Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/AOYlb4u4vC_M9_pAkARpnALxN9U.roa
File: AOYlb4u4vC_M9_pAkARpnALxN9U.roa (raw, json)
Hash identifier: qD7ZXaTsoKBmKyN5xEKu3UIruSWWkEt/fpnNhir8yGM=
Subject key identifier: 00:E6:25:6F:8B:B8:BC:2F:CC:F7:FA:40:90:04:69:9C:02:F1:37:D5
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018A197AFD8606AAB593AAF9FF88F4A989C4
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/AOYlb4u4vC_M9_pAkARpnALxN9U.roa
Signing time: Mon 21 Aug 2023 19:03:25 +0000
ROA not before: Mon 21 Aug 2023 19:03:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42694
IP address blocks: 193.163.74.0/24 maxlen: 24
193.163.101.0/24 maxlen: 24
2a13:5800::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 07 Dec 2023 15:41:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:7a:fd:86:06:aa:b5:93:aa:f9:ff:88:f4:a9:89:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Aug 21 19:03:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00e6256f8bb8bc2fccf7fa409004699c02f137d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ab:62:53:2f:36:44:eb:81:ba:88:92:f3:0b:
cd:91:2d:1c:94:17:a8:f7:4b:27:67:72:b5:7d:02:
f8:60:70:81:5e:2c:b1:d5:35:f0:f0:9c:fb:88:bc:
ef:79:af:ce:d0:4b:d4:92:ad:94:86:5d:9b:8b:9a:
03:d0:12:40:d5:af:65:0f:30:01:ec:24:67:5e:42:
eb:1b:61:23:15:dd:51:76:c9:5a:c3:b3:47:af:e9:
0e:64:b8:ea:e2:0c:03:7b:6a:e3:67:0d:e3:a1:d7:
6c:65:46:62:3e:ae:f5:a5:26:25:4f:70:8c:2d:be:
2f:4d:bd:70:62:14:3d:7d:09:5e:3f:03:93:62:8b:
8f:de:75:68:a9:6f:39:5b:b4:f5:f2:38:c8:99:e4:
dd:50:01:bb:91:0d:5a:56:3e:c7:2f:1a:74:99:7e:
c1:65:ee:fe:32:0c:29:1a:21:5d:96:38:fe:c6:2e:
0e:d8:84:41:e9:2f:ec:ba:a2:db:27:2f:a9:db:7f:
a3:7c:ea:f6:df:66:c2:34:97:58:aa:2a:8a:4c:18:
67:3a:1d:88:d5:30:67:eb:b7:d2:40:d0:51:09:ca:
36:88:f7:2d:7f:f0:4f:23:e3:2a:e3:1d:24:2a:94:
cb:18:4d:b6:04:ca:a8:61:57:64:e7:38:a3:18:fb:
e4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E6:25:6F:8B:B8:BC:2F:CC:F7:FA:40:90:04:69:9C:02:F1:37:D5
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/AOYlb4u4vC_M9_pAkARpnALxN9U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.74.0/24
193.163.101.0/24
IPv6:
2a13:5800::/29
Signature Algorithm: sha256WithRSAEncryption
52:71:10:24:e1:7a:e7:93:6e:4e:72:4b:47:f8:c6:31:f6:12:
7e:3d:fa:1d:de:3e:c0:7e:c8:52:35:20:76:b7:26:60:b1:8c:
3b:d0:45:9f:97:54:96:f7:d3:d1:e7:d8:85:b8:b4:bf:f0:b6:
bc:eb:51:b5:a3:00:41:ef:1e:5f:4a:e3:4e:4a:6d:e5:3a:cf:
c3:14:89:f6:02:8e:21:18:b0:0a:22:e7:67:f4:c7:7d:7c:00:
3f:bf:21:19:d5:81:ed:d8:21:50:4d:d5:61:24:06:7c:11:bf:
39:e0:56:3f:2e:0b:87:9e:af:29:80:8f:27:e7:3c:b5:6f:ce:
1b:5b:aa:6c:a3:d5:77:08:91:00:1d:fa:e4:56:52:2b:31:13:
9f:e3:42:e7:4f:41:74:7d:c6:9e:59:26:e6:2c:26:29:bf:34:
b1:f4:a3:75:15:60:6f:ed:16:9f:5f:b2:78:59:c4:15:60:ee:
5f:c3:90:69:8d:31:ad:7e:37:c4:13:34:d7:9a:61:c5:1d:6c:
27:40:85:81:20:d9:b3:30:c6:f5:7a:02:d1:2f:51:a6:46:e6:
76:7c:9b:97:85:4c:16:38:01:22:05:52:52:f8:e1:99:6b:c3:
c0:59:78:35:1a:bb:56:5c:8c:24:b1:d9:e2:c8:46:f5:87:c3:
45:b1:02:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:26 2024 by rpki-client on console-ams.rpki-client.org