Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/I56Mk_IShhD7AgXIO5yoQkEiT4U.roa
File: I56Mk_IShhD7AgXIO5yoQkEiT4U.roa (raw, json)
Hash identifier: TI5ha3Dma51Q66lchZ2QaRio6RM/zkS22qN0cGjr6Cg=
Subject key identifier: 23:9E:8C:93:F2:12:86:10:FB:02:05:C8:3B:9C:A8:42:41:22:4F:85
Certificate issuer: /CN=34eaf4fe82d4ba7b26f08c3972f3b956ade56d49
Certificate serial: 01856FC24CFD24BE7F9AAD7FA036D27CBEB6
Authority key identifier: 34:EA:F4:FE:82:D4:BA:7B:26:F0:8C:39:72:F3:B9:56:AD:E5:6D:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOr0_oLUunsm8Iw5cvO5Vq3lbUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/I56Mk_IShhD7AgXIO5yoQkEiT4U.roa
Signing time: Sun 01 Jan 2023 23:54:42 +0000
ROA not before: Sun 01 Jan 2023 23:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50057
IP address blocks: 193.150.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:4c:fd:24:be:7f:9a:ad:7f:a0:36:d2:7c:be:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34eaf4fe82d4ba7b26f08c3972f3b956ade56d49
Validity
Not Before: Jan 1 23:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=239e8c93f2128610fb0205c83b9ca84241224f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:43:f0:81:79:87:07:6d:59:f6:79:02:df:4c:
5f:47:d5:74:49:08:a2:b1:c2:40:cf:1c:d6:e1:8e:
3b:f0:c7:1c:a8:a4:5a:7e:84:83:f0:15:a8:77:e5:
aa:31:75:3a:af:8a:cc:48:d5:14:45:bc:92:df:13:
32:6f:74:f5:8e:f3:3c:96:78:a9:1f:6d:64:3f:dd:
48:61:47:20:ec:4d:e6:ce:df:57:3b:7c:8d:c0:29:
2b:d9:e7:68:79:ed:bd:d0:df:69:9b:12:f7:73:33:
1d:6f:59:9a:57:38:f8:94:f4:6d:7a:23:e2:37:a2:
ee:84:12:7d:7a:84:1e:f1:48:c2:2b:34:0a:4b:9a:
45:9d:67:48:ba:5e:48:ee:fb:d4:f4:ce:10:63:1c:
c0:a6:dd:11:dc:bf:dd:0f:69:d3:22:44:c8:03:02:
6f:74:83:79:f3:a6:b8:79:25:2c:e5:a9:fa:2d:a6:
ea:0c:c6:5c:d8:b0:99:51:10:c7:60:54:65:f5:d7:
3b:fd:9d:e3:c7:ac:bf:47:ea:3f:67:19:5a:d5:ce:
da:a8:32:e2:b9:54:a2:cd:ff:c9:88:30:b2:f2:89:
6a:e1:fa:20:d2:0c:32:cc:76:69:9f:4d:56:67:7a:
d8:68:1b:ce:36:b4:4d:27:ad:2c:e8:73:97:b4:a7:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:9E:8C:93:F2:12:86:10:FB:02:05:C8:3B:9C:A8:42:41:22:4F:85
X509v3 Authority Key Identifier:
keyid:34:EA:F4:FE:82:D4:BA:7B:26:F0:8C:39:72:F3:B9:56:AD:E5:6D:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOr0_oLUunsm8Iw5cvO5Vq3lbUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/I56Mk_IShhD7AgXIO5yoQkEiT4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d3fac8-cc0c-45c4-9b44-b6e2c959edfc/1/NOr0_oLUunsm8Iw5cvO5Vq3lbUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.66.0/24
Signature Algorithm: sha256WithRSAEncryption
34:da:5d:cc:98:96:a9:6f:70:fa:21:09:ad:29:2d:3a:88:57:
4e:c3:63:bf:0c:83:14:6a:ff:a1:76:04:75:cb:9c:8c:8d:cc:
8f:20:a4:fc:d8:3e:8f:ab:38:72:44:92:23:c8:bd:25:71:75:
d0:d9:2f:fe:da:e8:4c:07:2d:63:5b:1f:a0:c0:48:39:2f:9e:
1e:56:73:03:89:6c:9f:2a:8a:3a:b1:b9:d4:05:ef:51:46:57:
94:81:70:03:81:d8:3e:b8:46:be:25:2b:76:21:b5:ee:b3:d8:
24:c8:c4:3f:5e:f9:10:b0:c8:93:76:34:60:a1:8d:6f:fd:a9:
b4:cf:89:97:fb:a4:45:d7:59:11:8a:8b:0c:5a:f3:2d:72:2d:
a9:e3:b8:f2:58:52:6c:61:02:cb:d2:19:c4:40:f2:8c:55:03:
7e:61:3a:7e:77:49:c6:13:56:14:3a:0e:ff:48:26:9d:d5:c8:
1b:a2:79:41:1c:2c:c4:ad:33:c8:8b:29:ba:f2:6e:ff:e1:b7:
0e:26:ba:d6:79:80:7b:5e:91:4f:81:7d:56:77:9d:43:11:f5:
01:1b:1d:d4:61:cc:ff:2e:1d:c5:78:45:19:d4:f1:ca:63:cd:
b6:ee:2a:b8:64:ea:b2:d4:ab:ee:95:63:40:b7:3d:29:5d:4b:
ab:77:66:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org