Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/hyTnbVyao6JjNaXQt7kqUO_gkRc.roa
File: hyTnbVyao6JjNaXQt7kqUO_gkRc.roa (raw, json)
Hash identifier: Fa2ezNx58bvfQoFVm4NVId7tu8UUWIuTGvjnkzDFkpU=
Subject key identifier: 87:24:E7:6D:5C:9A:A3:A2:63:35:A5:D0:B7:B9:2A:50:EF:E0:91:17
Certificate issuer: /CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Certificate serial: 018F539D6C05B7A609397C899365225D8887
Authority key identifier: 62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/hyTnbVyao6JjNaXQt7kqUO_gkRc.roa
Signing time: Tue 07 May 2024 15:12:56 +0000
ROA not before: Tue 07 May 2024 15:12:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44881
IP address blocks: 193.135.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 18:21:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:53:9d:6c:05:b7:a6:09:39:7c:89:93:65:22:5d:88:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6222e1c2a5315334b66d80f78d5b50b42e480b9c
Validity
Not Before: May 7 15:12:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8724e76d5c9aa3a26335a5d0b7b92a50efe09117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e1:df:c7:5e:39:c8:ab:b3:f5:85:19:b2:38:
a3:77:e1:9f:24:45:c6:27:84:05:52:6e:53:45:66:
f6:91:3b:cc:d5:c0:77:27:03:92:6d:c3:73:c2:e5:
44:81:66:12:be:55:18:0f:7d:72:9b:31:59:23:42:
6f:d6:bd:65:8a:be:d5:63:97:42:99:d9:1f:9e:dd:
88:7c:d3:e6:43:7a:10:b7:84:a6:93:5c:ed:ee:98:
28:0c:de:c4:29:6c:9b:03:86:57:3d:b5:1e:a4:3e:
38:7b:88:62:62:68:e9:48:6e:89:91:e5:95:90:25:
a9:03:85:6f:1c:48:8f:60:59:0c:63:27:af:6b:22:
eb:c0:38:0c:25:8f:d3:15:21:21:93:95:42:0c:2c:
67:c6:90:5f:fe:63:ea:ac:db:53:f2:a1:50:3a:89:
61:56:98:e4:67:b7:a5:c5:b7:52:5f:fa:7c:f1:ac:
f4:8b:12:cb:ca:da:2f:37:8c:ae:0f:5f:07:40:f5:
21:ad:d0:5a:af:71:2e:99:d2:d5:08:a0:5c:4b:5d:
6b:fc:79:8e:a9:e8:9a:bf:57:2e:98:19:ca:51:ff:
dc:71:fd:5b:87:15:14:31:4d:a1:0f:65:79:ab:9c:
0d:13:33:af:94:9f:b1:90:1e:8b:ad:9c:09:5e:05:
8a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:24:E7:6D:5C:9A:A3:A2:63:35:A5:D0:B7:B9:2A:50:EF:E0:91:17
X509v3 Authority Key Identifier:
keyid:62:22:E1:C2:A5:31:53:34:B6:6D:80:F7:8D:5B:50:B4:2E:48:0B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiLhwqUxUzS2bYD3jVtQtC5IC5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/hyTnbVyao6JjNaXQt7kqUO_gkRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/999b97-c731-4192-85f1-573701c84833/1/YiLhwqUxUzS2bYD3jVtQtC5IC5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:98:07:4f:20:57:5c:bf:1d:7c:c4:8c:63:33:c6:0f:72:e1:
d1:80:41:49:12:21:18:90:d6:64:c8:58:8a:14:c6:4a:54:85:
3a:bd:71:bc:e3:ee:43:dd:12:89:c2:b7:83:76:d5:fb:85:6a:
3b:e4:7f:bb:9a:8f:a4:bb:7f:23:6a:9d:88:2b:9f:58:ba:e9:
cb:88:bc:4c:3f:23:6a:2b:aa:8b:b8:65:f4:7a:4c:dc:23:fd:
c6:93:ca:b7:f2:35:bc:a5:1f:08:ce:93:28:93:1d:b6:ca:12:
57:e3:21:55:cf:ae:66:5d:b9:f1:50:34:1e:9e:e4:b9:6a:49:
0a:16:d1:00:21:83:8d:7e:2f:9d:44:73:77:38:eb:0e:46:34:
08:e1:31:92:3c:c8:39:31:8e:d9:4d:19:43:4a:e3:9f:88:c7:
b2:66:38:07:76:b9:63:75:d4:c7:97:43:ab:0d:f3:ec:b2:4b:
c1:88:93:7a:fe:10:37:0e:67:e9:b9:cc:36:b6:bd:2e:50:57:
d8:7a:4d:c4:1d:b5:48:9d:b8:77:0c:fa:af:3d:e1:4c:37:86:
df:84:33:55:31:a3:10:ba:cd:9c:60:ef:0b:47:6c:f4:32:f1:
6e:77:17:db:29:f4:e2:81:32:7e:19:e5:ed:f5:4c:24:79:d7:
39:4b:d7:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:00 2024 by rpki-client on console-fra.rpki-client.org