Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/l3JY131mOqthDsuUR5bc8SZwBEs.roa
File: l3JY131mOqthDsuUR5bc8SZwBEs.roa (raw, json)
Hash identifier: oS7Cr31X5hH0/PxmA3t8S2r9kx6iRp5gpkXVbSRsAmQ=
Subject key identifier: 97:72:58:D7:7D:66:3A:AB:61:0E:CB:94:47:96:DC:F1:26:70:04:4B
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEC3726B62D5B17C597D84ED53419D
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/l3JY131mOqthDsuUR5bc8SZwBEs.roa
Signing time: Sun 01 Jan 2023 06:04:47 +0000
ROA not before: Sun 01 Jan 2023 06:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198115
IP address blocks: 193.192.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:c3:72:6b:62:d5:b1:7c:59:7d:84:ed:53:41:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=977258d77d663aab610ecb944796dcf12670044b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:52:26:ce:1f:0f:98:78:7a:4f:41:1d:84:9a:
f5:1f:d5:9c:8d:b5:5d:55:a9:6d:27:c1:c6:22:6b:
4a:e0:0b:42:1a:a2:6d:0b:f0:d2:78:81:03:62:15:
e4:0b:85:21:20:97:ae:4f:99:d8:7f:cf:98:f4:17:
c3:e1:62:2f:d6:75:38:54:3a:ae:52:e2:74:7f:de:
63:ef:9d:6c:f4:cc:a5:cd:c8:b2:a4:63:55:b8:85:
72:5e:21:5f:a8:d4:78:bd:a1:55:c7:bf:be:22:2b:
fd:d3:20:cb:28:91:12:c5:e5:03:43:8d:8d:75:ef:
1d:51:83:fe:ba:f9:64:2c:1b:8a:bf:ca:4b:22:da:
a1:bf:97:29:73:27:ac:e1:56:44:fc:31:8e:d7:64:
54:93:2a:48:cf:46:a9:18:da:d5:d4:8f:ee:1e:26:
e7:58:bd:93:03:7d:73:e0:69:a9:e4:4b:81:ce:17:
b4:a9:a7:2a:04:7f:e0:6d:80:f0:37:30:a7:27:f0:
8c:b2:e6:af:96:3e:7b:21:40:0b:d2:3d:aa:d3:67:
ef:8a:2e:fb:12:61:39:42:55:c9:44:df:e7:65:29:
bc:00:14:ce:c8:88:aa:1e:a9:97:93:f8:9f:9b:96:
82:14:da:88:42:5a:37:43:36:57:ec:f2:ec:ef:f2:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:72:58:D7:7D:66:3A:AB:61:0E:CB:94:47:96:DC:F1:26:70:04:4B
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/l3JY131mOqthDsuUR5bc8SZwBEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.189.0/24
Signature Algorithm: sha256WithRSAEncryption
72:93:2a:0c:39:55:92:ec:68:39:be:6a:28:cf:f9:76:f1:6f:
71:c7:9e:f4:69:41:cd:02:1d:89:36:ed:b4:cd:97:c1:21:b8:
dd:54:8b:db:19:4f:18:fb:55:ba:69:32:f3:8b:32:0b:69:55:
25:57:3f:3b:71:e6:0d:e9:87:50:01:8a:ef:47:5a:59:eb:c6:
ab:66:d3:eb:3a:19:0d:28:ab:d9:b8:48:39:d4:5c:80:54:14:
58:46:08:8b:37:56:e3:2c:4b:dd:81:58:e6:f7:b3:5a:8b:51:
51:ac:20:ca:99:67:98:24:d1:dc:d8:75:b9:dc:92:a1:f0:af:
5d:9b:5a:a2:8b:55:ef:dd:5e:a0:ee:b0:d5:6e:a0:d8:e1:54:
0e:20:1d:e2:b7:01:d5:f5:7e:16:a3:bf:3a:49:e2:7d:57:6f:
08:99:f2:b5:b3:f8:66:04:ad:7f:14:21:60:4e:ae:25:2a:44:
ff:31:8c:ac:fa:85:0f:09:c9:6c:e8:fd:3a:34:d7:0c:29:5c:
fc:a9:15:1d:a7:f5:b1:76:bd:93:b0:bb:fc:b0:e7:34:a9:a4:
2b:2d:9c:40:92:ae:c7:e9:5b:ca:5e:59:dd:28:7b:25:ff:14:
ba:9d:b9:8d:a0:27:22:3f:04:87:9d:b7:ea:3f:51:f3:4b:b4:
c3:1a:ef:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org