Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5489e6-3e33-4df2-90b8-116909e43824/1/cgM2hHHV1Z9qMQnhEwrwgBuH-xg.roa
File: cgM2hHHV1Z9qMQnhEwrwgBuH-xg.roa (raw, json)
Hash identifier: /yJ7mWZokMqoIAxWU8GmTejRtAIRZVE44MkKChKOmO0=
Subject key identifier: 72:03:36:84:71:D5:D5:9F:6A:31:09:E1:13:0A:F0:80:1B:87:FB:18
Certificate issuer: /CN=9c209157bf789e6bba34e0dbd3efecd9b20dd06b
Certificate serial: 0187140111146E6C1C4FF152B795C1EE975E
Authority key identifier: 9C:20:91:57:BF:78:9E:6B:BA:34:E0:DB:D3:EF:EC:D9:B2:0D:D0:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nCCRV794nmu6NODb0-_s2bIN0Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5489e6-3e33-4df2-90b8-116909e43824/1/cgM2hHHV1Z9qMQnhEwrwgBuH-xg.roa
Signing time: Fri 24 Mar 2023 14:23:46 +0000
ROA not before: Fri 24 Mar 2023 14:23:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50499
IP address blocks: 193.106.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 09:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:01:11:14:6e:6c:1c:4f:f1:52:b7:95:c1:ee:97:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c209157bf789e6bba34e0dbd3efecd9b20dd06b
Validity
Not Before: Mar 24 14:23:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7203368471d5d59f6a3109e1130af0801b87fb18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:85:be:25:c9:6a:7b:7a:d5:c0:2a:6f:f7:e4:
17:ac:46:87:81:fa:85:a1:95:a9:4e:9e:49:8b:67:
ec:4d:a4:69:89:0f:ab:b8:a8:dc:02:6d:51:93:02:
c5:9a:35:05:e3:70:cc:7f:f9:d7:a7:6c:7c:8c:bc:
7d:91:62:13:80:bf:b3:60:88:30:29:e7:f0:47:ae:
f0:89:13:b3:23:45:9b:92:c4:95:69:1f:2b:45:05:
40:04:bd:9d:fd:f2:d7:a2:c0:e4:0d:80:7a:f9:2f:
25:b3:ec:92:68:6a:e2:09:8a:f6:09:f8:b3:84:5d:
f6:61:b0:53:9b:31:62:11:73:a2:28:75:13:e1:37:
d9:ed:d7:b3:1e:16:37:2d:fb:ff:ed:11:39:0c:a9:
74:c1:62:8f:38:b6:20:65:4f:7d:2e:d6:6f:33:61:
a5:ac:fb:66:50:e6:2f:be:3b:34:66:74:07:a0:47:
cd:7d:f7:18:fe:23:7c:4f:29:d2:24:ec:63:29:1a:
89:f4:42:4c:2c:c6:be:2e:c6:42:19:7e:7e:c9:77:
1a:42:3d:24:c6:88:bc:6c:08:51:5b:48:29:f7:dc:
e8:c3:b1:32:cc:e7:a6:3e:3f:b1:af:b1:d7:50:84:
2c:e7:c3:c5:85:6d:c1:96:cb:46:65:c7:bb:ef:27:
3a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:03:36:84:71:D5:D5:9F:6A:31:09:E1:13:0A:F0:80:1B:87:FB:18
X509v3 Authority Key Identifier:
keyid:9C:20:91:57:BF:78:9E:6B:BA:34:E0:DB:D3:EF:EC:D9:B2:0D:D0:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nCCRV794nmu6NODb0-_s2bIN0Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5489e6-3e33-4df2-90b8-116909e43824/1/cgM2hHHV1Z9qMQnhEwrwgBuH-xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5489e6-3e33-4df2-90b8-116909e43824/1/nCCRV794nmu6NODb0-_s2bIN0Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.248.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:a0:ec:df:c8:c2:03:53:a4:d5:0e:e1:34:03:ce:72:42:18:
f9:e0:e6:04:ea:49:e6:4f:52:03:8b:38:4b:4e:26:f7:48:75:
73:68:72:c0:55:87:07:73:38:48:4e:7d:de:4e:24:9b:e3:eb:
9e:88:d8:0b:1f:18:35:26:aa:24:62:ab:49:3f:3a:b1:34:c7:
9c:1a:a1:bc:6a:fb:90:15:19:cd:15:41:d6:a3:67:4e:b9:73:
b0:b8:26:cb:ac:60:42:1c:0d:68:ca:b5:c3:3c:71:32:eb:0e:
db:e9:1d:db:ae:48:f3:b7:e5:aa:4d:71:79:57:57:8e:c7:08:
62:c7:8e:d3:bb:21:a2:a6:f6:c3:63:9b:05:a1:c4:54:f3:6e:
e3:23:68:3d:3e:17:87:96:a2:79:85:b6:56:6f:19:5a:a4:f0:
03:13:24:a5:7d:20:4f:d0:3f:fe:d1:55:f1:3d:79:be:df:9f:
3e:d5:bf:f3:ce:d0:fc:71:27:7a:9f:76:d1:b9:9a:93:ab:c8:
55:dc:29:af:b8:74:13:e8:0a:76:eb:ed:a0:d9:92:f4:c3:d9:
0d:fc:bb:99:c8:30:f2:92:db:b0:b9:e5:14:75:91:e6:5b:d4:
3b:2e:31:34:11:3e:74:56:d9:0a:01:b0:43:b4:e2:6b:db:18:
b5:b7:c0:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:20 2024 by rpki-client on console-fra.rpki-client.org