Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/An8DUA9vvfNvAqQSTp5lKhd7zeA.roa
File: An8DUA9vvfNvAqQSTp5lKhd7zeA.roa (raw, json)
Hash identifier: AMTr4U4TAJewQWjHp5cRYOSa5nDVX2E+mz4IN7LdxKk=
Subject key identifier: 02:7F:03:50:0F:6F:BD:F3:6F:02:A4:12:4E:9E:65:2A:17:7B:CD:E0
Certificate issuer: /CN=8c33ddceab154bdf63e789f4443484ad5548664c
Certificate serial: 01856CCAB7D75F22C1F0BC76A95DD3A13793
Authority key identifier: 8C:33:DD:CE:AB:15:4B:DF:63:E7:89:F4:44:34:84:AD:55:48:66:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDPdzqsVS99j54n0RDSErVVIZkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/An8DUA9vvfNvAqQSTp5lKhd7zeA.roa
Signing time: Sun 01 Jan 2023 10:05:02 +0000
ROA not before: Sun 01 Jan 2023 10:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25445
IP address blocks: 193.178.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:b7:d7:5f:22:c1:f0:bc:76:a9:5d:d3:a1:37:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c33ddceab154bdf63e789f4443484ad5548664c
Validity
Not Before: Jan 1 10:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=027f03500f6fbdf36f02a4124e9e652a177bcde0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:19:ce:fa:03:e5:96:83:dd:78:bf:9d:0b:48:
75:2d:31:5b:69:11:03:ab:7b:54:e6:83:59:99:31:
1b:6f:43:6f:04:6b:ed:f1:01:71:df:77:62:64:b2:
7e:aa:e7:25:63:97:02:c6:8a:a5:e0:4f:23:30:1d:
ee:95:d8:10:92:9d:6f:73:b7:df:41:4f:28:18:8f:
2a:7c:28:46:fd:46:b6:fa:e0:d9:9e:63:4d:f1:56:
60:a1:1f:a4:76:51:c5:07:71:14:b5:16:88:1d:a8:
ff:b9:9c:18:e2:37:b2:fc:2e:8c:58:97:f8:a7:90:
84:fa:17:43:ef:af:93:d5:6f:ea:48:6b:35:58:f3:
65:43:b7:c2:c7:d5:f6:0f:95:ef:0b:ee:8d:61:2f:
45:8c:4a:ea:c5:94:c6:7c:05:66:55:f6:a6:6b:2a:
f9:ff:88:c9:f0:31:4b:8d:27:11:cb:d1:5f:26:e3:
81:d0:7a:08:b9:e6:84:25:ff:cd:04:47:75:dd:cb:
85:24:27:44:74:26:34:fe:0e:e9:d5:00:ec:da:95:
d0:4f:ec:4a:09:fb:a6:36:b5:0b:c1:0e:32:cc:c4:
2d:7e:b9:b9:89:ff:b6:11:63:00:ce:b6:71:a6:b9:
66:69:21:fb:c5:a4:37:2e:c5:eb:e6:f6:23:29:81:
c7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7F:03:50:0F:6F:BD:F3:6F:02:A4:12:4E:9E:65:2A:17:7B:CD:E0
X509v3 Authority Key Identifier:
keyid:8C:33:DD:CE:AB:15:4B:DF:63:E7:89:F4:44:34:84:AD:55:48:66:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDPdzqsVS99j54n0RDSErVVIZkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/An8DUA9vvfNvAqQSTp5lKhd7zeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/jDPdzqsVS99j54n0RDSErVVIZkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.184.0/24
Signature Algorithm: sha256WithRSAEncryption
15:e8:68:a7:cb:2f:e0:f6:16:09:2a:12:80:6f:c2:0d:60:d3:
5b:12:2e:5f:d1:18:d5:45:b4:a1:c8:c8:08:7b:c5:f6:33:6d:
eb:86:11:ab:e6:56:c5:78:27:87:dd:dd:5b:f9:f0:47:45:e2:
61:89:0a:06:c7:5d:23:80:72:d8:a8:39:dc:66:8d:36:ee:9c:
79:ec:0a:33:a6:70:2a:9d:6e:14:6b:ca:aa:e2:e5:13:a8:c8:
27:9d:40:2d:ae:55:bd:5b:c9:35:e3:72:fa:16:c8:9d:e5:44:
67:b1:b2:c2:a6:4f:9c:88:7f:53:fc:74:06:97:28:69:48:a4:
b4:64:00:29:b2:ce:21:4d:01:6e:5b:4b:a3:a9:49:45:ce:2d:
a7:be:66:75:af:7d:a9:62:da:c3:23:58:4d:f6:e8:0e:7b:a4:
de:be:cd:89:5a:0d:57:dc:c8:d1:ab:46:64:dd:11:a4:bf:33:
26:b1:dc:b6:3a:15:e0:3f:40:b8:c5:06:52:09:68:16:8a:00:
db:53:eb:25:f2:0d:9d:a0:66:41:3b:6e:70:9f:9b:59:5e:0c:
a0:58:e7:a8:ad:64:b5:e0:3c:23:97:0b:ef:78:e9:9a:1a:a0:
32:0e:31:45:a8:ff:6f:c5:b4:4f:52:9f:fa:63:1c:26:3d:b7:
90:a0:bf:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:20 2024 by rpki-client on console-fra.rpki-client.org