Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/ci4xVQ-jvrBhJJ3awQhjz12m1Yk.roa
File: ci4xVQ-jvrBhJJ3awQhjz12m1Yk.roa (raw, json)
Hash identifier: CMKrUjDj2XpdQnGMgmmWxC6fQ1eP23sSg5smQv/eTGM=
Subject key identifier: 72:2E:31:55:0F:A3:BE:B0:61:24:9D:DA:C1:08:63:CF:5D:A6:D5:89
Certificate issuer: /CN=8d3f356a02d9679ce890b5d51e0dec2f3f363361
Certificate serial: 01856F7987900226DC8C46BC590F93BB9D32
Authority key identifier: 8D:3F:35:6A:02:D9:67:9C:E8:90:B5:D5:1E:0D:EC:2F:3F:36:33:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jT81agLZZ5zokLXVHg3sLz82M2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/ci4xVQ-jvrBhJJ3awQhjz12m1Yk.roa
Signing time: Sun 01 Jan 2023 22:35:13 +0000
ROA not before: Sun 01 Jan 2023 22:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208565
IP address blocks: 193.163.70.0/24 maxlen: 24
2a11:4e00::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:87:90:02:26:dc:8c:46:bc:59:0f:93:bb:9d:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d3f356a02d9679ce890b5d51e0dec2f3f363361
Validity
Not Before: Jan 1 22:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=722e31550fa3beb061249ddac10863cf5da6d589
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0a:31:b5:e3:1e:b3:66:ae:f9:9e:09:e7:ea:
23:ea:95:1a:6d:a8:a8:de:16:26:d1:7b:26:39:69:
7f:58:4a:83:8f:00:3e:1d:8d:7f:a3:96:52:7d:a9:
fa:f6:f3:1a:b6:e0:3f:6b:6c:3f:e2:f5:a8:ea:71:
89:e4:28:1f:35:df:e6:0e:9b:e3:f0:57:19:2c:c6:
78:64:bf:d8:b9:c3:ac:53:c1:f3:25:9d:da:9f:c7:
49:f7:dc:75:9d:71:ad:d7:93:29:56:13:4a:00:c5:
cf:b9:91:1e:56:35:0b:be:c0:fc:3a:5b:22:35:a4:
bf:89:b1:75:08:28:97:49:fa:0b:6e:e0:a8:65:cb:
22:29:4d:74:32:c5:20:c9:8e:59:71:9d:ac:77:58:
29:ce:06:8c:e1:2b:87:a5:c0:a6:79:46:62:60:ce:
be:a4:6c:d4:40:e4:69:85:44:1a:0b:ab:4b:17:20:
53:94:51:0c:63:7f:a1:33:94:c0:7f:cb:db:3d:08:
c6:b3:ba:7c:e3:ec:e2:3b:29:b8:94:80:3e:14:2f:
ee:43:62:bf:22:52:09:31:da:b4:ae:7d:e1:a8:d8:
aa:91:91:66:88:7e:e6:8e:11:e5:05:71:ac:ac:50:
ca:74:37:f4:1e:4f:37:25:f0:04:22:54:a2:c5:b8:
47:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2E:31:55:0F:A3:BE:B0:61:24:9D:DA:C1:08:63:CF:5D:A6:D5:89
X509v3 Authority Key Identifier:
keyid:8D:3F:35:6A:02:D9:67:9C:E8:90:B5:D5:1E:0D:EC:2F:3F:36:33:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jT81agLZZ5zokLXVHg3sLz82M2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/ci4xVQ-jvrBhJJ3awQhjz12m1Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/566cb1-7915-4ffd-8570-6b93af613d7d/1/jT81agLZZ5zokLXVHg3sLz82M2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.70.0/24
IPv6:
2a11:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
14:f7:a0:b6:d6:07:51:f8:41:ca:8b:f5:2f:13:c2:15:e8:3f:
06:d3:8b:c0:2a:9e:1e:0a:bf:2b:c3:eb:f4:77:44:b8:90:fb:
27:43:86:9e:ac:f2:4d:5c:7d:6d:2f:d2:44:c7:2b:a2:3f:ae:
8a:c1:f7:72:a8:3f:d4:3a:f5:9b:1a:50:03:f6:6a:8f:22:b6:
3f:7d:c7:5b:e4:09:6c:c5:0e:43:c9:e2:9e:d3:52:98:86:92:
40:64:06:77:6e:00:97:63:19:73:73:98:78:e7:4c:aa:79:4c:
ff:5e:62:80:b0:ba:02:cf:be:4a:e9:57:8a:d2:b2:b7:d2:92:
99:8e:c1:72:41:44:17:21:8a:2a:9e:16:0d:91:6c:f3:83:75:
47:5a:43:97:eb:90:be:29:a6:9a:02:5f:05:7b:71:30:8b:01:
af:67:80:31:25:1c:8e:d8:a1:6b:ac:41:d0:85:fe:87:76:8b:
9a:fb:0a:df:58:7d:a5:f4:1d:6e:fb:a4:2e:97:47:06:26:67:
20:96:d0:1d:0d:82:07:60:3a:e5:0a:fc:e7:aa:e1:59:aa:b5:
9c:19:18:b6:25:0a:d3:fd:39:ed:5d:6c:b2:6b:64:f7:d0:b0:
ef:05:88:52:68:ca:28:9d:69:73:fe:e9:11:3f:3b:20:10:44:
c4:1f:2c:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:19 2024 by rpki-client on console-fra.rpki-client.org