:db:1d:7a:95:34:a7:c2:a4:56:2a:a9:96:
2e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E7:AC:9A:32:F4:14:11:08:04:BE:C2:F3:9B:39:93:99:85:F9:68
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/0-esmjL0FBEIBL7C85s5k5mF-Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.101.0/24
Signature Algorithm: sha256WithRSAEncryption
33:0f:af:5d:4a:cf:c2:36:0d:8e:6e:a9:0e:12:d2:51:3c:3b:
a4:7a:8c:2f:62:a2:42:cf:ee:30:79:75:dd:2c:30:6d:2f:8c:
fa:47:e3:de:8d:02:cd:4c:b6:35:69:0f:a1:09:37:f1:c4:0f:
24:75:c3:2b:5f:a1:95:dc:fe:63:ae:81:86:5e:03:05:8a:60:
4b:5e:e0:51:2f:8d:4c:0e:49:c9:74:6a:1b:84:fb:4a:10:db:
80:76:1b:bc:5f:6c:45:d5:41:7f:80:1f:7e:82:72:ad:58:be:
99:66:21:db:b2:24:f5:be:c4:3b:af:89:3f:64:ca:e1:c8:3f:
a6:d4:80:82:ab:85:26:42:96:98:a5:22:0c:cc:5e:3e:91:bb:
06:e9:c8:e8:50:67:da:97:79:fb:ae:da:b8:8e:23:fc:19:8c:
fe:38:1a:ad:6d:bc:c7:4b:6a:aa:27:ab:00:71:85:ab:1f:15:
f1:84:e4:c4:24:3e:65:d8:a3:4a:30:43:73:89:95:0c:15:77:
8c:2b:ca:bc:6a:cc:e7:2c:90:07:16:55:0d:6c:3d:5b:bb:65:
b2:d0:7f:d7:4b:74:58:f1:91:6d:3f:b3:ee:2a:08:ac:6f:22:
fe:70:b6:a5:34:4c:a1:71:1e:c1:e0:14:bd:37:93:aa:22:5c:
da:1a:1b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:13 2024 by rpki-client on console-fra.rpki-client.org