Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/dxGKkKSI39xGcp8czKbMQU2jWPw.roa
File: dxGKkKSI39xGcp8czKbMQU2jWPw.roa (raw, json)
Hash identifier: g5jlprNWJfaU6lTY3kTD+kNanV+KsU1wjgqsnEH7MvQ=
Subject key identifier: 77:11:8A:90:A4:88:DF:DC:46:72:9F:1C:CC:A6:CC:41:4D:A3:58:FC
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 018F9F6CE3BDE2D42988B1D191C5AC25A981
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/dxGKkKSI39xGcp8czKbMQU2jWPw.roa
Signing time: Wed 22 May 2024 08:31:04 +0000
ROA not before: Wed 22 May 2024 08:31:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 193.108.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 21 Jul 2024 09:28:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9f:6c:e3:bd:e2:d4:29:88:b1:d1:91:c5:ac:25:a9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: May 22 08:31:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77118a90a488dfdc46729f1ccca6cc414da358fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d0:dc:32:e3:f9:9c:03:a3:45:38:f1:af:41:
08:77:89:71:5c:b1:19:37:7e:77:5e:0b:c4:f1:0b:
ad:a9:35:d0:34:88:54:b2:0f:a9:10:1f:cf:7d:7b:
61:ff:d4:f6:6b:9e:41:67:bc:20:aa:05:b9:66:b2:
c6:df:ee:19:b7:cd:dc:99:f1:11:be:38:64:93:de:
5e:67:8c:39:62:69:e7:4a:82:df:b0:7c:ac:8f:08:
a0:5a:19:5a:2c:a2:54:e8:75:05:ad:2e:6f:a8:55:
22:3a:24:cd:96:65:3a:2c:f4:50:a0:f9:a3:26:73:
05:d9:7f:f3:61:47:0d:c6:88:85:57:b7:ea:8b:9d:
bc:03:0d:28:66:a6:bd:56:b0:53:05:02:0b:30:06:
22:a6:f0:16:ea:97:d5:86:30:19:b3:8e:ed:79:9a:
b0:1c:e7:3a:b4:eb:31:92:9d:9c:75:50:20:1a:d0:
27:40:a4:99:62:8f:e7:82:07:83:29:04:fd:56:b0:
86:03:52:51:e9:f9:f3:37:1e:89:bc:90:1c:a9:46:
71:62:7f:44:35:8a:35:ca:90:05:d7:93:35:44:f3:
d8:cb:62:2e:9a:1d:62:6a:a7:fa:11:38:c9:d0:9a:
09:0b:18:8d:ea:86:dc:38:22:95:be:37:66:20:93:
b2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:11:8A:90:A4:88:DF:DC:46:72:9F:1C:CC:A6:CC:41:4D:A3:58:FC
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/dxGKkKSI39xGcp8czKbMQU2jWPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.59.0/24
Signature Algorithm: sha256WithRSAEncryption
99:85:6a:29:9d:f6:60:db:c3:e4:65:19:7e:e8:68:bf:28:d1:
4c:d0:ec:06:79:2c:be:43:b2:6e:12:04:92:61:37:1d:ff:49:
79:b4:5d:c2:e6:72:bb:0c:f1:b1:f4:e5:76:b3:e5:6d:43:94:
d0:c4:12:19:f3:b7:2d:18:b6:7f:3d:83:87:b7:7c:e3:99:85:
96:75:7f:35:c2:b7:cb:91:48:91:50:84:99:82:11:37:4a:e8:
0c:ff:ef:89:a3:b6:f4:b5:9d:7a:d0:ce:37:74:7d:cb:64:a0:
df:66:82:14:40:54:9c:b2:d2:22:03:f1:a3:47:c8:e8:d0:39:
e7:5e:52:16:10:c7:9c:60:47:f6:3b:f9:9f:24:58:2e:df:0a:
23:b9:38:ea:43:4d:1a:69:9b:8d:5c:48:7f:3d:3b:32:65:9c:
15:c2:52:f4:96:43:fc:c3:31:30:a4:87:f8:7d:80:0c:18:33:
de:ca:41:03:83:08:7d:99:74:99:81:3c:1c:ed:2a:a3:50:71:
d6:8d:6b:ee:6c:4d:8b:f2:d4:e9:8d:ca:30:41:d7:47:b7:f3:
ed:00:ec:eb:5b:58:16:38:ab:84:20:08:b0:11:7a:99:db:39:
d5:78:98:79:f7:be:00:3a:3e:43:92:54:84:14:22:66:11:a8:
e7:27:6b:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 21 10:29:13 2024 by rpki-client on console-fra.rpki-client.org