Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2dbe04-43a8-4963-8e86-3fe8f896e551/1/IF6MO-4BLZK6TstzYV-K1xp6vbY.roa
File: IF6MO-4BLZK6TstzYV-K1xp6vbY.roa (raw, json)
Hash identifier: OP+JgV/vEAWNaaIRJaGe6bOQZ1j0Jqm13ZmdGXVgKmk=
Subject key identifier: 20:5E:8C:3B:EE:01:2D:92:BA:4E:CB:73:61:5F:8A:D7:1A:7A:BD:B6
Certificate issuer: /CN=9f29e8554020bdefa17c5561438fb4baf5831f52
Certificate serial: 01870F087BA1A0CA4BEB4D436AD14C8DBE04
Authority key identifier: 9F:29:E8:55:40:20:BD:EF:A1:7C:55:61:43:8F:B4:BA:F5:83:1F:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nynoVUAgve-hfFVhQ4-0uvWDH1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2dbe04-43a8-4963-8e86-3fe8f896e551/1/IF6MO-4BLZK6TstzYV-K1xp6vbY.roa
Signing time: Thu 23 Mar 2023 15:13:46 +0000
ROA not before: Thu 23 Mar 2023 15:13:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29093
IP address blocks: 193.143.128.0/23 maxlen: 24
195.234.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0f:08:7b:a1:a0:ca:4b:eb:4d:43:6a:d1:4c:8d:be:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f29e8554020bdefa17c5561438fb4baf5831f52
Validity
Not Before: Mar 23 15:13:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=205e8c3bee012d92ba4ecb73615f8ad71a7abdb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5d:5e:fc:21:38:a8:1f:a8:36:d2:33:83:5a:
dd:af:b4:8d:64:87:0c:24:e3:3e:5e:52:08:23:0d:
b2:66:62:9d:fc:03:ab:9b:0e:b5:53:13:51:f7:27:
ec:d7:f5:f4:53:50:8c:fa:ef:d6:d6:2d:2d:b7:92:
b2:81:58:f4:6a:30:7d:9e:9b:0d:e9:70:77:8d:d0:
40:6c:19:09:ca:2a:c3:ca:1e:26:4a:f4:07:ba:fb:
53:16:be:13:40:7a:64:76:3c:bc:83:da:62:d1:3e:
33:40:43:e6:83:57:66:68:50:0e:ad:49:7c:7d:76:
6e:01:7c:5e:e8:37:09:c9:9d:8a:20:5d:3a:12:42:
d2:95:f6:52:f5:b8:79:b8:44:a8:09:29:0e:bd:c8:
a4:b9:50:06:8e:86:2a:27:7b:20:d4:3f:09:6d:26:
65:55:86:d0:23:81:b1:59:4e:cd:07:c1:e9:39:e9:
a2:69:67:56:72:d6:64:52:77:10:27:8b:03:51:51:
84:f3:2e:60:cd:85:e0:5b:47:28:8a:fc:be:fe:7e:
17:31:fb:66:ec:3f:dd:12:ba:60:71:0a:b0:0f:30:
f0:e9:24:60:5d:01:9e:b3:3f:42:1d:f2:33:7c:a2:
8f:ed:b9:d2:c9:1e:47:0d:80:da:fd:4d:27:29:73:
af:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:5E:8C:3B:EE:01:2D:92:BA:4E:CB:73:61:5F:8A:D7:1A:7A:BD:B6
X509v3 Authority Key Identifier:
keyid:9F:29:E8:55:40:20:BD:EF:A1:7C:55:61:43:8F:B4:BA:F5:83:1F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nynoVUAgve-hfFVhQ4-0uvWDH1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2dbe04-43a8-4963-8e86-3fe8f896e551/1/IF6MO-4BLZK6TstzYV-K1xp6vbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2dbe04-43a8-4963-8e86-3fe8f896e551/1/nynoVUAgve-hfFVhQ4-0uvWDH1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.143.128.0/23
195.234.135.0/24
Signature Algorithm: sha256WithRSAEncryption
53:be:1c:e2:75:12:af:0a:37:ec:d8:73:23:c0:25:96:80:3a:
bb:a2:38:ac:21:3d:a0:e9:5c:94:aa:2c:0f:8a:f2:9b:c5:5f:
ec:aa:73:ff:e2:69:67:4e:26:a0:ec:cb:c4:9f:77:13:5e:84:
7d:42:f5:d5:df:cc:f1:d5:dc:34:01:8f:a5:13:ee:1a:2c:36:
6f:a5:7d:e2:f7:28:fa:83:4d:11:44:2d:3b:26:3e:71:e2:5f:
51:3a:2a:76:5e:aa:d0:3c:7b:44:d9:fc:18:06:05:7c:68:20:
88:7d:3b:ff:71:5d:5c:ee:dc:b8:d3:50:19:2e:76:04:ed:16:
ee:ae:7b:d1:b6:1d:30:43:da:4f:f3:e3:c9:d2:b2:18:f2:c0:
bd:6a:36:ce:0d:b9:95:47:af:52:a3:2d:6d:4f:a9:d6:e8:ed:
db:b5:49:33:25:43:28:06:2d:97:35:35:4e:3d:9d:74:a3:54:
c8:3e:3c:4d:e5:05:d8:8e:30:76:94:0c:a9:7b:d3:f9:4d:b5:
d7:87:21:a4:85:ca:ec:13:42:8f:eb:48:b9:0e:4a:0b:e3:82:
7f:72:ff:49:d5:3b:1e:c7:dc:d9:4f:bb:68:19:01:f6:e9:f8:
6c:33:e0:c3:ef:3a:77:58:2c:24:dd:33:32:82:74:96:e8:ce:
2d:cf:31:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:14 2024 by rpki-client on console-fra.rpki-client.org