Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/f77tH7SZ9JRRG7QD8w0eR1V8cl8.roa
File: f77tH7SZ9JRRG7QD8w0eR1V8cl8.roa (raw, json)
Hash identifier: jpLPby9cgcVzg6FFNVRRny2Ow94mYeEIuvGeYfvJVuM=
Subject key identifier: 7F:BE:ED:1F:B4:99:F4:94:51:1B:B4:03:F3:0D:1E:47:55:7C:72:5F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019011B15F82AF1560F14572E52624BCC71A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/f77tH7SZ9JRRG7QD8w0eR1V8cl8.roa
Signing time: Thu 13 Jun 2024 13:02:35 +0000
ROA not before: Thu 13 Jun 2024 13:02:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.163.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jun 2024 01:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:b1:5f:82:af:15:60:f1:45:72:e5:26:24:bc:c7:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 13 13:02:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7fbeed1fb499f494511bb403f30d1e47557c725f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:96:38:cf:9a:90:de:7c:22:51:5e:32:d4:ed:
7e:0c:e4:28:1b:f2:de:f4:17:07:a8:f2:b0:2c:e9:
f8:c9:aa:c7:c7:7a:bf:3a:47:32:0d:d5:82:d3:8e:
37:c6:d7:63:45:4a:a9:b4:3b:ab:95:e8:9e:7b:56:
da:23:88:6f:6b:3f:28:9a:95:7b:e9:3d:59:1e:fc:
1c:83:52:a0:96:3e:ce:ce:e0:53:cc:7c:e0:7f:da:
e5:1f:84:2a:e3:d0:7e:5a:84:c5:42:a5:bf:15:2e:
87:26:4a:47:6e:13:af:60:05:95:d7:96:ae:6d:d4:
9f:40:aa:cc:b5:25:87:83:32:26:d9:71:7c:9d:dd:
b4:05:90:6f:e8:4c:55:80:9b:e0:f1:ef:d8:40:00:
1a:09:44:cc:53:f5:c7:98:ec:5c:d6:85:5e:76:b7:
61:32:b9:c9:55:49:db:14:87:03:93:08:8d:97:1a:
66:e1:7a:39:f0:a6:c9:7a:77:9b:75:6a:48:53:d9:
f1:3a:a1:90:ef:2d:bc:34:bc:c3:c8:44:65:4b:8c:
f0:4c:08:bb:e5:87:78:08:dc:3e:5e:48:39:fd:6b:
ae:0b:cf:a2:c0:5e:20:01:cc:47:51:11:5c:44:bb:
b8:be:d5:fe:26:6e:80:fd:fc:97:4b:ac:94:a3:b6:
51:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:BE:ED:1F:B4:99:F4:94:51:1B:B4:03:F3:0D:1E:47:55:7C:72:5F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/f77tH7SZ9JRRG7QD8w0eR1V8cl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.85.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:b8:55:68:f9:39:3e:04:8c:9d:6a:2d:1e:da:66:ea:87:d6:
db:fd:64:23:fb:dd:63:12:03:d8:50:ca:f5:db:b8:59:69:84:
61:a2:d5:e1:08:7c:e0:fa:53:1e:c3:76:af:b2:4a:b1:7b:a7:
a9:4d:e4:32:0b:3c:ec:39:e1:ea:d2:ce:e3:b5:b0:9d:c8:1b:
5d:07:5a:5a:64:58:08:2b:8d:1d:12:8a:e5:dd:d0:3e:69:b8:
c1:5f:1a:78:90:62:23:72:85:4c:e0:cf:42:3c:97:db:bb:6c:
80:2e:ee:8a:9f:68:16:f1:eb:2b:c3:a4:86:5a:c0:ff:e7:e1:
47:b3:17:18:dd:8d:cb:5e:99:c7:9d:f7:6e:ff:da:37:fe:c7:
74:94:ca:47:d8:2d:ce:6f:b4:1c:3f:17:23:13:47:84:da:fb:
2f:45:13:77:85:fb:13:cb:78:11:43:d3:2b:87:ad:1c:09:33:
ea:b2:86:93:9f:e3:82:c2:a0:cf:91:8b:22:51:36:7f:f7:6c:
e7:65:07:6a:57:61:84:f8:bf:ca:92:ef:bc:8c:8a:61:c0:94:
1c:5e:5e:1c:9d:df:bb:d6:3e:36:f0:1b:e7:7e:1e:47:cb:50:
18:b0:7e:c2:2c:76:22:e5:3b:a7:71:fc:5c:53:08:6d:ae:b4:
f1:79:4b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 02:16:30 2024 by rpki-client on console-fra.rpki-client.org