Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e393d8-1252-4c27-baaa-53b04342783d/1/QobzQRmdnqpUn0-o4p-xjLWR-yY.roa
File: QobzQRmdnqpUn0-o4p-xjLWR-yY.roa (raw, json)
Hash identifier: IIyFRTdGZh+wgUlWbRTXgRq2+f9VRFGDUfAQAAzSMT0=
Subject key identifier: 42:86:F3:41:19:9D:9E:AA:54:9F:4F:A8:E2:9F:B1:8C:B5:91:FB:26
Certificate issuer: /CN=13669c0c085cc978a372a0e4f05648398e1e7fe8
Certificate serial: 019109D031A40F1270C3D5D043BC8D4EF3CC
Authority key identifier: 13:66:9C:0C:08:5C:C9:78:A3:72:A0:E4:F0:56:48:39:8E:1E:7F:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2acDAhcyXijcqDk8FZIOY4ef-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e393d8-1252-4c27-baaa-53b04342783d/1/QobzQRmdnqpUn0-o4p-xjLWR-yY.roa
Signing time: Wed 31 Jul 2024 17:22:04 +0000
ROA not before: Wed 31 Jul 2024 17:22:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 193.178.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 10:13:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:09:d0:31:a4:0f:12:70:c3:d5:d0:43:bc:8d:4e:f3:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13669c0c085cc978a372a0e4f05648398e1e7fe8
Validity
Not Before: Jul 31 17:22:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4286f341199d9eaa549f4fa8e29fb18cb591fb26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1e:ff:89:67:00:79:e4:21:a3:0c:66:f7:79:
f9:7e:99:54:03:13:4a:20:6c:29:f8:fa:a6:4a:cd:
c4:4f:9d:9d:cf:8d:60:8e:73:43:05:d5:37:22:cb:
64:f4:7a:24:bd:60:d3:e0:ff:d1:a2:6d:78:fa:92:
75:0c:6b:ba:ed:6f:45:28:fa:33:62:50:8e:0a:18:
a7:cc:c2:83:70:dc:16:af:61:bf:35:68:66:5d:09:
b2:7b:0b:39:fd:ad:11:19:d5:95:b0:a6:8e:a8:1a:
7f:4a:d6:1b:11:43:3a:6e:c8:1d:75:85:bb:d6:26:
a8:bc:8d:2c:b3:c0:25:b2:05:92:51:3a:a7:6f:12:
af:70:5e:07:48:d3:45:b4:bf:b6:9b:01:8f:18:04:
58:70:76:f7:9c:ad:24:48:cd:54:4b:e6:f0:49:bf:
9b:ae:1c:b1:7f:e3:28:d5:2b:44:bb:4e:e9:22:f4:
02:3f:7a:c0:e1:ea:59:cd:0d:ad:b9:2b:86:2f:35:
51:32:13:2e:87:07:9b:29:64:f8:fb:f6:61:9c:7d:
11:2a:aa:68:22:cc:4e:24:57:6a:6a:4c:94:54:fb:
63:eb:e2:07:3f:a9:a9:82:7d:be:dd:55:e1:1e:06:
97:37:a1:e3:1c:ca:11:56:41:22:30:68:78:61:2a:
3d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:86:F3:41:19:9D:9E:AA:54:9F:4F:A8:E2:9F:B1:8C:B5:91:FB:26
X509v3 Authority Key Identifier:
keyid:13:66:9C:0C:08:5C:C9:78:A3:72:A0:E4:F0:56:48:39:8E:1E:7F:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2acDAhcyXijcqDk8FZIOY4ef-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e393d8-1252-4c27-baaa-53b04342783d/1/QobzQRmdnqpUn0-o4p-xjLWR-yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e393d8-1252-4c27-baaa-53b04342783d/1/E2acDAhcyXijcqDk8FZIOY4ef-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.227.0/24
Signature Algorithm: sha256WithRSAEncryption
75:65:68:46:53:f7:a0:69:ce:b0:13:66:ee:43:00:46:34:89:
6e:13:ba:f7:75:36:89:78:46:67:37:24:e1:76:c6:e0:6f:ba:
c6:49:f9:c2:ad:b9:ba:bc:9a:53:42:83:d5:8f:ab:0f:d5:6a:
de:d4:d4:76:d4:4a:1d:8a:0b:a5:d1:a1:f7:00:8e:88:1b:68:
67:c6:29:e7:3d:07:d4:a5:bb:2d:dc:0b:4c:38:a0:87:43:c2:
bf:09:b1:2e:0f:71:e3:44:f4:2b:19:19:5d:ab:f5:81:a1:e8:
02:06:b8:a8:52:9c:d0:c7:6a:93:bc:15:6f:b4:b7:ba:6f:f4:
76:0e:ee:a7:1c:cc:aa:5f:89:31:7e:e2:a9:52:ef:28:82:d4:
e6:20:3e:7e:94:9c:c7:3b:f1:14:87:9c:dc:66:12:19:43:79:
a9:df:6d:9f:d7:cb:7f:9e:00:66:66:85:f3:14:3a:27:b6:bc:
6f:f3:1b:d2:72:33:08:00:3c:a2:58:03:29:5a:60:e1:d9:e9:
3f:91:bf:69:7c:ae:7d:00:25:6a:6e:27:bb:e0:3c:dd:ec:e4:
15:4d:8b:76:6c:67:61:ef:75:55:0e:68:bf:23:21:d8:75:70:
59:c1:27:9f:98:b2:03:03:9e:5c:0b:39:11:19:c2:be:3c:d3:
0d:6a:11:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 16:08:16 2024 by rpki-client on console-fra.rpki-client.org