Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/vYMainYBxzSAhj7DcRO6su_S1ac.roa
File: vYMainYBxzSAhj7DcRO6su_S1ac.roa (raw, json)
Hash identifier: xfAt0Ru255e4wWCWl9RKvZLdUvzYAB6ttVopMr2M9/Y=
Subject key identifier: BD:83:1A:8A:76:01:C7:34:80:86:3E:C3:71:13:BA:B2:EF:D2:D5:A7
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB838858023E18E8FA4F68517E61B7F
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/vYMainYBxzSAhj7DcRO6su_S1ac.roa
Signing time: Sun 01 Jan 2023 09:44:50 +0000
ROA not before: Sun 01 Jan 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8723
IP address blocks: 193.251.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:38:85:80:23:e1:8e:8f:a4:f6:85:17:e6:1b:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd831a8a7601c73480863ec37113bab2efd2d5a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a7:16:d3:38:bc:83:26:4e:59:44:7a:d4:15:
23:38:30:64:5b:c5:4f:48:d5:ab:41:c9:75:67:5f:
a2:3f:2d:79:b3:6d:03:72:2c:1a:c8:ee:93:47:8e:
20:43:f9:17:c7:0e:f4:43:1f:16:14:4b:fd:fa:ff:
d5:c9:97:8a:36:95:1c:9e:15:2b:47:1e:d6:bb:a6:
e4:07:35:ac:41:39:73:91:a7:29:a0:f9:d0:f3:e5:
c6:05:5f:79:33:26:4d:6c:39:c7:e7:07:35:68:f1:
c1:08:48:63:c3:e4:fe:56:a0:f4:21:0b:d3:84:2c:
3a:dd:ad:f5:e5:f9:99:25:59:03:0c:70:a2:7f:68:
ce:e6:ba:68:2e:be:62:f1:86:67:60:5a:66:77:42:
d4:f0:d8:5a:f2:cc:65:e6:ea:c9:de:bc:fa:5c:85:
ec:3c:e0:09:39:2a:bd:3b:c1:15:3c:8f:36:80:f5:
04:e1:31:34:59:cc:61:fa:4a:2b:d9:08:fc:7e:c7:
5b:36:19:15:a6:8b:12:e2:a3:4e:9f:64:0d:6f:55:
ab:ac:55:de:22:b2:0b:5b:77:45:72:9e:be:66:32:
b1:6f:ef:6f:ef:d4:a9:42:d3:0f:2b:c4:54:7d:cb:
37:c4:c7:27:8b:8c:6a:64:7c:11:53:f2:bd:6f:30:
81:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:83:1A:8A:76:01:C7:34:80:86:3E:C3:71:13:BA:B2:EF:D2:D5:A7
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/vYMainYBxzSAhj7DcRO6su_S1ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.251.217.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:b8:3f:11:19:f7:5b:32:66:89:7c:fd:3e:52:59:e1:51:be:
a8:55:4c:aa:e2:7d:40:f8:5b:a0:33:7a:6c:d7:79:38:a9:c5:
9e:a7:2a:e2:98:69:39:87:3b:d8:f7:47:0e:9a:02:bb:c3:84:
13:8d:8b:a8:c1:44:43:73:7e:0f:6c:4f:f0:ec:f2:70:2e:97:
11:2d:13:5a:0c:6c:b0:e7:e5:1a:99:f7:5d:10:69:2e:01:b3:
fa:1d:5e:89:59:24:4c:95:ef:e2:60:99:6e:17:17:66:50:07:
57:d7:18:59:a2:81:d8:f5:f9:9d:48:d0:9e:80:b7:c3:86:46:
95:56:f8:e8:9f:a9:7b:89:f8:12:36:99:16:ff:99:8d:c2:c4:
b0:da:a3:e2:38:0a:41:ca:6e:92:f8:b6:2a:90:5b:c9:ed:f5:
fa:09:73:42:3f:a0:09:d0:87:b4:71:70:b3:b2:5a:8a:78:9b:
d6:33:db:e9:e9:3f:3b:07:1c:c2:52:2a:45:05:84:22:92:d5:
99:24:69:b1:8a:6e:1f:b6:2c:57:b9:40:5b:1b:63:31:a2:5c:
69:ce:b1:01:13:c9:d1:cf:56:a0:7f:e7:e8:89:f9:86:a9:8d:
d0:c3:0a:07:df:ce:c6:6f:af:c7:5b:02:26:b9:d9:9d:81:a8:
53:dd:b0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:52 2024 by rpki-client on console-fra.rpki-client.org