Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/9RmYszNX-sAGZo5Jz7h1tcrBIYY.roa
File: 9RmYszNX-sAGZo5Jz7h1tcrBIYY.roa (raw, json)
Hash identifier: Ab3lyqiUsdC1pvbF6FqGrDf9qia2TO4JDo49anouwuQ=
Subject key identifier: F5:19:98:B3:33:57:FA:C0:06:66:8E:49:CF:B8:75:B5:CA:C1:21:86
Certificate issuer: /CN=d0c3d358812e60b680e4e11632f139560bf525fb
Certificate serial: 0188265C363025080732BD3F2F8FBA30CB03
Authority key identifier: D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/9RmYszNX-sAGZo5Jz7h1tcrBIYY.roa
Signing time: Tue 16 May 2023 20:59:17 +0000
ROA not before: Tue 16 May 2023 20:59:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 194.50.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Nov 2023 18:09:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:26:5c:36:30:25:08:07:32:bd:3f:2f:8f:ba:30:cb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0c3d358812e60b680e4e11632f139560bf525fb
Validity
Not Before: May 16 20:59:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f51998b33357fac006668e49cfb875b5cac12186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a6:50:ca:23:b1:11:ed:df:2a:58:24:78:f9:
66:ee:5d:51:5d:62:5f:d2:d3:f5:65:2b:28:66:18:
c0:9d:26:c4:5e:c9:9f:15:7d:3d:12:7d:dc:eb:68:
eb:cd:10:57:58:e7:59:31:61:82:b2:2b:2a:4a:be:
89:71:d3:d2:31:08:06:db:e6:a5:46:35:e8:f8:be:
32:2f:a6:ac:2a:fb:d6:d9:0a:f5:cd:c9:2d:fb:40:
ac:c1:17:6d:b1:2f:10:91:b0:dc:4f:b9:62:73:eb:
16:c1:8f:e0:e1:fd:e2:02:4e:a8:5b:33:e5:ee:cd:
71:21:db:d5:76:30:cd:41:f3:c9:7a:ed:6a:1f:cf:
02:af:61:4a:5f:86:cf:ea:76:87:3a:1d:f4:5c:70:
f3:ba:f6:0f:9e:24:4f:df:24:ba:a0:b7:2b:c6:bb:
45:6f:ab:24:1d:9f:85:53:cb:0f:ac:87:a5:55:bd:
d8:b8:69:df:80:d9:50:13:98:40:ba:94:5d:ff:12:
7d:a5:85:c8:da:a2:56:88:9b:93:32:37:ac:41:d5:
77:8c:d0:ed:7d:e7:44:05:fd:b3:86:64:40:a9:98:
cb:9c:40:9d:c1:39:38:1f:1a:d7:61:71:d5:58:f9:
57:c9:02:38:dd:8c:27:c5:95:84:14:d6:18:fc:be:
4a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:19:98:B3:33:57:FA:C0:06:66:8E:49:CF:B8:75:B5:CA:C1:21:86
X509v3 Authority Key Identifier:
keyid:D0:C3:D3:58:81:2E:60:B6:80:E4:E1:16:32:F1:39:56:0B:F5:25:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/9RmYszNX-sAGZo5Jz7h1tcrBIYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/da5e3b-ca0b-4fce-b1e2-5dd336f38060/1/0MPTWIEuYLaA5OEWMvE5Vgv1Jfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.153.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ea:7c:40:96:8a:d5:38:a8:c9:2e:11:e0:50:06:09:e0:0b:
92:44:cc:67:c6:68:8b:7a:2e:dc:d8:56:e2:d4:3a:3c:d9:94:
93:6c:d1:37:27:89:a3:4d:98:cf:ea:f5:ea:b8:d3:16:1c:b8:
64:94:65:5b:f1:0b:44:a3:f0:c3:ad:3c:ec:37:ba:37:33:0d:
6c:98:2f:d8:d7:41:56:c6:ff:86:67:e1:4b:85:75:1b:d4:44:
22:df:2d:f9:9c:7a:51:6d:5c:be:3c:1c:4a:63:73:1f:da:a6:
a5:dc:d5:f0:f7:56:f0:35:bf:a8:7b:95:7a:bc:b3:20:d6:a5:
3d:bd:2e:be:c9:66:f1:59:11:06:83:02:bf:d2:eb:b6:f7:aa:
c3:7f:7d:3c:2f:37:9d:6f:18:7f:30:e5:65:46:5d:cb:e6:53:
af:4a:68:1c:a7:3f:97:ff:95:a3:3b:b4:e3:a9:de:80:ae:aa:
42:c5:19:d2:d4:d1:89:20:d2:71:64:f3:ed:f7:49:1d:71:4c:
74:b1:85:63:ab:c1:1a:9b:b4:d1:2d:5a:98:81:87:bd:3c:0b:
bb:1a:77:33:09:d6:99:cf:69:dd:63:89:81:4f:72:e1:7b:80:
7c:ba:2b:3e:d8:fe:05:46:71:7a:16:77:5d:2d:ea:ad:5d:76:
6b:fa:1b:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:20 2024 by rpki-client on console-fra.rpki-client.org