Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/IQNsxJ9ufdsQJXqRMspwi_7Tnkw.roa
File: IQNsxJ9ufdsQJXqRMspwi_7Tnkw.roa (raw, json)
Hash identifier: PjYJM91yGlJDyNrV0akm+KNDz+UjRUO6FG9rO4dmLWg=
Subject key identifier: 21:03:6C:C4:9F:6E:7D:DB:10:25:7A:91:32:CA:70:8B:FE:D3:9E:4C
Certificate issuer: /CN=e96d07d74cd14a5a439f483758c424dbad33977a
Certificate serial: 01856E666CF378B4125ED22192BA8163F616
Authority key identifier: E9:6D:07:D7:4C:D1:4A:5A:43:9F:48:37:58:C4:24:DB:AD:33:97:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6W0H10zRSlpDn0g3WMQk260zl3o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/IQNsxJ9ufdsQJXqRMspwi_7Tnkw.roa
Signing time: Sun 01 Jan 2023 17:34:44 +0000
ROA not before: Sun 01 Jan 2023 17:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211452
IP address blocks: 193.5.176.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:66:6c:f3:78:b4:12:5e:d2:21:92:ba:81:63:f6:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96d07d74cd14a5a439f483758c424dbad33977a
Validity
Not Before: Jan 1 17:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21036cc49f6e7ddb10257a9132ca708bfed39e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e8:e9:d2:c9:54:be:e7:d2:e3:7d:5e:1c:93:
af:b5:ea:a2:32:4a:6c:8e:a1:15:c2:ae:e7:11:27:
4d:83:16:d1:26:25:07:ef:25:e2:12:d3:66:37:b5:
b3:64:54:80:2c:9c:99:54:d3:97:cb:6d:a3:01:f5:
c1:e0:43:88:e3:6b:f2:27:9a:18:83:32:1e:c3:17:
b8:be:8c:ba:ee:29:66:4d:83:41:7c:c1:20:41:f1:
99:6f:02:ff:2a:fc:42:0c:43:85:94:72:df:a3:e2:
6e:3f:2d:3c:9d:2d:c0:3e:3f:3a:2d:fe:de:7f:cf:
64:68:11:d2:c8:19:23:be:f2:36:fe:a1:f7:99:3e:
a9:06:79:94:8c:b2:b8:fd:29:f5:59:7e:87:89:5b:
eb:51:b0:37:50:ca:d8:23:05:d4:c5:1a:58:15:c1:
c1:94:8a:d8:40:cc:5c:fc:91:5c:dc:d9:10:76:96:
86:7a:bb:22:a6:50:2b:1a:6f:bb:81:e7:d7:4d:b3:
0c:82:98:c3:de:41:a9:53:7a:dd:9e:f5:a6:01:c7:
81:04:c9:34:2e:32:cc:4b:de:20:ea:33:02:af:45:
d0:f8:53:5b:3e:ac:ec:ff:e9:20:c7:98:5f:60:22:
37:f8:7b:c0:49:0a:eb:87:46:b4:dd:ed:f2:20:a9:
ec:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:03:6C:C4:9F:6E:7D:DB:10:25:7A:91:32:CA:70:8B:FE:D3:9E:4C
X509v3 Authority Key Identifier:
keyid:E9:6D:07:D7:4C:D1:4A:5A:43:9F:48:37:58:C4:24:DB:AD:33:97:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6W0H10zRSlpDn0g3WMQk260zl3o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/IQNsxJ9ufdsQJXqRMspwi_7Tnkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b6824a-da61-4cb3-aa78-a0e2410f01e9/1/6W0H10zRSlpDn0g3WMQk260zl3o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.176.0/23
Signature Algorithm: sha256WithRSAEncryption
51:50:e9:ac:64:1d:11:d6:34:50:5e:d5:b4:01:8a:aa:66:5f:
cc:80:cc:fc:46:05:ff:c1:13:d9:c3:fd:40:be:fb:21:ff:48:
4b:f4:87:9e:b7:1b:1a:c9:d9:6f:43:42:c0:d3:57:59:43:03:
9f:d6:bb:c5:83:7e:7a:fc:0b:d3:f2:de:af:ff:97:36:fe:f2:
7d:4e:57:3b:e4:b4:ff:a3:6c:67:d7:42:21:6b:35:f8:bd:bd:
15:90:e1:95:c1:c0:24:4f:6a:ce:9c:bc:c8:a3:ed:4c:e5:74:
29:52:aa:92:f2:e8:bd:93:3d:d9:4e:ef:08:3b:43:d7:bb:8c:
8e:49:1a:f3:52:bc:a2:76:e2:df:83:db:41:dd:61:16:b5:de:
a0:64:fb:cf:77:fe:c7:00:25:66:39:f9:9e:e5:50:eb:5a:b9:
06:cc:95:6e:b4:7e:14:0d:e2:10:4e:d2:43:e4:af:0a:17:58:
84:f9:e2:01:86:b2:b1:d3:69:b4:d4:54:60:2d:19:d9:1e:b0:
1d:22:e7:ea:2a:79:ff:49:2c:11:60:1a:9f:e7:88:1e:5e:d1:
08:b5:c4:60:33:91:54:a5:a8:f5:6a:de:c1:33:d4:e6:fc:b5:
77:b4:3b:0a:86:14:52:5c:18:13:0d:3b:e7:c7:01:92:61:b0:
85:ee:bf:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:37 2024 by rpki-client on console-ams.rpki-client.org