Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/xwpL9Gz-XrxgA95IkpG1m0Awv7M.roa
File: xwpL9Gz-XrxgA95IkpG1m0Awv7M.roa (raw, json)
Hash identifier: K51Be3uu0WLOACOigEKYzLL/R5Tv1sZ2OINwnO3F2Hc=
Subject key identifier: C7:0A:4B:F4:6C:FE:5E:BC:60:03:DE:48:92:91:B5:9B:40:30:BF:B3
Certificate issuer: /CN=7b2bdfebe459221dda35f52c5a3995020e4fbb7a
Certificate serial: 01856FE7063CEC2819BA250FAE046DB9E36D
Authority key identifier: 7B:2B:DF:EB:E4:59:22:1D:DA:35:F5:2C:5A:39:95:02:0E:4F:BB:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eyvf6-RZIh3aNfUsWjmVAg5Pu3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/xwpL9Gz-XrxgA95IkpG1m0Awv7M.roa
Signing time: Mon 02 Jan 2023 00:34:49 +0000
ROA not before: Mon 02 Jan 2023 00:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31531
IP address blocks: 193.16.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:06:3c:ec:28:19:ba:25:0f:ae:04:6d:b9:e3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b2bdfebe459221dda35f52c5a3995020e4fbb7a
Validity
Not Before: Jan 2 00:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c70a4bf46cfe5ebc6003de489291b59b4030bfb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:13:e3:17:a5:7e:ea:72:42:3a:db:58:e8:74:
f0:6c:24:98:44:3c:38:9b:a5:d7:62:71:ff:26:72:
ba:ba:b3:ad:50:3b:c7:a8:bc:e3:fa:46:d2:aa:1a:
b8:10:cd:33:f7:62:48:d0:23:64:ed:69:dd:62:aa:
8a:0a:9f:4e:ec:9d:a0:fa:8d:b2:07:61:82:a4:5c:
d4:c2:a4:2e:49:e4:0b:5e:2c:1c:de:0a:44:4d:22:
2e:eb:1a:89:f1:98:29:83:7e:1e:eb:7c:d6:fc:c7:
61:e8:d8:ba:79:ea:45:e1:1a:e8:80:60:37:e8:cb:
bf:23:a1:9b:8c:33:5f:4d:d2:2e:db:c9:0a:27:88:
d6:78:f8:0a:18:14:d0:66:d1:8c:da:3a:58:2e:f9:
77:35:07:1d:56:fb:9f:7c:50:71:06:0d:07:a5:38:
9f:88:e8:3f:32:11:e2:2c:51:d1:a9:54:b8:c3:23:
2b:2e:9e:b2:b8:11:78:b0:dd:52:ed:ba:15:4d:ba:
d3:72:e6:7b:72:d7:72:0b:80:ce:19:56:e9:74:55:
d5:8f:9a:80:a3:c6:99:15:1b:63:cc:e8:01:df:96:
69:77:47:48:3a:57:27:46:2e:27:cd:70:2e:1b:a3:
f5:35:46:6e:18:99:71:1b:bc:11:f7:0b:3d:b7:03:
e6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0A:4B:F4:6C:FE:5E:BC:60:03:DE:48:92:91:B5:9B:40:30:BF:B3
X509v3 Authority Key Identifier:
keyid:7B:2B:DF:EB:E4:59:22:1D:DA:35:F5:2C:5A:39:95:02:0E:4F:BB:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eyvf6-RZIh3aNfUsWjmVAg5Pu3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/xwpL9Gz-XrxgA95IkpG1m0Awv7M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e6b617-76e2-426a-8071-34c76d9756dd/1/eyvf6-RZIh3aNfUsWjmVAg5Pu3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.101.0/24
Signature Algorithm: sha256WithRSAEncryption
25:63:38:b9:2d:e6:dd:af:24:35:6a:67:9b:c3:fb:1b:1a:86:
e5:b2:6b:48:b2:86:fc:fc:09:e9:a6:ae:e4:4b:cc:a2:32:ff:
d1:25:c0:17:95:30:30:e5:98:24:4b:49:40:73:94:77:30:2a:
e9:74:e7:f9:29:50:37:47:9f:7f:b3:41:e4:e7:c9:ab:ee:ba:
05:0d:1e:47:73:f4:9b:61:cf:6b:4a:70:08:7b:71:07:ad:90:
6b:2d:42:ac:4c:a5:51:7a:5f:73:61:4b:06:b4:1a:b3:bd:7f:
69:74:2c:f7:9e:10:56:2b:2a:16:8a:4a:49:38:85:60:5e:38:
55:96:cc:37:c9:7b:db:35:12:c1:22:c3:be:a0:92:65:e0:23:
98:f0:ad:ba:b5:06:80:53:f1:2d:a4:e6:0c:c9:07:57:d8:71:
12:46:42:45:48:32:ba:98:96:75:4a:1b:a9:b9:40:73:98:9b:
c0:42:17:9c:78:e3:ae:7b:bf:49:8e:72:88:b9:02:73:4b:cb:
6c:b5:24:2d:01:43:05:36:7b:dc:19:9d:74:ed:f3:a8:da:b0:
a0:b1:6b:44:69:f7:0d:53:b8:10:71:71:24:24:11:0b:a2:01:
86:f8:a2:12:e2:49:43:62:69:d8:59:62:c7:12:bb:ff:d2:51:
53:19:b6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:18 2024 by rpki-client on console-ams.rpki-client.org