Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/RLk5onZDlyO6FXXphZu0aCjxl8M.roa
File: RLk5onZDlyO6FXXphZu0aCjxl8M.roa (raw, json)
Hash identifier: lflNW7/mE5Q1i10lVFEd08q0rBzw4PZQ65dIDaZvmWU=
Subject key identifier: 44:B9:39:A2:76:43:97:23:BA:15:75:E9:85:9B:B4:68:28:F1:97:C3
Certificate issuer: /CN=33ea24084f6b89b065559910e0311eb514bebb11
Certificate serial: 0186DAE39781CEBA2E3ED8F485FC5CB54EC5
Authority key identifier: 33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/RLk5onZDlyO6FXXphZu0aCjxl8M.roa
Signing time: Mon 13 Mar 2023 12:13:13 +0000
ROA not before: Mon 13 Mar 2023 12:13:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203767
IP address blocks: 194.195.103.0/24 maxlen: 24
194.195.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:e3:97:81:ce:ba:2e:3e:d8:f4:85:fc:5c:b5:4e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33ea24084f6b89b065559910e0311eb514bebb11
Validity
Not Before: Mar 13 12:13:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44b939a276439723ba1575e9859bb46828f197c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:03:52:b5:b4:dd:d7:2a:84:d3:95:1e:8b:6e:
ec:dc:bc:9b:dc:ab:76:9b:ee:cc:09:6a:0c:d1:ec:
67:23:cd:24:10:81:f2:08:80:5e:a3:2a:5d:b9:4a:
a9:31:90:45:e5:24:20:18:79:3d:58:59:06:83:79:
fa:33:78:4e:99:26:d3:7e:24:ed:e4:8e:19:28:8c:
53:dd:b8:17:41:17:d0:40:a2:17:e8:83:4b:71:69:
43:6a:a1:28:06:51:4a:3f:6c:eb:e0:47:0e:f1:2c:
4d:60:19:30:b0:c7:d1:db:60:e8:3e:d3:18:7c:ca:
44:79:5b:86:00:c0:3f:98:58:40:d9:1b:fc:75:c2:
bf:ed:d6:a1:9a:8a:b0:dd:c9:fc:ee:dc:06:6b:00:
b2:0a:e1:02:76:db:32:6a:7e:32:09:15:9e:07:9d:
76:6e:c1:21:f5:91:c9:82:85:45:6b:ff:b8:81:f7:
e5:35:71:ca:2f:12:9c:8d:3e:7f:21:b3:68:49:89:
aa:f2:58:f2:15:1e:c5:09:07:6b:a7:b2:61:72:cf:
39:21:52:b4:01:99:a9:67:64:25:6d:b5:1a:fc:e6:
25:60:b8:f1:9e:db:73:b2:45:58:48:7c:19:0a:3a:
20:6b:1a:3b:1b:08:43:b1:a6:a6:80:60:fc:07:bc:
88:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:B9:39:A2:76:43:97:23:BA:15:75:E9:85:9B:B4:68:28:F1:97:C3
X509v3 Authority Key Identifier:
keyid:33:EA:24:08:4F:6B:89:B0:65:55:99:10:E0:31:1E:B5:14:BE:BB:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M-okCE9ribBlVZkQ4DEetRS-uxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/RLk5onZDlyO6FXXphZu0aCjxl8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fe3fef-e176-451a-95d5-905196eba0be/1/M-okCE9ribBlVZkQ4DEetRS-uxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.195.102.0/23
Signature Algorithm: sha256WithRSAEncryption
af:12:80:85:63:89:b4:fa:ac:a1:d1:19:9b:0a:b4:28:1e:cf:
e8:e8:24:ac:6d:a1:af:26:f3:f2:5f:1f:30:bd:6a:42:0c:2a:
a8:72:66:aa:58:8f:00:7a:2e:f5:ad:8e:d5:a8:8a:2d:39:52:
75:5b:3e:1c:ee:1f:c9:42:0c:04:73:17:53:e0:ba:4d:31:41:
63:af:06:43:6c:a2:06:28:a8:11:06:e2:6c:a7:e2:25:25:2d:
6c:09:d1:43:75:ce:f3:38:3e:9f:5d:42:7a:21:86:a2:ce:83:
88:6a:65:f0:ce:d9:8c:53:df:14:df:cb:6e:2d:3e:36:6d:85:
03:30:cc:2d:39:87:e2:95:70:a4:f1:1a:da:00:77:af:bf:a5:
b5:f9:de:7f:6c:2d:d8:41:a1:1f:3d:90:08:11:11:3a:d0:da:
af:94:b8:d4:b0:81:99:93:77:14:90:ac:cd:e9:dc:30:17:a7:
21:f1:2e:7d:3d:77:44:ff:75:e3:f0:95:53:60:7c:0c:d9:cc:
6d:b5:74:9f:36:a3:4d:90:1c:f5:eb:01:19:a4:f9:91:78:b0:
60:76:fd:74:94:38:d2:40:09:ca:b8:d3:cb:4e:d8:9f:32:e2:
de:1e:40:38:18:99:ee:fc:09:d3:bc:0f:70:69:82:69:f4:96:
e4:71:a6:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:16 2024 by rpki-client on console-fra.rpki-client.org