Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/94fdd8-04dd-4a22-8410-7d79c07173f4/1/eE-3Ngy9R1Jupzu97vImbgh_bXg.roa
File: eE-3Ngy9R1Jupzu97vImbgh_bXg.roa (raw, json)
Hash identifier: 5G7mBlJRjerRBgmn5IjZccgqY6QTA4oyBvc4lelpitQ=
Subject key identifier: 78:4F:B7:36:0C:BD:47:52:6E:A7:3B:BD:EE:F2:26:6E:08:7F:6D:78
Certificate issuer: /CN=41600300eeed5af5d7fc09d8fc158b65935ed057
Certificate serial: 018CC3B66D2E1CA0A05C3DA62D0042CC7BC7
Authority key identifier: 41:60:03:00:EE:ED:5A:F5:D7:FC:09:D8:FC:15:8B:65:93:5E:D0:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWADAO7tWvXX_AnY_BWLZZNe0Fc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/94fdd8-04dd-4a22-8410-7d79c07173f4/1/eE-3Ngy9R1Jupzu97vImbgh_bXg.roa
Signing time: Mon 01 Jan 2024 06:29:21 +0000
ROA not before: Mon 01 Jan 2024 06:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8976
IP address blocks: 193.105.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 07:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:6d:2e:1c:a0:a0:5c:3d:a6:2d:00:42:cc:7b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41600300eeed5af5d7fc09d8fc158b65935ed057
Validity
Not Before: Jan 1 06:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=784fb7360cbd47526ea73bbdeef2266e087f6d78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:26:2b:41:76:bd:2d:bf:60:fa:60:3a:8c:8d:
e9:02:f2:f8:4a:fe:bf:fd:09:e7:5a:d0:f9:13:15:
af:57:1e:e9:fb:76:53:0b:66:ae:06:59:80:5d:4f:
0c:64:46:ac:91:93:ea:80:6c:95:0d:8f:f4:a1:4e:
08:40:7a:b3:6c:a0:a1:31:42:aa:4f:dd:13:f1:57:
03:a0:d9:ea:ea:c2:44:1e:c7:ef:94:b4:60:d1:46:
7a:9a:97:e8:32:86:0e:55:d5:7f:b0:29:46:d4:2e:
a8:c9:88:1b:54:45:47:6c:a6:b9:32:22:8e:9f:59:
5b:24:9a:8c:3e:a4:21:67:05:74:d6:d5:b3:e3:5a:
c0:70:83:05:14:02:86:b0:3b:de:30:ae:f8:ff:32:
e8:04:57:d6:5e:38:5d:7d:8c:21:ed:1e:e4:91:61:
0c:9b:dd:99:90:57:4e:e3:75:c5:18:e2:75:81:27:
96:11:08:47:9e:c9:6b:d0:74:e9:1e:95:99:57:98:
4d:d8:f3:3d:58:bd:81:81:de:a2:26:35:90:08:53:
a1:36:7b:ea:4f:a9:7b:6d:a1:33:a6:dc:bb:ea:3e:
bf:2b:93:b4:86:ca:df:b4:22:df:cf:9d:67:2f:e7:
e4:6a:a3:8c:bf:47:46:2d:fe:53:13:aa:9c:95:64:
9d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:4F:B7:36:0C:BD:47:52:6E:A7:3B:BD:EE:F2:26:6E:08:7F:6D:78
X509v3 Authority Key Identifier:
keyid:41:60:03:00:EE:ED:5A:F5:D7:FC:09:D8:FC:15:8B:65:93:5E:D0:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWADAO7tWvXX_AnY_BWLZZNe0Fc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/94fdd8-04dd-4a22-8410-7d79c07173f4/1/eE-3Ngy9R1Jupzu97vImbgh_bXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/94fdd8-04dd-4a22-8410-7d79c07173f4/1/QWADAO7tWvXX_AnY_BWLZZNe0Fc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.64.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b5:ad:a3:61:50:61:dd:01:7a:81:34:c6:db:7d:15:fc:c8:
c1:d2:8f:45:c1:ba:e5:4b:84:bb:cb:51:d9:b0:76:36:32:22:
b9:8a:8e:18:e7:06:da:73:46:8e:7e:5c:e5:71:c5:08:b4:e6:
19:bb:ee:09:cd:e5:e7:92:50:02:5e:d5:79:20:da:b2:97:63:
e0:8e:5e:1f:ff:55:b3:55:43:50:06:f1:a5:c0:ba:fb:10:08:
1c:80:7e:b7:1f:83:08:79:0a:9c:44:77:79:01:b9:2e:1e:d7:
19:3e:c1:1b:a5:59:31:0c:ea:4c:b1:4a:76:09:a2:19:bb:9e:
dc:1c:43:df:0b:c0:9f:01:14:bd:ff:4c:ea:43:4d:b9:2d:f0:
b0:77:f7:6b:22:cf:fc:25:14:54:44:ae:fb:10:e8:f8:59:9d:
96:93:83:b7:aa:96:02:5d:bb:4a:c9:b1:06:28:2e:29:e1:c6:
34:89:45:49:c3:b6:91:75:b6:8e:ab:2a:ac:cd:82:23:89:8a:
a1:80:c3:d1:8e:3f:64:eb:b0:98:b6:7e:45:81:ab:e5:ac:91:
70:6c:71:be:91:c5:ac:60:2c:17:c2:9c:fb:9d:e0:94:4d:5c:
e0:68:1d:07:ac:23:b8:33:58:06:73:c3:91:6f:e0:92:78:fc:
af:68:97:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 14:06:38 2024 by rpki-client on console-fra.rpki-client.org