Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/ij5M2RSirJDNkpQ5l7-SD-KuaiQ.roa
File: ij5M2RSirJDNkpQ5l7-SD-KuaiQ.roa (raw, json)
Hash identifier: IZvWEMOxVPExliBButHLqWXPkwyNlRYknszGxyGwJzo=
Subject key identifier: 8A:3E:4C:D9:14:A2:AC:90:CD:92:94:39:97:BF:92:0F:E2:AE:6A:24
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0190D3FA5E22DBF379AA31C344F7F805EBFD
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/ij5M2RSirJDNkpQ5l7-SD-KuaiQ.roa
Signing time: Sun 21 Jul 2024 06:28:38 +0000
ROA not before: Sun 21 Jul 2024 06:28:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206271
IP address blocks: 195.93.226.0/24 maxlen: 24
2a0a:280::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 23 Jul 2024 12:43:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d3:fa:5e:22:db:f3:79:aa:31:c3:44:f7:f8:05:eb:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jul 21 06:28:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a3e4cd914a2ac90cd92943997bf920fe2ae6a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:19:f7:30:30:59:84:bd:54:6b:a5:57:5b:7e:
27:c9:11:18:50:2f:4f:8c:36:ea:40:74:95:06:70:
7f:0a:4a:09:ae:54:47:75:54:39:1b:62:ec:85:b6:
f2:20:24:6b:20:d8:46:67:a7:b1:7d:b2:5b:e0:a7:
b3:23:29:06:fe:c8:4a:26:71:b9:d6:e0:b2:38:f4:
06:d8:70:03:4d:8c:8a:64:fb:7a:0c:b1:4a:f7:46:
38:40:fc:05:20:42:4e:9e:e0:73:32:79:1f:1e:e4:
b2:f7:cb:3b:6a:fd:59:6f:ca:6a:ba:b1:f3:88:0a:
b4:c5:c2:3f:08:07:55:13:fc:d9:ee:44:41:00:fe:
bd:dd:37:4d:4e:c0:d2:23:d4:84:fe:cb:34:dc:93:
26:f3:0b:43:be:d6:7c:2f:22:3a:0e:3d:83:5d:c8:
9e:33:23:80:e6:5f:75:43:6f:82:d4:23:23:4d:80:
d7:c8:24:2e:f2:43:0e:1e:1e:c0:68:72:71:b6:64:
66:fa:18:f3:fa:4a:9f:91:f1:eb:a7:97:48:7c:bc:
fd:8d:3b:7b:46:87:8d:cd:ad:2c:0f:50:fd:03:65:
6a:ef:59:d7:a3:d6:f4:d4:11:bf:2e:e8:0e:54:66:
d2:66:89:b3:e2:a9:cd:e8:9f:16:d7:ff:eb:dc:d1:
63:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3E:4C:D9:14:A2:AC:90:CD:92:94:39:97:BF:92:0F:E2:AE:6A:24
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/ij5M2RSirJDNkpQ5l7-SD-KuaiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.226.0/24
IPv6:
2a0a:280::/32
Signature Algorithm: sha256WithRSAEncryption
80:3b:6e:64:e4:f4:fe:5c:55:8e:00:d6:4b:1a:05:ea:10:fe:
f5:3b:36:8b:ea:d8:19:f6:ce:c6:bf:17:6c:de:56:f0:1b:1c:
06:dd:b2:c2:41:ee:e2:87:4a:44:9d:ff:bf:bc:d1:c2:d1:db:
49:88:9d:bd:33:b1:d8:60:44:93:23:18:ce:7b:75:d4:64:62:
fc:53:d2:43:60:09:4d:ba:c0:87:99:45:17:c5:5e:43:f0:2b:
5b:43:ba:ef:5d:74:94:e7:23:34:34:ae:bb:ab:4e:0f:62:cc:
05:18:47:a0:38:32:d5:73:c9:27:e7:c7:d1:26:fe:2d:00:69:
74:35:77:07:3a:5f:e6:e3:5a:03:31:47:98:a1:f9:86:1c:f6:
d7:96:34:93:f1:b6:05:11:17:d3:f6:f2:cc:2e:53:9e:f2:a4:
2c:8f:31:b1:e1:9a:68:1f:10:51:4c:d6:34:f4:77:b2:8a:7b:
a1:24:f4:a6:e6:0f:a8:f7:23:27:a8:2a:cd:58:ef:1d:6b:4f:
56:19:79:08:60:d8:2e:1c:cb:06:4c:00:0d:94:e0:15:fa:e1:
38:41:6c:ed:9f:61:3d:51:82:8b:36:17:b7:03:85:7e:92:ca:
48:74:2b:60:b5:65:e8:44:22:42:c5:c0:52:7e:34:86:79:e3:
5b:20:e9:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 14:10:15 2024 by rpki-client on console-fra.rpki-client.org