Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/lfwi79FRAihc_qblVilXSUDErgo.roa
File: lfwi79FRAihc_qblVilXSUDErgo.roa (raw, json)
Hash identifier: y0pY8UibFMwu1sHdBwJIoP8pXA1/yasxJAjnCVHEaWM=
Subject key identifier: 95:FC:22:EF:D1:51:02:28:5C:FE:A6:E5:56:29:57:49:40:C4:AE:0A
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0185734CBB4FFB005C941E2D186B6E1C6A95
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/lfwi79FRAihc_qblVilXSUDErgo.roa
Signing time: Mon 02 Jan 2023 16:24:46 +0000
ROA not before: Mon 02 Jan 2023 16:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210221
IP address blocks: 193.118.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:bb:4f:fb:00:5c:94:1e:2d:18:6b:6e:1c:6a:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 2 16:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95fc22efd15102285cfea6e55629574940c4ae0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:89:31:6d:c4:b4:a5:ca:7f:7c:4c:5b:9f:03:
8b:9d:57:b9:db:41:97:a0:c1:7e:c7:60:de:d6:c5:
c3:33:9e:4b:5d:ff:e1:48:2e:b7:91:53:72:31:00:
16:4f:a7:4d:5d:95:3d:3a:82:dc:a9:fd:1f:47:05:
31:8a:fe:ec:62:eb:fe:2d:53:01:bd:17:c4:bc:33:
de:08:3e:ab:14:f1:5a:ef:79:ee:1d:ff:48:23:4c:
31:f4:d1:da:ac:3c:44:4d:49:34:5c:e9:f4:e0:84:
d9:10:b9:1e:c3:0c:51:87:0d:0a:d1:6b:2a:5a:08:
ad:fe:63:8b:86:f8:f3:8f:0c:2e:b2:c8:7e:4d:d3:
24:bc:7f:bf:2b:db:ac:9f:b3:27:26:42:b9:39:06:
f6:a0:c8:6c:3a:3f:f6:b4:51:b5:69:99:34:75:f5:
67:43:3b:46:44:24:77:3c:0d:b6:ed:32:f9:f7:bc:
db:9a:b7:4e:6a:cc:fe:0a:11:08:83:11:91:7c:de:
6c:15:d3:56:2c:6d:aa:26:54:0a:4d:1b:ba:cf:3e:
0b:31:e9:75:23:cc:5c:61:5c:f2:9f:00:a1:66:a4:
2f:1e:6b:f7:78:f1:8e:8f:d9:54:f1:f3:46:79:75:
8c:b3:74:b6:e7:ae:94:9c:e0:94:4d:27:5f:a6:57:
6a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:FC:22:EF:D1:51:02:28:5C:FE:A6:E5:56:29:57:49:40:C4:AE:0A
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/lfwi79FRAihc_qblVilXSUDErgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.118.165.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:57:c0:09:d2:68:90:22:72:3e:d5:a4:7b:34:58:f4:84:aa:
6a:77:cf:d2:e6:81:db:91:a9:db:f4:8c:f3:63:5a:c8:3e:21:
77:01:81:f4:78:a8:67:c9:42:00:00:35:bc:83:16:8a:d3:2f:
c0:2f:f3:35:60:3e:63:52:b6:32:74:13:b8:9e:d2:3c:8f:a4:
2a:88:89:a0:3f:33:74:7e:ba:24:c0:73:35:39:31:71:ae:4a:
90:02:b8:7d:34:ed:f0:d9:14:4a:8c:af:0c:69:8a:71:1a:61:
9e:f0:73:e4:fa:73:93:b8:08:4e:a2:84:c3:e6:90:c9:43:af:
2f:b2:76:ed:89:7b:6f:aa:50:78:ab:e1:0d:d2:8e:c3:e2:38:
2a:16:8e:ab:df:a8:df:4d:f9:15:f1:c3:c2:cc:c5:d6:6e:fc:
30:98:25:f8:52:3a:92:db:97:31:4e:ca:a5:8b:68:ba:81:b5:
d4:b8:e9:84:52:db:34:76:89:b5:2d:84:9e:ee:3d:5a:50:d4:
e5:b7:5d:88:3b:f6:97:fd:d2:35:4d:7e:4c:6f:59:b4:93:aa:
d0:72:68:3f:3f:f0:8e:a4:09:42:a6:e9:4a:38:6d:a8:66:de:
0a:44:55:93:9e:2a:74:83:c5:58:63:df:ca:42:6e:ab:fa:a2:
65:ae:7a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:28 2024 by rpki-client on console-ams.rpki-client.org