Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/_Rh_K9AXMudVcNNQEAQUpjZ8Q3s.roa
File: _Rh_K9AXMudVcNNQEAQUpjZ8Q3s.roa (raw, json)
Hash identifier: cVL6zA/RYsib0It58odc0+867kFjsv3Wpn/uKeEZ4Is=
Subject key identifier: FD:18:7F:2B:D0:17:32:E7:55:70:D3:50:10:04:14:A6:36:7C:43:7B
Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898
Certificate serial: 01856F393346073949EB002089C3B0C4E50E
Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/_Rh_K9AXMudVcNNQEAQUpjZ8Q3s.roa
Signing time: Sun 01 Jan 2023 21:24:57 +0000
ROA not before: Sun 01 Jan 2023 21:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44682
IP address blocks: 193.111.120.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:33:46:07:39:49:eb:00:20:89:c3:b0:c4:e5:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898
Validity
Not Before: Jan 1 21:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd187f2bd01732e75570d350100414a6367c437b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3c:50:23:ef:de:0c:1c:a5:34:12:e5:bb:6a:
0d:02:39:35:82:56:da:75:b1:67:d8:e0:7c:f7:45:
81:a1:5f:dd:48:af:19:9e:0a:72:99:e9:2b:7e:7d:
b8:d1:24:e1:92:53:63:65:6b:90:5d:1a:61:dc:55:
c1:53:9d:18:6e:6c:d9:2a:af:93:ce:4d:69:a9:a6:
40:03:72:7c:80:9f:49:76:3b:e1:af:38:28:64:4b:
c0:23:8e:6d:b4:94:eb:3c:b9:bd:dd:d6:a5:da:09:
8f:31:72:28:0b:6f:fb:11:54:24:c3:5f:70:3f:11:
31:1d:eb:84:8f:e4:12:30:d3:ae:41:46:8a:e0:ed:
58:97:84:94:93:ed:e8:42:4d:36:73:8b:58:c1:3a:
74:66:9b:0d:e5:64:9c:f2:f4:76:86:8d:ff:16:7e:
4c:b1:24:1b:08:35:14:35:57:fa:7d:83:07:a1:60:
ba:b9:b2:b8:10:b9:31:ff:f5:84:03:1d:c2:e8:ac:
94:41:da:6d:22:bb:85:f7:b5:e5:f2:a8:a7:1d:38:
23:17:da:14:77:72:c4:e9:4b:13:d0:e3:b8:91:43:
78:d5:82:11:78:43:e1:6c:40:36:83:e2:e9:db:74:
ee:34:30:69:bd:e0:46:35:45:d1:2b:2c:ce:37:fb:
e8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:18:7F:2B:D0:17:32:E7:55:70:D3:50:10:04:14:A6:36:7C:43:7B
X509v3 Authority Key Identifier:
keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/_Rh_K9AXMudVcNNQEAQUpjZ8Q3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.120.0/23
Signature Algorithm: sha256WithRSAEncryption
33:8e:22:0c:f8:84:93:49:f2:3c:86:ed:3b:c3:66:8c:2d:6b:
c1:e7:a9:91:ae:fa:0a:f8:f6:f4:8d:94:4c:98:1b:76:72:a8:
87:ce:6e:58:74:b6:09:e2:9d:c7:29:0a:0d:99:6f:7c:f4:ae:
44:f6:0b:7f:d9:cc:9f:e3:bd:b0:62:d1:c3:73:53:46:b0:dd:
6f:07:30:53:63:7a:eb:7f:f6:5a:bc:48:94:25:9f:c5:01:84:
a2:16:03:d3:a3:c1:e1:b1:f9:71:a9:ef:38:cb:c6:01:6f:a8:
6a:8b:1e:e8:79:d4:63:2c:ba:73:7d:15:9d:7a:0a:9b:70:c7:
e2:99:3e:de:61:d9:04:e9:5b:56:98:ec:14:ad:c3:b1:8b:a0:
7e:d1:ca:f0:27:bb:05:f1:ee:49:6d:2e:d4:8d:8d:ea:99:31:
1f:2e:00:49:ae:4f:22:c2:89:38:59:5a:5b:d9:02:2d:d9:0e:
64:83:52:90:dd:de:28:42:eb:20:28:7d:ab:cf:d3:5d:a2:9d:
f0:16:ed:f3:f8:0d:a9:66:70:f4:82:24:84:54:1f:41:7a:3c:
2d:78:ed:5f:6b:38:ee:51:47:82:c9:d6:54:11:69:26:76:fc:
62:18:f3:b8:30:f6:47:42:eb:e9:c8:4f:b2:30:94:7f:8a:b5:
1a:b0:67:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:51 2024 by rpki-client on console-ams.rpki-client.org