Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/d4f92b-2d13-4f2c-ad54-3becddfccae6/1/LrFJ-fvvSeLbhpx5_HFyv7o4-PI.roa
File: LrFJ-fvvSeLbhpx5_HFyv7o4-PI.roa (raw, json)
Hash identifier: oA+m3X2ze1Wf9zAGhhADMpuNh35bKu0hW6IWydB8mkM=
Subject key identifier: 2E:B1:49:F9:FB:EF:49:E2:DB:86:9C:79:FC:71:72:BF:BA:38:F8:F2
Certificate issuer: /CN=470bc021b657a594ee58d9d36d8d91831d085174
Certificate serial: 018572311F01B8124667B4C3674E83F82594
Authority key identifier: 47:0B:C0:21:B6:57:A5:94:EE:58:D9:D3:6D:8D:91:83:1D:08:51:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwvAIbZXpZTuWNnTbY2Rgx0IUXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/d4f92b-2d13-4f2c-ad54-3becddfccae6/1/LrFJ-fvvSeLbhpx5_HFyv7o4-PI.roa
Signing time: Mon 02 Jan 2023 11:14:59 +0000
ROA not before: Mon 02 Jan 2023 11:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15543
IP address blocks: 193.26.11.0/24 maxlen: 24
193.138.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1f:01:b8:12:46:67:b4:c3:67:4e:83:f8:25:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=470bc021b657a594ee58d9d36d8d91831d085174
Validity
Not Before: Jan 2 11:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eb149f9fbef49e2db869c79fc7172bfba38f8f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4e:69:28:85:a2:bc:96:5b:4f:5b:d5:41:ff:
7a:ec:f2:80:fb:e9:d5:2e:28:bd:ae:da:ac:22:0c:
28:8c:6e:ec:a3:a8:34:ad:33:d9:d8:98:19:f7:c2:
f2:e3:56:86:20:57:3a:56:f7:db:8b:be:27:9a:2f:
c6:23:4f:17:33:ae:01:2e:73:00:c7:20:80:5c:ce:
d4:d2:0d:6f:09:04:ba:21:6d:02:60:b2:02:be:89:
d9:b8:af:9a:6e:2a:cd:5c:e6:d2:0c:19:a4:29:ae:
5e:14:f2:b9:7b:49:62:11:70:ef:82:33:c2:25:7c:
ef:b9:f6:8e:f5:37:87:41:54:1d:c1:59:91:3c:90:
a2:6c:a6:23:b7:44:0e:1d:54:58:e0:d7:ec:7d:c2:
c6:a0:a1:43:c5:49:64:33:08:f7:70:4e:5d:d2:3e:
8a:af:a1:62:7b:1d:59:9e:b7:36:b8:76:b1:5f:2d:
6b:05:d6:ad:0f:7c:71:de:0a:c7:2a:0b:d4:9e:96:
d0:29:c3:ec:97:57:f2:21:04:d7:ac:fe:5c:04:be:
82:1e:cf:35:22:20:1d:b3:a9:99:79:48:63:e2:52:
86:0b:a7:12:47:a3:00:ed:5c:80:72:56:ff:09:6a:
70:a7:61:fa:98:b4:85:f2:42:40:f7:e3:63:cc:7e:
3e:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B1:49:F9:FB:EF:49:E2:DB:86:9C:79:FC:71:72:BF:BA:38:F8:F2
X509v3 Authority Key Identifier:
keyid:47:0B:C0:21:B6:57:A5:94:EE:58:D9:D3:6D:8D:91:83:1D:08:51:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwvAIbZXpZTuWNnTbY2Rgx0IUXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/d4f92b-2d13-4f2c-ad54-3becddfccae6/1/LrFJ-fvvSeLbhpx5_HFyv7o4-PI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/d4f92b-2d13-4f2c-ad54-3becddfccae6/1/RwvAIbZXpZTuWNnTbY2Rgx0IUXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.11.0/24
193.138.64.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:7b:ad:2b:4a:66:29:c0:ef:6f:f1:7c:d1:ce:e0:cc:f7:c9:
e9:3b:b4:d9:b5:67:c5:99:d3:11:79:e9:20:c3:e9:48:9d:d0:
f8:6c:94:a8:f7:48:7f:5b:5c:29:5f:af:98:ad:38:59:0f:6b:
bf:1f:b6:65:36:f0:f7:56:af:20:ad:24:ae:0a:a7:14:2d:49:
d8:14:52:c3:02:57:54:93:72:4e:da:c0:72:d5:ba:b0:c3:64:
37:61:3f:d0:78:4f:53:6e:0e:b4:92:40:5a:d7:55:8d:3a:31:
5f:2c:18:db:6a:12:2c:10:08:e5:d1:51:02:96:23:c1:43:77:
1c:59:03:1b:22:66:17:1a:eb:4f:e6:9f:bb:fb:2d:04:1a:d2:
cc:60:cf:5f:af:1b:e6:23:07:fd:0e:f1:03:a9:74:64:30:70:
fc:06:99:55:30:ec:38:c8:d7:fb:d3:40:9e:33:23:31:b8:0b:
6d:ee:a1:00:34:57:0e:e9:0b:b6:9b:c8:cc:91:08:4c:19:6a:
dc:33:4e:87:4d:c7:83:7d:2d:cd:ab:88:ad:4c:76:96:d0:22:
24:8d:74:38:fa:13:d8:05:8f:4b:9a:fe:04:01:96:15:7a:01:
86:79:d5:8f:01:10:14:25:04:03:0b:2e:b5:c1:f3:20:0e:ec:
48:7a:cc:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:19 2024 by rpki-client on console-ams.rpki-client.org