Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/PsdlJzzl4BUl2snuoqNV7yT4Y5I.roa
File: PsdlJzzl4BUl2snuoqNV7yT4Y5I.roa (raw, json)
Hash identifier: saEh/TdFmzvlSaWcn3w5yfAIAS4mLLF8QIidy0RWlSQ=
Subject key identifier: 3E:C7:65:27:3C:E5:E0:15:25:DA:C9:EE:A2:A3:55:EF:24:F8:63:92
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 018AFC4113D6BD7C30C0898B52E8C61010F2
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/PsdlJzzl4BUl2snuoqNV7yT4Y5I.roa
Signing time: Wed 04 Oct 2023 19:53:57 +0000
ROA not before: Wed 04 Oct 2023 19:53:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 193.135.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Oct 2023 06:36:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fc:41:13:d6:bd:7c:30:c0:89:8b:52:e8:c6:10:10:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Oct 4 19:53:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3ec765273ce5e01525dac9eea2a355ef24f86392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7b:d0:f5:40:be:1c:4e:4f:50:05:79:8e:83:
1c:d6:a9:40:d3:f2:6f:8e:d1:31:16:92:ec:08:ef:
a2:0c:bf:67:c0:89:c8:82:df:7c:74:3a:a5:38:5c:
80:56:b6:45:ab:83:e6:70:3b:78:eb:52:90:6b:3d:
db:db:d1:2e:93:62:25:3b:15:e1:d5:a8:f2:2a:dc:
9c:38:8b:d0:fe:59:3c:6c:d9:3c:49:57:0c:5d:e5:
df:6d:8b:12:06:5b:fe:d2:ac:69:f7:aa:bf:1b:11:
43:01:36:22:d3:4d:51:2c:79:81:a4:c0:47:56:a2:
c4:02:2a:67:80:c9:d4:ed:42:25:ec:b2:f5:53:8f:
b6:48:3c:60:50:53:32:5a:be:16:6d:9b:1d:97:4e:
1e:cf:99:09:01:fd:53:38:60:0d:f2:63:a8:3b:88:
13:ab:10:da:8a:03:fd:0a:e2:11:74:f1:73:4e:14:
75:f3:f9:92:48:2f:e6:d6:9a:50:91:05:d2:8b:5e:
2a:7e:32:9a:16:90:7c:2f:b3:ea:cf:b0:5c:f3:33:
58:9f:0f:6c:ca:20:74:eb:37:e1:2d:bf:e1:12:df:
9b:dd:c5:70:bc:0b:8c:9d:f8:14:a0:5b:bd:39:cb:
f9:dd:e1:bd:d0:d7:1d:7a:38:61:0f:c0:31:f6:7d:
b0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C7:65:27:3C:E5:E0:15:25:DA:C9:EE:A2:A3:55:EF:24:F8:63:92
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/PsdlJzzl4BUl2snuoqNV7yT4Y5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.101.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f1:e4:cb:f4:cd:9b:5b:a3:2a:83:4a:e6:8a:70:cc:27:00:
74:09:ee:6d:d3:2b:2b:8c:19:37:09:5a:0a:13:6b:4b:e3:3d:
e0:d9:08:1d:58:38:c0:9b:2f:83:8e:d2:d0:18:fd:a9:3b:b6:
d9:34:93:8c:7f:5e:39:e8:61:6d:3e:55:73:69:57:39:5d:1b:
8b:d3:39:72:30:62:87:04:d3:45:7c:a1:63:d2:61:f9:5d:bb:
73:e8:36:e8:2d:4c:36:13:21:b7:62:dc:7e:c9:d9:f0:17:74:
4b:fd:b5:25:7f:1d:8b:19:9e:3c:f0:3b:24:d1:89:ee:bc:ff:
b1:ad:c8:d4:98:de:4c:ed:98:59:c8:5e:8b:f2:20:63:4e:d6:
ca:c8:7d:79:19:be:d1:f3:12:a4:23:6e:4a:8a:d6:9a:f4:fa:
a6:f8:66:fa:20:ee:3a:79:15:9a:f2:1b:5f:a2:9a:5e:01:b5:
ec:a2:92:ee:a6:7f:e4:63:cc:fe:2c:3f:ed:f9:f3:c7:16:bc:
6f:0e:4d:ed:76:4a:1e:47:0d:a6:1d:b1:17:7e:0f:ef:b0:65:
7d:59:e6:56:7a:6b:0b:34:5e:a4:90:29:32:33:fd:de:6b:d0:
8a:b7:61:86:3e:ef:62:69:6d:1b:b8:51:10:47:63:a5:27:34:
26:33:73:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:13 2024 by rpki-client on console-fra.rpki-client.org