Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/1a43f0-c027-4fdc-8515-45f496f2fe75/1/yr7tDwunFE3xugI6P4uP8j01sfo.roa
File: yr7tDwunFE3xugI6P4uP8j01sfo.roa (raw, json)
Hash identifier: AA5UMf3HIE36CO7VUlvknFoUuAJQKheg0TDIJCfFPo0=
Subject key identifier: CA:BE:ED:0F:0B:A7:14:4D:F1:BA:02:3A:3F:8B:8F:F2:3D:35:B1:FA
Certificate issuer: /CN=46eb11af9355da9a2b5df73ecdd7fd0967a4b58c
Certificate serial: 01900B5F9EFC2ED7C85283B32F33D25620F4
Authority key identifier: 46:EB:11:AF:93:55:DA:9A:2B:5D:F7:3E:CD:D7:FD:09:67:A4:B5:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RusRr5NV2porXfc-zdf9CWektYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/1a43f0-c027-4fdc-8515-45f496f2fe75/1/yr7tDwunFE3xugI6P4uP8j01sfo.roa
Signing time: Wed 12 Jun 2024 07:35:34 +0000
ROA not before: Wed 12 Jun 2024 07:35:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25512
IP address blocks: 193.104.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Jun 2024 00:12:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:0b:5f:9e:fc:2e:d7:c8:52:83:b3:2f:33:d2:56:20:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46eb11af9355da9a2b5df73ecdd7fd0967a4b58c
Validity
Not Before: Jun 12 07:35:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cabeed0f0ba7144df1ba023a3f8b8ff23d35b1fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:17:4a:32:a0:a0:de:55:82:84:71:5d:51:
5e:f8:52:eb:67:e6:04:81:35:66:7f:c5:03:fd:9c:
f6:73:40:63:cf:be:a9:9d:58:87:ab:bc:e9:91:b2:
f8:a7:b6:6b:74:4f:47:0e:b6:b4:ed:b3:bd:28:d1:
74:bf:11:a0:0b:2d:4d:3d:60:02:87:62:5e:1d:a3:
cd:cf:9e:5c:91:b0:0e:a5:6b:56:5e:dd:e0:63:89:
8f:f7:00:f6:0c:96:d7:14:6c:9b:55:59:dc:99:61:
8a:33:6f:e2:8c:0b:c6:03:ed:5f:b5:97:bf:93:56:
f1:a0:35:b8:6c:58:fc:da:6d:a4:6b:1c:0f:0a:ec:
11:63:b5:90:1d:da:ee:0c:db:58:88:cc:4c:8e:96:
b7:3b:52:fa:9e:9a:8b:93:34:5e:32:e8:bc:51:f5:
9b:c8:b0:e8:61:7c:4c:21:32:cd:5b:af:56:8c:d5:
33:e7:14:a0:42:51:f7:a1:d9:71:01:34:96:31:55:
fd:e2:0c:19:8d:6c:e7:56:91:36:3a:ed:78:ad:df:
27:e7:29:3e:5a:04:83:65:c9:7d:f7:22:74:d9:e2:
1f:ce:b3:1c:57:ec:bc:83:39:d8:e9:2e:d2:6b:59:
f6:79:5f:aa:86:7c:78:21:7e:07:d5:60:fa:bd:32:
b1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:BE:ED:0F:0B:A7:14:4D:F1:BA:02:3A:3F:8B:8F:F2:3D:35:B1:FA
X509v3 Authority Key Identifier:
keyid:46:EB:11:AF:93:55:DA:9A:2B:5D:F7:3E:CD:D7:FD:09:67:A4:B5:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RusRr5NV2porXfc-zdf9CWektYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/1a43f0-c027-4fdc-8515-45f496f2fe75/1/yr7tDwunFE3xugI6P4uP8j01sfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/1a43f0-c027-4fdc-8515-45f496f2fe75/1/RusRr5NV2porXfc-zdf9CWektYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.172.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:1a:3f:9c:ae:5e:3a:7d:66:75:86:d1:c2:bf:70:4b:08:06:
5b:ef:03:68:d6:b4:75:35:b0:a9:86:61:f8:ce:5b:af:84:02:
a4:d6:db:82:fb:b6:f1:d4:bb:34:b6:aa:59:eb:87:b0:e8:bf:
cb:4f:53:41:e3:94:44:fc:44:fb:26:99:bd:61:06:9e:f2:21:
96:a9:e5:fa:d6:6c:05:73:c5:c1:de:ef:3b:cb:04:40:c5:c6:
5e:84:6d:cd:54:dd:7d:86:60:c6:88:e7:77:e7:a5:94:94:f2:
83:6c:10:01:dd:4f:b8:37:e0:18:7f:50:5f:bb:7e:a9:9d:0f:
df:22:dd:71:8a:2d:eb:b5:e6:0f:6f:f8:86:7c:b5:13:d0:62:
11:6b:66:09:bd:dc:b5:ce:9e:c4:bb:1d:ca:19:f2:7f:dd:16:
8c:fc:27:73:96:b8:57:3e:96:f2:06:7b:02:a8:a7:ba:c6:21:
f0:92:14:53:7d:d0:ee:d8:09:ac:58:fd:af:d5:8f:76:39:ff:
3d:5d:a5:53:8a:f3:04:81:0f:67:c7:69:b2:3e:64:b7:63:ca:
74:d8:c6:43:8d:75:32:e3:e7:48:5c:ac:d9:de:eb:73:b5:84:
fc:d0:96:0f:24:23:df:17:58:00:68:51:51:0d:55:06:9e:f5:
56:55:a3:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:25:38 2024 by rpki-client on console-fra.rpki-client.org