Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/fEnuHVO_dEGDPTGUcOp7kIW5LLs.roa
File: fEnuHVO_dEGDPTGUcOp7kIW5LLs.roa (raw, json)
Hash identifier: Oe7GQs6rOzGW5Qz+75e4B/KLaMtAEYS7fbXwWobQ7C4=
Subject key identifier: 7C:49:EE:1D:53:BF:74:41:83:3D:31:94:70:EA:7B:90:85:B9:2C:BB
Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Certificate serial: 018727CE2DC3D28E2A1CD36D9321AE4F42D6
Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/fEnuHVO_dEGDPTGUcOp7kIW5LLs.roa
Signing time: Tue 28 Mar 2023 10:40:36 +0000
ROA not before: Tue 28 Mar 2023 10:40:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57797
IP address blocks: 193.22.129.0/24 maxlen: 24
2a12:8ac1::/32 maxlen: 48
2a12:8ac0::/29 maxlen: 48
2a12:8ac0::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 31 Mar 2023 12:05:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:27:ce:2d:c3:d2:8e:2a:1c:d3:6d:93:21:ae:4f:42:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Validity
Not Before: Mar 28 10:40:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c49ee1d53bf7441833d319470ea7b9085b92cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ab:12:6d:e3:b1:7c:e5:67:25:78:82:d1:84:
f3:0b:3b:49:75:b7:15:44:45:ef:fc:a7:e6:04:c0:
50:58:0c:42:0b:5f:ca:9a:b5:3c:b3:f1:e5:c0:74:
2a:e7:f7:bd:75:19:dd:e0:02:68:d4:41:3c:08:d6:
a5:40:e1:74:6f:1b:a4:76:18:ee:1f:5f:67:36:ef:
75:c0:b3:89:3c:21:4c:56:89:3a:da:e1:a7:b1:d4:
53:5f:60:84:8f:d7:4f:64:cb:2b:67:d7:e8:49:12:
ce:67:36:7d:a7:56:1a:fb:b1:5a:f1:1e:62:5b:10:
15:3c:16:34:66:0d:cc:58:37:14:69:8d:7c:3c:74:
85:72:b7:15:71:2e:ff:43:07:68:01:53:e8:05:51:
8b:b3:3c:b2:8f:45:8d:19:8e:87:20:3c:2d:ea:85:
4a:08:38:fd:48:94:9f:79:67:00:b3:0e:7a:84:91:
5e:d6:b0:9a:0b:6a:fb:5a:38:b8:4f:84:7d:95:7a:
28:22:45:55:a6:bc:5a:66:f2:ec:1d:fa:cb:c2:5e:
2d:aa:9e:2b:90:f1:41:e8:28:58:eb:d2:50:50:72:
a9:2a:72:64:f3:b7:ea:20:4c:a7:c6:07:60:cd:24:
00:20:a3:58:00:8b:cd:f9:25:29:12:82:62:a1:2c:
80:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:49:EE:1D:53:BF:74:41:83:3D:31:94:70:EA:7B:90:85:B9:2C:BB
X509v3 Authority Key Identifier:
keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/fEnuHVO_dEGDPTGUcOp7kIW5LLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.129.0/24
IPv6:
2a12:8ac0::/29
Signature Algorithm: sha256WithRSAEncryption
1a:06:04:87:65:ce:be:fd:dc:78:13:6b:98:af:48:9d:2c:b1:
07:08:67:59:f6:66:45:66:63:12:53:d3:68:59:ec:cb:7b:44:
b9:89:c9:48:5a:c3:14:45:30:71:fb:cd:0c:ae:c6:9b:eb:31:
e0:48:17:ee:17:bb:78:bf:5c:97:84:6f:7d:f4:6f:32:16:cb:
d8:ff:9b:b9:ee:10:e9:ee:93:a5:4b:ef:0f:f7:1f:45:13:89:
89:d2:33:c5:d0:0c:06:89:44:e4:aa:e1:39:aa:2a:c9:33:e5:
c3:21:18:93:f5:09:c5:b5:ca:d0:7a:97:3f:b4:42:80:99:f3:
fa:62:74:d5:a0:b3:e5:11:8e:d2:32:6e:08:67:9b:ff:bc:2a:
01:c1:ce:7e:3c:c1:45:98:07:66:d2:c8:58:15:6e:56:ce:a9:
8e:6f:27:6f:d3:98:c9:de:c9:d4:c2:62:ec:08:91:2a:d8:a0:
8f:f7:60:e9:c7:d8:dc:ca:82:b1:01:54:67:92:26:fe:da:07:
4d:4d:d6:c3:c3:93:86:2a:b2:2f:46:97:e3:d9:c2:57:8e:e1:
ef:d9:c7:8f:09:a3:6e:b8:25:09:ac:01:74:43:86:13:f4:7c:
d3:c2:ce:f8:c5:0a:28:7e:73:f1:f2:f7:74:cf:82:d2:e6:e6:
84:95:88:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org