Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6520c4-77ce-4638-b2ac-dc9fccd5fe01/1/_rSTSFMMnYYlIFtxdYktPA_XaQc.roa
File: _rSTSFMMnYYlIFtxdYktPA_XaQc.roa (raw, json)
Hash identifier: iPTO6sP2vE1bceLnO44e9K8106jmTYGB0uW1v0TzJXY=
Subject key identifier: FE:B4:93:48:53:0C:9D:86:25:20:5B:71:75:89:2D:3C:0F:D7:69:07
Certificate issuer: /CN=fdf1acf27d1e44bcf91271fb6750155c4355ff39
Certificate serial: 01856D01B3AA7F6ED03A44D75ABC218DE3B6
Authority key identifier: FD:F1:AC:F2:7D:1E:44:BC:F9:12:71:FB:67:50:15:5C:43:55:FF:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_fGs8n0eRLz5EnH7Z1AVXENV_zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/6520c4-77ce-4638-b2ac-dc9fccd5fe01/1/_rSTSFMMnYYlIFtxdYktPA_XaQc.roa
Signing time: Sun 01 Jan 2023 11:05:06 +0000
ROA not before: Sun 01 Jan 2023 11:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50143
IP address blocks: 193.104.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:b3:aa:7f:6e:d0:3a:44:d7:5a:bc:21:8d:e3:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdf1acf27d1e44bcf91271fb6750155c4355ff39
Validity
Not Before: Jan 1 11:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=feb49348530c9d8625205b7175892d3c0fd76907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:27:29:54:43:4b:79:6a:3f:ac:aa:11:17:e3:
cd:ea:b3:87:ee:9e:20:5b:f8:6f:3e:1a:63:be:36:
a9:6a:ab:2b:65:61:70:2d:16:b4:f8:1b:48:93:2a:
f2:b9:3b:de:f6:f6:e5:6c:fc:e8:1b:e0:76:35:7b:
71:28:9c:ab:87:21:84:f0:30:da:09:b2:5e:86:68:
57:2c:51:75:a1:03:88:7b:85:f9:09:89:6e:ac:53:
98:5f:be:89:1f:ba:45:19:7f:aa:75:4e:14:2a:32:
43:7f:42:75:44:78:72:ba:a6:91:1d:70:52:08:1b:
5b:62:bc:7e:1c:1b:5c:52:f7:32:0b:3b:7a:cd:db:
be:b1:64:de:bf:76:7a:45:81:0f:11:47:0c:b0:b7:
b8:2e:9b:df:54:96:8c:5b:0d:8c:74:17:b4:86:c6:
77:4f:51:b7:c2:37:11:ac:6f:8e:7d:d7:3f:70:8e:
01:76:67:63:e4:e3:23:6e:2e:44:51:d5:ab:96:2a:
e2:85:3f:f1:97:c1:6a:86:43:34:c6:b6:60:94:cc:
1b:5c:08:0c:d3:a2:bc:d1:29:1f:fd:d9:88:0d:f7:
79:2d:8d:52:85:fe:e4:e4:21:4a:fc:a3:91:59:24:
bc:3d:e1:91:cf:f1:7f:3c:0a:9b:98:06:c3:84:a9:
f5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B4:93:48:53:0C:9D:86:25:20:5B:71:75:89:2D:3C:0F:D7:69:07
X509v3 Authority Key Identifier:
keyid:FD:F1:AC:F2:7D:1E:44:BC:F9:12:71:FB:67:50:15:5C:43:55:FF:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_fGs8n0eRLz5EnH7Z1AVXENV_zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6520c4-77ce-4638-b2ac-dc9fccd5fe01/1/_rSTSFMMnYYlIFtxdYktPA_XaQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6520c4-77ce-4638-b2ac-dc9fccd5fe01/1/_fGs8n0eRLz5EnH7Z1AVXENV_zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.125.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:43:93:bb:d9:c6:31:40:b9:7c:65:bc:ef:f0:ff:a3:79:4b:
41:0d:d3:74:b6:2b:70:02:35:65:37:25:53:25:46:0d:36:4c:
2f:0f:6d:8f:95:c0:10:b4:c6:14:f7:e6:ad:c3:bf:4c:27:94:
f0:41:19:4f:2b:e0:45:e9:ab:3d:ff:5a:83:3c:33:95:e6:74:
28:65:81:e5:fe:90:d9:0f:c3:f2:fa:9f:98:32:f2:1d:ab:85:
10:52:9c:d6:21:df:44:c1:38:24:6d:44:80:46:8f:ba:f6:0d:
84:8d:00:d4:9f:b0:3e:c6:b0:a4:cc:b6:be:d9:23:da:96:26:
db:29:9c:25:d4:02:2a:19:fe:9f:aa:f6:5c:65:a1:36:78:7b:
96:5c:a7:61:8e:86:96:f7:ba:5a:42:ae:32:15:0f:01:9d:f0:
c1:16:7b:41:d6:b0:d0:7b:09:da:58:ac:0d:8d:c9:fb:68:31:
f6:36:9c:14:6c:e5:0e:bd:11:ac:ba:a5:1c:c3:f0:c5:47:40:
32:3a:d4:32:af:11:bd:ff:07:88:5f:b5:cf:02:14:cf:05:76:
0d:d5:8c:c5:7b:37:92:d8:bc:a0:16:82:f6:35:34:a4:69:8b:
6e:53:0b:27:a2:7c:90:46:98:33:c5:16:7a:91:f5:91:a8:d6:
92:2f:a1:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:10 2024 by rpki-client on console-fra.rpki-client.org