Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/tat4KqYIJCUSr-wGohryqDRkyOU.roa
File: tat4KqYIJCUSr-wGohryqDRkyOU.roa (raw, json)
Hash identifier: 7Y14WaFB9j9DkCUdhX94km6QOrI4TwAggydxpmppeTk=
Subject key identifier: B5:AB:78:2A:A6:08:24:25:12:AF:EC:06:A2:1A:F2:A8:34:64:C8:E5
Certificate issuer: /CN=2f2a0fa20383332a3f414f054753a0b60b25ba10
Certificate serial: 0191839BABEE5B50B2031D8888BE553B12E0
Authority key identifier: 2F:2A:0F:A2:03:83:33:2A:3F:41:4F:05:47:53:A0:B6:0B:25:BA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyoPogODMyo_QU8FR1OgtgsluhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/tat4KqYIJCUSr-wGohryqDRkyOU.roa
Signing time: Sat 24 Aug 2024 08:58:22 +0000
ROA not before: Sat 24 Aug 2024 08:58:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.108.80.0/22 maxlen: 24
193.108.84.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 15:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:83:9b:ab:ee:5b:50:b2:03:1d:88:88:be:55:3b:12:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2a0fa20383332a3f414f054753a0b60b25ba10
Validity
Not Before: Aug 24 08:58:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5ab782aa608242512afec06a21af2a83464c8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7d:77:8e:8a:9a:15:8b:47:33:5f:a6:2b:d9:
67:08:c0:8f:38:c6:78:8b:da:8b:28:70:5e:04:75:
c9:23:38:ba:20:cb:59:5c:8a:11:db:27:7d:9a:06:
4d:40:56:07:0a:e8:4f:26:42:3c:60:b9:bd:d6:9c:
38:51:08:34:7d:46:86:81:1b:2b:04:3c:52:43:e4:
a0:40:1b:d4:9a:33:5d:b0:2f:e2:ea:3e:23:b0:62:
32:d8:cf:d3:f9:b1:53:f6:cf:8e:7f:40:64:ee:44:
5a:f1:30:57:76:d8:7b:56:07:56:33:6a:38:56:68:
bf:5b:f9:1a:c0:7b:33:b8:7e:9f:4c:79:91:5b:48:
b3:6e:6a:55:e3:fb:e4:0f:5a:5c:e4:77:79:7d:6a:
5c:33:18:d9:c5:04:b4:0f:dd:22:27:e4:ea:1a:7d:
b0:87:84:8b:d4:0e:41:19:5a:96:23:11:d5:a5:c1:
71:10:55:f1:5b:50:37:f3:cb:fa:8d:b5:7c:13:4d:
de:09:28:40:74:d0:1a:3c:99:af:1a:d3:7b:2c:06:
0e:57:94:40:de:72:b0:df:91:ff:ee:77:d7:ed:82:
62:4f:fc:0f:50:81:d3:9b:f5:0b:f2:f8:7e:c8:37:
6c:1c:d6:68:83:4e:de:6a:61:14:14:a3:a3:6e:38:
73:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AB:78:2A:A6:08:24:25:12:AF:EC:06:A2:1A:F2:A8:34:64:C8:E5
X509v3 Authority Key Identifier:
keyid:2F:2A:0F:A2:03:83:33:2A:3F:41:4F:05:47:53:A0:B6:0B:25:BA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyoPogODMyo_QU8FR1OgtgsluhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/tat4KqYIJCUSr-wGohryqDRkyOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/LyoPogODMyo_QU8FR1OgtgsluhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.80.0/21
Signature Algorithm: sha256WithRSAEncryption
8f:da:9b:cc:e5:32:b9:5d:41:66:88:ec:57:16:53:b3:07:0e:
51:0d:29:ed:59:80:cf:fd:b0:91:32:6c:93:6a:f1:8d:cc:31:
6d:e5:f6:b0:9b:cb:9f:f3:26:ed:f4:ac:47:99:06:32:87:dd:
88:61:d7:fd:01:16:93:9d:8d:1b:f1:29:46:31:20:a8:60:15:
ef:fd:1c:06:73:64:91:75:46:df:bd:5f:7b:f6:03:90:fd:5a:
4c:6b:4d:8d:d7:2e:b4:55:95:68:35:6b:df:9e:08:5b:5e:e6:
d0:83:2e:ad:dd:5b:e0:8c:6a:28:15:7a:1c:41:35:f8:52:08:
a4:ad:93:7e:2b:5d:99:45:0c:fb:bb:3d:c2:e2:25:45:30:2c:
f1:a9:2e:1a:0c:d0:31:82:5a:e6:a6:27:6c:05:b8:c8:cf:ea:
f3:36:2f:43:24:3c:33:73:e6:c2:f2:c7:2a:f5:bc:44:25:24:
e9:d0:e3:fa:31:7f:dd:97:e5:b0:0e:b7:67:a2:04:e8:c2:7d:
12:78:86:17:3e:e4:02:90:51:d8:f3:24:e8:89:59:ba:ec:eb:
ef:a5:08:d7:f2:ee:07:03:78:b0:26:fa:ac:69:40:ef:0a:56:
05:a5:23:6d:7b:a2:28:17:42:9a:74:d6:ca:86:82:89:20:31:
b3:9e:5f:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 18:39:40 2024 by rpki-client on console-fra.rpki-client.org