Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/4765e8-61b8-40c7-847f-dcce0c9f4d94/1/9fwIaO3dHOmPOFKdNULvMzB-LVQ.roa
File: 9fwIaO3dHOmPOFKdNULvMzB-LVQ.roa (raw, json)
Hash identifier: 9ZGkn3JFzNPBjzxfzeLrcwzsu/ufPNek1KIX1H9p0RA=
Subject key identifier: F5:FC:08:68:ED:DD:1C:E9:8F:38:52:9D:35:42:EF:33:30:7E:2D:54
Certificate issuer: /CN=1980bbbacfa9e3cdccf6c0e935361a7ab27da14d
Certificate serial: 018A02569AF73E44665F1537165C91976C4F
Authority key identifier: 19:80:BB:BA:CF:A9:E3:CD:CC:F6:C0:E9:35:36:1A:7A:B2:7D:A1:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GYC7us-p483M9sDpNTYaerJ9oU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/4765e8-61b8-40c7-847f-dcce0c9f4d94/1/9fwIaO3dHOmPOFKdNULvMzB-LVQ.roa
Signing time: Thu 17 Aug 2023 07:12:24 +0000
ROA not before: Thu 17 Aug 2023 07:12:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47427
IP address blocks: 193.41.245.0/24 maxlen: 24
193.41.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 13:59:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:56:9a:f7:3e:44:66:5f:15:37:16:5c:91:97:6c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1980bbbacfa9e3cdccf6c0e935361a7ab27da14d
Validity
Not Before: Aug 17 07:12:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5fc0868eddd1ce98f38529d3542ef33307e2d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f3:60:61:3f:81:c4:41:70:58:fc:fd:60:d2:
e3:62:d0:ff:ef:7f:6a:3e:bb:f3:89:06:eb:27:b5:
d9:78:9f:6c:a0:c0:e7:93:46:f2:66:59:b6:ad:95:
33:19:8b:88:37:53:eb:2c:27:05:1a:d8:f3:d8:de:
ab:59:1d:a1:97:38:47:25:4b:63:f3:07:e4:51:f7:
c9:a1:bb:cc:9a:04:3a:2b:c2:b9:ca:9e:08:19:24:
69:36:1d:9b:6e:d9:c9:f8:58:e4:9b:72:4b:d0:87:
db:07:22:d6:03:20:19:44:45:60:32:34:bb:8e:db:
2c:4d:06:36:63:f8:ff:ca:57:12:e5:fd:05:2f:32:
ae:29:f9:4c:88:3d:5d:94:8b:32:72:40:73:bc:69:
54:ac:4b:7d:dc:82:2f:f9:50:af:29:9f:8f:58:4b:
31:ec:2b:6c:21:ce:b4:eb:84:23:e2:18:fc:76:89:
bf:e7:cf:9a:ae:9f:e1:e9:2e:c7:11:43:81:4e:60:
6a:a4:df:42:a8:ad:9f:5d:40:59:aa:aa:29:fa:e3:
8e:f8:0c:da:a0:9e:b2:6b:92:61:3a:88:8e:e7:0d:
90:04:96:c0:9d:5c:49:4b:7b:14:27:2d:a9:f5:e1:
73:39:9a:aa:74:bf:14:20:13:0d:fb:d4:26:ee:91:
c1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:FC:08:68:ED:DD:1C:E9:8F:38:52:9D:35:42:EF:33:30:7E:2D:54
X509v3 Authority Key Identifier:
keyid:19:80:BB:BA:CF:A9:E3:CD:CC:F6:C0:E9:35:36:1A:7A:B2:7D:A1:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GYC7us-p483M9sDpNTYaerJ9oU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/4765e8-61b8-40c7-847f-dcce0c9f4d94/1/9fwIaO3dHOmPOFKdNULvMzB-LVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/4765e8-61b8-40c7-847f-dcce0c9f4d94/1/GYC7us-p483M9sDpNTYaerJ9oU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.245.0/24
193.41.247.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:b3:ab:80:43:35:0d:85:a8:b1:53:09:7c:ea:f9:62:00:46:
ca:05:1f:76:14:7a:1d:a3:4c:25:fd:e5:28:be:4f:df:06:ca:
bb:b6:dc:78:f4:81:46:c8:70:d5:4f:e5:63:fc:1a:69:10:33:
dd:ec:93:2a:c4:1e:bd:03:26:f4:c7:ca:97:89:a2:58:bf:cd:
62:5a:2e:46:67:ec:50:e5:f1:ce:96:74:32:f7:50:b4:90:ac:
1e:c2:3b:28:cb:09:fe:95:eb:c9:da:7c:d1:48:9d:4a:61:6b:
50:13:f6:ce:9c:64:95:1d:96:41:f8:2a:5f:c4:0d:bb:b9:9c:
76:7a:38:a0:01:e1:f8:b3:aa:3e:2d:9d:dd:f2:a8:4d:aa:27:
58:71:3c:4a:c4:3d:c7:a7:49:a6:05:93:82:57:0c:67:b5:b8:
5f:e7:54:d1:62:7b:80:28:15:5b:2e:8d:3c:5e:26:82:1e:33:
73:1a:f4:c4:2d:fe:db:ec:ce:d4:eb:14:00:ef:f9:64:0d:de:
cc:17:6d:65:c8:d8:8e:b4:a1:6c:89:eb:f9:36:ec:e6:41:22:
ec:c3:8b:f1:69:4c:30:7c:47:65:7a:a4:37:9b:ea:2d:8b:85:
51:19:02:46:05:12:70:39:80:e0:cf:44:cb:fc:7a:b4:a8:66:
11:90:8f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:27 2024 by rpki-client on console-fra.rpki-client.org