Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/DiHTfiAWIC4jxyTiAXZwZ3CYA0Y.roa
File: DiHTfiAWIC4jxyTiAXZwZ3CYA0Y.roa (raw, json)
Hash identifier: lcWCGipg/gQtqXnFy2EsrHXQ1eSclaQEdyyaP5Fp1+I=
Subject key identifier: 0E:21:D3:7E:20:16:20:2E:23:C7:24:E2:01:76:70:67:70:98:03:46
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01856C53D489E00A121DDDA15E07EA9C37F9
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/DiHTfiAWIC4jxyTiAXZwZ3CYA0Y.roa
Signing time: Sun 01 Jan 2023 07:55:11 +0000
ROA not before: Sun 01 Jan 2023 07:55:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210538
IP address blocks: 193.35.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d4:89:e0:0a:12:1d:dd:a1:5e:07:ea:9c:37:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 07:55:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e21d37e2016202e23c724e20176706770980346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f8:b6:c5:5d:ad:ce:73:13:97:93:b2:17:c0:
07:0a:d0:5b:de:59:81:54:65:1f:41:b2:e5:14:12:
fe:4a:ed:8e:eb:5b:12:58:63:e0:cc:1c:06:19:e0:
74:79:66:5f:c5:d0:11:a5:12:65:b3:d3:40:c9:8b:
23:a3:a7:64:ca:6c:31:9c:c9:42:09:50:b7:94:8d:
ea:3e:42:66:45:9b:12:cd:f0:14:23:cd:c6:e2:d8:
e4:b0:c0:15:65:25:1e:5c:fe:d5:7c:40:6e:ff:8d:
65:17:6e:0c:ea:ed:46:f3:08:6b:25:a0:7e:f8:9b:
70:2f:93:f4:89:83:ca:e9:b4:74:ee:d4:5d:94:89:
08:47:45:ac:64:8d:04:fe:98:ce:69:ac:89:53:dc:
c0:4d:d2:e5:16:d7:cb:75:13:0b:ab:5b:b8:15:cc:
74:66:a1:3a:a1:78:fa:e4:25:d7:a0:c2:ec:75:dd:
79:f5:29:0c:3e:e3:e4:db:55:fe:53:e6:c2:8b:25:
f2:18:1f:27:8c:21:47:5e:3f:5f:f4:63:61:b5:8e:
18:fa:ce:f9:2d:ca:0a:af:34:15:47:36:3d:84:ab:
93:c1:31:d5:e5:9f:6a:2c:6d:ea:08:a7:27:5a:ab:
5c:38:bf:76:a9:89:68:46:bc:ea:60:e4:da:ff:91:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:21:D3:7E:20:16:20:2E:23:C7:24:E2:01:76:70:67:70:98:03:46
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/DiHTfiAWIC4jxyTiAXZwZ3CYA0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.154.0/24
Signature Algorithm: sha256WithRSAEncryption
39:9b:1e:07:fa:69:aa:80:37:30:a7:df:d0:fb:77:9a:42:2f:
ec:be:a7:9c:04:24:6b:f2:e8:e9:29:c0:f5:1a:51:b3:e3:f0:
ae:5e:61:41:ea:ea:32:54:0e:08:0a:89:ca:2e:6e:5f:c8:80:
6a:ea:da:45:c1:15:e9:db:9a:88:6f:4b:fa:59:f8:2f:2d:d4:
4b:97:d4:2c:bd:99:30:c7:2c:7b:11:b2:f6:c7:be:9c:b8:89:
5f:78:6a:3d:55:bf:0b:10:df:8c:1e:2a:5a:91:67:07:36:45:
47:99:f5:19:5b:04:07:02:3e:f6:c4:ca:42:b9:97:8c:b9:1b:
66:5b:59:e2:db:ec:97:cf:19:33:6a:4e:f3:96:d2:7c:06:58:
a2:04:48:f1:2c:f6:12:15:aa:d2:7f:9e:1f:1e:7f:80:c6:dc:
3f:9f:f0:12:a3:1e:bb:a3:c2:3d:93:f6:2e:09:44:f1:40:74:
df:f5:d2:0d:56:28:c6:76:c6:32:2f:a9:55:d6:a7:c4:32:f1:
68:5d:b9:87:09:77:50:4f:0b:5b:2b:ae:2d:9a:15:d6:df:e8:
e8:35:4d:27:cb:57:c3:32:af:d5:40:a4:a1:6c:47:5b:ff:ec:
c2:98:6a:73:fb:1a:79:f0:8c:59:60:a2:d5:0d:a2:5d:ff:7f:
42:64:5c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:49 2024 by rpki-client on console-fra.rpki-client.org