Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/X92cMAOvOdeD43f1XuMQqisXyiE.roa
File: X92cMAOvOdeD43f1XuMQqisXyiE.roa (raw, json)
Hash identifier: FL/wGZlFoFMAG8EC8z8IrPTm9zTGKt/+xPHCqu2csuc=
Subject key identifier: 5F:DD:9C:30:03:AF:39:D7:83:E3:77:F5:5E:E3:10:AA:2B:17:CA:21
Certificate issuer: /CN=07d44a52778aa65f736e72436003f6654f268318
Certificate serial: 01856E2667F7CD8935A51C4501077C81F647
Authority key identifier: 07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/X92cMAOvOdeD43f1XuMQqisXyiE.roa
Signing time: Sun 01 Jan 2023 16:24:48 +0000
ROA not before: Sun 01 Jan 2023 16:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20523
IP address blocks: 193.224.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:67:f7:cd:89:35:a5:1c:45:01:07:7c:81:f6:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07d44a52778aa65f736e72436003f6654f268318
Validity
Not Before: Jan 1 16:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fdd9c3003af39d783e377f55ee310aa2b17ca21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:2e:6c:26:a7:d5:0f:88:ba:29:9d:0f:8d:ae:
ee:36:07:4c:d7:80:df:92:4c:b2:1c:1c:3c:10:48:
03:3d:5a:43:b3:80:0b:1d:d2:02:b4:03:6e:cc:ba:
ca:e3:ac:17:44:81:14:d0:0a:47:f5:6e:72:eb:99:
39:b1:aa:20:37:06:17:fb:74:e8:7b:d3:5a:cf:f8:
59:a5:a0:0f:0b:59:85:2b:4f:9d:c7:ed:89:94:7e:
80:91:b6:1a:82:2d:b8:45:46:4d:15:a5:e7:b4:e8:
29:df:cc:8d:76:e8:13:58:dd:78:df:68:8d:c4:4f:
05:dc:cf:ed:7c:e3:41:d9:ad:06:1a:a9:f6:89:88:
4a:4c:29:2e:61:05:f9:b5:5d:02:b0:e6:aa:13:92:
50:57:7c:47:33:f4:81:23:92:97:b2:ce:fa:2c:14:
24:f5:4c:0a:63:10:53:7f:62:3d:42:94:60:17:7b:
3b:18:56:74:c2:dc:57:d8:e7:66:93:aa:9e:af:45:
9c:e6:b7:ee:31:fa:2e:11:55:36:3d:a8:3d:e9:5b:
88:dd:fa:f8:aa:d6:79:e1:e4:aa:3c:68:3d:93:0d:
e1:55:3f:ee:8b:f3:ff:b5:fc:c6:df:a0:5e:d0:fa:
85:2c:f6:bd:6e:42:65:e0:12:8f:3e:c6:a3:fe:bb:
c3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:DD:9C:30:03:AF:39:D7:83:E3:77:F5:5E:E3:10:AA:2B:17:CA:21
X509v3 Authority Key Identifier:
keyid:07:D4:4A:52:77:8A:A6:5F:73:6E:72:43:60:03:F6:65:4F:26:83:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9RKUneKpl9zbnJDYAP2ZU8mgxg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/X92cMAOvOdeD43f1XuMQqisXyiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/813cbc-4fa4-4646-a8db-1d28a60e0e30/1/B9RKUneKpl9zbnJDYAP2ZU8mgxg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.224.239.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d0:35:e2:5a:1a:f8:16:50:cd:3c:48:06:24:ab:a6:d1:6d:
24:b2:dc:1f:4e:bd:72:d2:8d:c4:72:f5:e8:13:2d:79:38:e8:
e9:71:88:d3:15:bf:48:65:18:07:28:8a:9a:28:0d:20:ab:92:
65:5f:50:f0:04:26:25:fc:43:16:4d:20:14:07:4d:b1:fc:44:
b3:3c:7d:5b:d7:89:70:78:40:7f:ca:61:46:48:e8:4d:0e:e7:
13:74:eb:d1:c8:34:45:b3:d0:1f:98:06:35:39:61:d7:fd:6a:
67:f7:8d:af:f3:4b:b7:a1:0f:6a:f4:7e:bf:96:a1:75:3f:03:
fd:cf:aa:36:07:b3:65:e0:37:6a:9b:42:5a:0f:f8:b4:9c:a8:
bf:80:48:39:98:ae:36:9b:10:2a:a1:bf:d7:92:21:34:e4:17:
0f:07:5f:3e:f9:cd:e8:6e:59:46:19:67:de:1d:99:f1:8b:9f:
4c:7d:cc:b8:1a:c0:9d:dc:44:b0:67:a0:97:71:82:6a:f5:70:
73:e4:70:1f:a7:b8:68:1b:f6:5d:e6:e1:d3:f5:60:e9:e7:76:
f4:bf:32:60:11:a6:a0:44:45:75:de:d5:75:a8:f4:5f:01:87:
f4:1f:b2:94:17:5d:d4:27:72:61:0b:c8:47:50:47:38:d5:e6:
2d:c9:98:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org