Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/_jYbk6lRSWXGpxGW4-31T78pruU.roa
File: _jYbk6lRSWXGpxGW4-31T78pruU.roa (raw, json)
Hash identifier: xLQITQ/wkZjGfcU9x5MU8yru64QUJQvSwLRETi6W6do=
Subject key identifier: FE:36:1B:93:A9:51:49:65:C6:A7:11:96:E3:ED:F5:4F:BF:29:AE:E5
Certificate issuer: /CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Certificate serial: 018CF8A485B19B35AE515B2A40CB59949E47
Authority key identifier: A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/_jYbk6lRSWXGpxGW4-31T78pruU.roa
Signing time: Thu 11 Jan 2024 13:09:40 +0000
ROA not before: Thu 11 Jan 2024 13:09:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.53.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 10:55:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f8:a4:85:b1:9b:35:ae:51:5b:2a:40:cb:59:94:9e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7fd3f89335dcf828666b28fad8ae993bd448878
Validity
Not Before: Jan 11 13:09:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe361b93a9514965c6a71196e3edf54fbf29aee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:8b:86:2e:cc:e8:6e:17:63:4d:d3:ea:ea:81:
1b:cf:d1:92:01:da:90:89:38:0c:70:d5:32:e7:19:
4a:36:0c:cf:9d:22:b1:b4:87:41:ad:7b:63:32:c6:
cd:fd:de:cc:5c:a5:39:9a:8f:00:a5:ba:b7:14:37:
7e:78:02:7a:90:60:82:76:3d:6b:6a:f9:6e:2e:92:
d9:d6:bc:4f:2e:95:8e:f9:52:42:b9:04:44:72:bd:
6b:f0:b4:ab:54:ac:e5:07:22:4a:41:ba:cf:0a:c3:
72:2e:bd:9f:c7:e0:82:9f:9e:ad:e3:29:99:0a:d0:
e5:fb:14:2a:69:a8:ed:0c:b1:37:02:3a:02:99:37:
c5:08:55:a6:be:e5:79:5a:21:f8:f0:b3:c9:a6:c3:
cd:55:50:fd:8e:e0:04:6e:af:ca:ef:e3:55:ee:69:
59:fe:9a:b7:62:ce:47:af:1c:60:fc:2a:da:23:d4:
7d:e0:cb:97:a4:c3:2b:85:11:7c:22:b3:cc:6e:50:
56:e1:d7:0b:93:4d:4e:1a:ba:19:9f:78:6c:8a:80:
fd:b6:66:28:c7:ac:81:f4:8c:7b:32:e7:1c:9b:92:
31:49:f4:23:0b:cd:37:8a:7d:09:70:a5:3f:8b:4e:
56:de:8b:48:d5:ca:fe:b8:4f:e6:f2:59:e1:14:ea:
8a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:36:1B:93:A9:51:49:65:C6:A7:11:96:E3:ED:F5:4F:BF:29:AE:E5
X509v3 Authority Key Identifier:
keyid:A7:FD:3F:89:33:5D:CF:82:86:66:B2:8F:AD:8A:E9:93:BD:44:88:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_0_iTNdz4KGZrKPrYrpk71EiHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/_jYbk6lRSWXGpxGW4-31T78pruU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/388fd8-c81f-4e71-af52-c0b1ad435b95/1/p_0_iTNdz4KGZrKPrYrpk71EiHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.53.82.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:73:85:18:e2:e1:a7:7b:c4:08:a7:00:84:95:0a:ce:b5:59:
01:65:81:4d:1d:06:57:92:b1:85:b9:bd:b3:8b:17:9b:6b:4f:
ac:fa:92:eb:94:6c:9f:13:9a:c0:dc:a4:41:5c:d9:e1:ea:f7:
c9:21:e3:46:e3:f8:e3:86:31:be:11:0e:d2:e0:6a:2f:f9:0f:
b0:b2:d2:a6:d9:bf:05:5d:2e:64:d4:32:d9:73:0d:66:c7:ff:
64:0c:10:a2:85:3b:6c:77:ff:30:79:c0:4c:d5:17:40:19:ef:
51:97:f0:08:f5:93:a2:94:cd:23:78:fc:16:1a:ab:60:49:b0:
bc:39:40:aa:74:94:47:4f:d0:7c:02:b6:6c:95:a3:c7:f7:24:
70:12:61:7b:fb:0b:33:97:a2:08:cf:79:44:5b:6e:2d:12:48:
9d:4a:f2:01:4c:03:ab:d7:2b:fc:7c:2e:34:d4:96:98:86:7a:
64:86:8a:43:06:2a:8f:bc:09:67:d8:ba:66:9a:6f:82:0f:7c:
c4:3d:cf:63:f7:5e:81:de:b9:f1:e3:55:70:d0:f2:a3:bb:b7:
48:b0:7e:36:fa:e6:a3:e9:3f:71:27:63:96:20:67:92:c2:c6:
e0:b1:5b:c6:ac:c4:22:9c:cd:8f:b0:d9:50:4e:b2:c1:f7:8a:
98:c8:28:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 15:50:42 2024 by rpki-client on console-ams.rpki-client.org