Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/1-sK0Ipw3ekIUlSmtA50BuplDrsI.roa
File: 1-sK0Ipw3ekIUlSmtA50BuplDrsI.roa (raw, json)
Hash identifier: DqzrPI/B3hUBdPyEeoxhCUYafxEslT5/27XLsAGB+/o=
Subject key identifier: FA:C2:B4:22:9C:37:7A:42:14:95:29:AD:03:9D:01:BA:99:43:AE:C2
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 0190A0C885EC4F544CACFCB3C425DB1B5692
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/1-sK0Ipw3ekIUlSmtA50BuplDrsI.roa
Signing time: Thu 11 Jul 2024 07:53:34 +0000
ROA not before: Thu 11 Jul 2024 07:53:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60943
IP address blocks: 193.160.240.0/22 maxlen: 22
2a0c:dac0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 11 Jul 2024 09:22:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a0:c8:85:ec:4f:54:4c:ac:fc:b3:c4:25:db:1b:56:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: Jul 11 07:53:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fac2b4229c377a42149529ad039d01ba9943aec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c9:e1:4b:e4:a7:09:d1:59:cc:31:24:81:88:
fb:95:1e:2c:b9:0c:cc:66:66:76:5d:13:f5:c7:65:
ae:15:ef:ce:ca:c7:1c:c2:2d:92:4d:ba:fb:de:e3:
8c:20:36:bc:0a:6b:d4:3d:96:0c:bc:ea:e9:25:21:
de:84:83:24:54:f7:c6:df:41:8b:e7:8f:ea:74:f8:
79:6a:78:db:db:55:95:98:74:af:b5:df:88:49:29:
37:cc:7b:09:1f:dd:1b:48:55:32:9c:ca:e8:28:e3:
9f:0c:05:ac:4a:be:54:4b:9c:9a:d2:32:50:0f:28:
58:46:99:f4:d0:45:b6:71:ac:e4:51:03:d4:82:0a:
55:81:1d:47:a9:f4:cd:a1:04:13:5e:bd:86:dc:ef:
8d:56:b6:a2:b1:5a:69:80:40:ab:66:5e:66:e9:72:
12:2d:31:ec:ae:7c:b4:27:d9:80:f5:f1:a1:77:71:
15:88:7f:9c:3f:92:13:f8:9b:74:2a:50:0a:79:51:
40:b9:98:86:ae:8c:26:a9:b1:2f:68:c8:26:86:35:
a4:6b:f7:16:9e:87:6b:72:25:61:22:23:d5:91:d5:
f4:d4:17:cb:ec:38:be:e6:19:98:89:ae:72:3d:36:
71:b5:98:94:ed:7e:df:32:e3:9c:0e:ca:40:7e:3a:
ad:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C2:B4:22:9C:37:7A:42:14:95:29:AD:03:9D:01:BA:99:43:AE:C2
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/1-sK0Ipw3ekIUlSmtA50BuplDrsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.240.0/22
IPv6:
2a0c:dac0::/29
Signature Algorithm: sha256WithRSAEncryption
5e:e6:10:49:3a:da:61:ee:16:7a:63:18:3b:dd:17:89:b2:6b:
0e:58:0a:c1:fa:5a:79:3c:ad:50:c7:a9:a8:a2:57:e4:c0:fb:
a8:e4:6f:33:8d:26:5d:22:6a:09:c2:72:97:98:57:1d:31:eb:
ff:88:a1:9f:b7:0d:c1:72:16:11:ff:6a:09:a8:89:22:be:b2:
cb:60:7b:e2:ef:3e:c9:20:59:68:4a:57:cf:94:3f:cc:08:c3:
22:68:3a:15:04:ea:93:30:3d:8b:73:b1:2f:dd:2a:ed:34:92:
3c:38:c0:be:d8:9c:2f:37:72:56:6e:04:79:97:a0:12:db:0b:
98:a4:01:4d:5e:ba:0c:fe:8a:7d:49:51:43:79:c8:53:a4:b0:
2b:c9:81:81:19:3c:39:af:56:03:dd:d5:60:1e:06:5f:a4:ad:
d0:6a:bc:52:04:23:57:63:c3:50:4f:51:96:f2:b0:79:3a:cd:
dc:cf:b9:41:fa:c0:32:10:15:59:d5:16:aa:28:d3:d4:c3:15:
b8:b3:1b:77:91:70:e5:2a:dc:84:21:2e:35:a1:d6:54:b9:b8:
19:88:ab:4d:80:c3:ac:14:3b:98:75:30:19:75:98:c7:b1:33:
74:d0:b7:77:0c:e6:99:81:82:8d:59:7e:a9:bf:73:e7:d4:03:
87:1f:f7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 10:27:33 2024 by rpki-client on console-fra.rpki-client.org