Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/bdzZ4XFdybFyKApkCljcwtkdPPY.roa
File: bdzZ4XFdybFyKApkCljcwtkdPPY.roa (raw, json)
Hash identifier: p1Hl2RVMursjUhbAHp7DNjeCM9rz8zzz7Wfw40lRdSc=
Subject key identifier: 6D:DC:D9:E1:71:5D:C9:B1:72:28:0A:64:0A:58:DC:C2:D9:1D:3C:F6
Certificate issuer: /CN=3f56231e7ef53181b630260f5739a939980bce0f
Certificate serial: 018C358C230DC519FEA018268376509D0CB2
Authority key identifier: 3F:56:23:1E:7E:F5:31:81:B6:30:26:0F:57:39:A9:39:98:0B:CE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P1YjHn71MYG2MCYPVzmpOZgLzg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/bdzZ4XFdybFyKApkCljcwtkdPPY.roa
Signing time: Mon 04 Dec 2023 15:57:05 +0000
ROA not before: Mon 04 Dec 2023 15:57:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213296
IP address blocks: 193.106.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 08:50:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:8c:23:0d:c5:19:fe:a0:18:26:83:76:50:9d:0c:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f56231e7ef53181b630260f5739a939980bce0f
Validity
Not Before: Dec 4 15:57:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ddcd9e1715dc9b172280a640a58dcc2d91d3cf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9d:4d:63:32:9b:df:96:ae:cf:21:f5:cd:2a:
b8:5c:7f:09:f3:c8:7b:02:0d:af:84:d0:b7:82:20:
1d:d8:a1:e2:f2:b6:36:83:d5:c3:c7:13:a9:1f:c9:
4a:c1:47:09:ec:66:e0:86:87:83:c8:33:cb:5b:5e:
f2:38:a5:77:00:f5:65:60:84:f8:b5:eb:9e:2b:7f:
82:95:ae:9e:07:75:b5:21:a1:c7:bd:09:ba:e1:f3:
1c:3e:d6:bd:a1:34:e6:51:b7:21:e0:b0:e6:2e:00:
20:6b:34:44:3e:56:0c:33:9f:16:b6:48:a9:57:69:
0b:9d:e6:39:a9:98:00:38:d4:0f:da:82:90:89:6f:
06:ad:00:50:af:1f:49:ae:c0:b1:0d:0b:8b:a2:1e:
e7:34:b6:71:69:9c:52:56:55:86:7a:14:a1:23:32:
7f:b9:04:1d:46:a2:12:d3:13:c9:e2:f4:2f:08:b7:
70:1a:4d:54:1c:3b:2d:73:29:db:67:28:18:64:67:
0c:b0:2d:ea:f7:9a:2e:5e:25:1d:16:98:2f:b5:8a:
e0:4d:aa:57:7b:22:aa:5d:18:ef:79:6f:08:5b:49:
35:65:6d:1b:5c:89:74:38:6c:5c:81:d2:46:b9:8b:
00:83:d2:1f:14:a6:2b:18:41:9e:9a:1d:cb:42:10:
2e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DC:D9:E1:71:5D:C9:B1:72:28:0A:64:0A:58:DC:C2:D9:1D:3C:F6
X509v3 Authority Key Identifier:
keyid:3F:56:23:1E:7E:F5:31:81:B6:30:26:0F:57:39:A9:39:98:0B:CE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P1YjHn71MYG2MCYPVzmpOZgLzg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/bdzZ4XFdybFyKApkCljcwtkdPPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/5c2e36-a9db-4522-a63e-455ddc7d9e38/1/P1YjHn71MYG2MCYPVzmpOZgLzg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.191.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:40:27:41:1f:ba:33:77:59:66:3b:15:49:1d:e1:eb:73:08:
d3:35:ae:5f:a9:21:95:df:73:6d:a5:cc:cd:ff:8f:3b:cc:e1:
86:87:fc:f9:46:2c:7c:06:cb:db:1e:6c:4a:44:47:2f:89:35:
3d:57:c2:81:2a:c1:bc:f8:59:d1:d2:74:1b:b7:a4:30:03:73:
9c:4f:ea:bb:aa:6a:70:47:be:44:23:14:6c:87:f2:56:5c:cc:
6f:36:c3:27:39:a5:2f:37:57:3d:72:87:b0:2a:37:10:5a:34:
50:94:65:c5:04:c3:64:20:d4:8b:be:07:4f:8b:61:2c:22:04:
79:1c:62:f6:31:3b:f8:ac:65:13:1b:67:1e:9c:b5:c9:d4:9f:
12:84:53:56:ac:a9:4c:cc:f3:22:9d:21:ec:a1:29:cb:13:96:
3a:a7:cd:5b:2c:8f:a0:4f:c8:66:cc:98:fa:6e:ba:b6:24:71:
8a:53:19:19:2b:40:1b:3a:83:01:cf:75:a8:a5:13:9b:85:64:
fe:ab:12:24:b4:a3:3e:2d:d4:46:a3:48:91:8a:02:6a:81:85:
a3:b3:6b:11:c0:74:c6:4a:f7:37:98:49:f0:96:16:0f:5f:e1:
c9:c8:4d:a6:a2:71:d2:2f:1e:8b:6f:24:09:46:fc:3f:16:1d:
07:41:2b:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:00 2024 by rpki-client on console-ams.rpki-client.org