Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/clnKtI-yf2ODyW8RHFV0oCwH86U.roa
File: clnKtI-yf2ODyW8RHFV0oCwH86U.roa (raw, json)
Hash identifier: vARKSCdsLhbFFNDBT2BRdp6xibox6kszz0jVNzVDT4Y=
Subject key identifier: 72:59:CA:B4:8F:B2:7F:63:83:C9:6F:11:1C:55:74:A0:2C:07:F3:A5
Certificate issuer: /CN=5e05cb67209bbd1983f4327716523eb1777fd4fa
Certificate serial: 0185728C9F90FA327E304297277B86DE9ADB
Authority key identifier: 5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/clnKtI-yf2ODyW8RHFV0oCwH86U.roa
Signing time: Mon 02 Jan 2023 12:54:56 +0000
ROA not before: Mon 02 Jan 2023 12:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6893
IP address blocks: 193.247.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:9f:90:fa:32:7e:30:42:97:27:7b:86:de:9a:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e05cb67209bbd1983f4327716523eb1777fd4fa
Validity
Not Before: Jan 2 12:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7259cab48fb27f6383c96f111c5574a02c07f3a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ab:15:88:fb:54:83:9d:60:4f:7d:ac:80:1e:
10:a1:49:a5:8f:75:ca:8f:9d:e2:22:0a:29:b3:85:
62:ae:1d:7c:31:5f:27:c4:f7:b4:77:38:ac:e8:03:
b7:87:60:33:d2:ae:84:b5:1f:53:33:c2:1c:aa:61:
d9:f0:18:23:1e:a4:58:a8:1f:74:25:22:69:93:b6:
18:8f:04:4e:ba:33:5f:7c:e0:f5:23:09:23:98:64:
f8:d4:83:28:c1:e4:2b:36:e5:24:38:14:97:cd:77:
2f:ef:fb:02:fb:e5:29:1a:20:56:f8:9e:f7:8c:3f:
36:68:f8:4a:87:e8:dd:03:e2:de:26:61:92:01:e5:
15:c6:52:1b:73:08:88:30:40:c6:19:84:65:8a:41:
f2:d3:5d:42:30:ae:9a:a9:55:2f:6d:15:f9:47:0d:
5a:c6:c8:06:24:2c:a7:3a:2c:bb:0d:a4:eb:b7:8b:
90:0f:30:91:77:be:d8:5d:ae:71:e9:a5:1c:a3:ac:
ec:e4:77:64:26:48:bd:da:4e:ce:72:59:85:dc:34:
a0:b7:e5:b1:ec:e4:e6:08:fc:97:af:31:40:48:8c:
95:26:c5:fb:69:71:2c:4b:a0:35:4e:3a:5a:c7:eb:
97:9a:7d:71:98:c4:f5:05:ce:65:14:2d:d2:4f:df:
c4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:59:CA:B4:8F:B2:7F:63:83:C9:6F:11:1C:55:74:A0:2C:07:F3:A5
X509v3 Authority Key Identifier:
keyid:5E:05:CB:67:20:9B:BD:19:83:F4:32:77:16:52:3E:B1:77:7F:D4:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/clnKtI-yf2ODyW8RHFV0oCwH86U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9ca0df-d474-40cd-8688-1715919567c9/1/XgXLZyCbvRmD9DJ3FlI-sXd_1Po.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.238.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e0:d9:ab:c8:78:ee:a3:dc:c2:cf:30:3a:f7:26:52:96:2a:
af:4f:81:b2:e8:d2:88:9d:8d:f0:15:f9:fd:02:31:83:0c:e7:
c0:66:e9:0d:f1:cb:6c:43:a1:5a:ee:48:30:df:af:84:a9:87:
ae:50:40:97:06:9d:a9:c8:00:05:89:59:08:0a:25:00:7d:d2:
c7:2e:63:52:d6:b4:ad:40:1f:9b:62:7e:3e:fb:ac:70:cf:81:
29:b0:88:37:75:a3:24:20:de:ca:40:9e:e9:06:f7:b3:dc:0a:
6d:ef:c9:d6:80:41:d6:a8:be:df:b3:ec:22:78:aa:c5:a2:6a:
f5:0b:53:48:2d:e3:6f:f9:ad:2f:bb:62:9a:bd:1c:17:de:52:
91:75:40:0c:aa:6e:7f:8e:78:b4:86:14:07:5b:a4:55:8d:41:
f4:61:19:2d:3e:7f:a9:5c:3b:db:1d:11:b4:c1:42:31:2a:42:
c3:d3:8c:06:c2:b3:f2:9a:2b:1e:0d:63:70:63:11:30:27:44:
85:68:55:b2:a6:f2:b3:15:91:4c:f8:e3:66:44:5d:41:5d:f2:
67:ba:c0:c9:23:9d:03:df:e8:e0:38:0a:cf:5e:bc:6a:36:9c:
ae:fe:be:82:27:5b:0e:97:3e:64:6b:ff:fb:b2:8b:77:7a:ca:
90:50:94:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:16 2024 by rpki-client on console-ams.rpki-client.org