Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/205c19-b73a-48fe-a086-356c09380887/1/8S8pmn-QZ1N8XQTM5vLq1jCqpPk.roa
File: 8S8pmn-QZ1N8XQTM5vLq1jCqpPk.roa (raw, json)
Hash identifier: qnkoJdwqOGICOkPMdiYfXwjE3VjmLdU9f2r1y4em9iU=
Subject key identifier: F1:2F:29:9A:7F:90:67:53:7C:5D:04:CC:E6:F2:EA:D6:30:AA:A4:F9
Certificate issuer: /CN=9f8e77e738313e6570684dd152c2e284332b2c5b
Certificate serial: 018573B187C1724BB77B4E7D1EF91C416318
Authority key identifier: 9F:8E:77:E7:38:31:3E:65:70:68:4D:D1:52:C2:E2:84:33:2B:2C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n4535zgxPmVwaE3RUsLihDMrLFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/205c19-b73a-48fe-a086-356c09380887/1/8S8pmn-QZ1N8XQTM5vLq1jCqpPk.roa
Signing time: Mon 02 Jan 2023 18:14:52 +0000
ROA not before: Mon 02 Jan 2023 18:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8412
IP address blocks: 193.227.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:87:c1:72:4b:b7:7b:4e:7d:1e:f9:1c:41:63:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f8e77e738313e6570684dd152c2e284332b2c5b
Validity
Not Before: Jan 2 18:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f12f299a7f9067537c5d04cce6f2ead630aaa4f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:07:f2:2e:d3:51:f1:88:dc:4f:da:64:96:e8:
e3:c2:28:c7:c0:ad:42:d0:5a:4a:e3:fe:25:88:8e:
4c:32:5e:2c:37:1b:cf:2e:1e:74:cb:bc:ab:83:63:
8a:51:06:3d:50:4d:f2:e9:3d:de:d4:7f:76:4d:46:
f8:fc:40:15:19:41:41:94:5e:a6:58:0b:6f:d7:f1:
09:11:f5:0a:06:f5:c1:24:f1:14:6f:64:ef:49:f0:
5d:20:a2:41:3a:b4:5f:a8:7a:3d:5a:17:db:5d:9e:
bd:91:59:1e:ec:15:38:2e:11:52:b4:a2:05:3d:35:
ae:77:1c:6f:1c:64:24:17:6e:1d:2a:7b:0d:95:0a:
ee:29:16:5a:49:b2:0d:e1:9c:09:f8:87:e4:2b:01:
c1:b9:d4:c9:b4:71:e6:ac:70:14:3e:50:f4:9c:bd:
91:05:23:b0:2e:36:ed:41:50:77:32:da:92:c7:02:
4c:e5:56:79:8e:ec:59:a4:4b:38:fd:44:e4:e2:f9:
72:0f:40:f9:be:65:cd:5f:f3:ac:79:4b:c7:29:3a:
12:57:40:d7:42:ab:b1:29:09:2c:d5:40:82:84:d0:
88:24:89:17:e3:6e:48:19:3a:d2:42:e4:f0:18:9b:
e3:32:1f:b1:00:ba:05:45:7d:8c:f6:fc:cf:ce:fb:
81:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:2F:29:9A:7F:90:67:53:7C:5D:04:CC:E6:F2:EA:D6:30:AA:A4:F9
X509v3 Authority Key Identifier:
keyid:9F:8E:77:E7:38:31:3E:65:70:68:4D:D1:52:C2:E2:84:33:2B:2C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n4535zgxPmVwaE3RUsLihDMrLFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/205c19-b73a-48fe-a086-356c09380887/1/8S8pmn-QZ1N8XQTM5vLq1jCqpPk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/205c19-b73a-48fe-a086-356c09380887/1/n4535zgxPmVwaE3RUsLihDMrLFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.227.108.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:7e:98:5c:4f:97:d8:4b:7e:be:02:9e:a3:dd:79:d3:40:f0:
b9:98:25:d5:5d:b7:6f:7c:e2:d4:a3:62:2c:46:93:78:7c:f8:
ba:a8:64:0b:9a:ae:19:a9:49:36:61:04:a6:88:c0:5a:9e:68:
15:fc:16:e1:35:1b:9f:0a:cf:e4:94:db:30:b4:49:49:c8:e2:
2e:1d:5c:2b:c8:c1:6a:3f:da:a2:1e:32:f4:25:80:da:7e:75:
9b:c8:e6:fc:54:b5:21:1f:6d:ad:fa:11:b4:b8:2a:ab:f6:e1:
43:5d:f9:43:b7:78:3d:97:52:2a:29:74:30:07:10:6b:91:3a:
c1:04:47:17:36:95:5b:f6:75:cb:5a:49:4c:c8:56:7a:86:98:
f1:9c:0a:e9:dc:94:3e:f8:bc:be:6c:a5:cf:d3:af:87:4a:e4:
eb:88:f5:3b:e8:6f:69:1e:55:7f:a3:9d:ed:ba:1c:73:81:d0:
2b:37:86:a2:d3:8a:67:bb:f9:38:1b:b7:e8:78:5d:7b:2f:40:
89:bf:27:10:ca:dc:74:66:d1:4c:30:2f:c3:a4:a4:82:41:7d:
ec:a0:c9:2c:0d:4c:7d:b1:87:84:3d:9e:51:ca:91:48:75:c8:
c9:cf:57:69:33:56:6b:10:32:5f:bc:3c:eb:ad:d5:2c:c6:d3:
dd:93:4a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:36 2024 by rpki-client on console-ams.rpki-client.org