Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/dEHjGnsY-KsMizdqq2T7AI2RxiM.roa
File: dEHjGnsY-KsMizdqq2T7AI2RxiM.roa (raw, json)
Hash identifier: +kaWMqhU0JF0fcUXPZYDxBWbZ710wKrWbmbGVvol9w8=
Subject key identifier: 74:41:E3:1A:7B:18:F8:AB:0C:8B:37:6A:AB:64:FB:00:8D:91:C6:23
Certificate issuer: /CN=19d960058a553b3f5df9fe727219037c48ab50e1
Certificate serial: 01857070803D020D122E25D7EA849EDCD357
Authority key identifier: 19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/dEHjGnsY-KsMizdqq2T7AI2RxiM.roa
Signing time: Mon 02 Jan 2023 03:04:59 +0000
ROA not before: Mon 02 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39383
IP address blocks: 193.84.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:80:3d:02:0d:12:2e:25:d7:ea:84:9e:dc:d3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d960058a553b3f5df9fe727219037c48ab50e1
Validity
Not Before: Jan 2 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7441e31a7b18f8ab0c8b376aab64fb008d91c623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:70:87:e6:0e:dc:35:d2:82:66:d6:c7:38:01:
46:38:bc:48:b7:47:4d:be:07:18:18:db:1f:7b:9b:
0e:a7:d3:99:ee:b6:d3:5a:ec:84:78:42:dc:ef:73:
75:24:5a:1f:da:30:35:e7:9e:2d:97:d2:97:78:34:
e3:1d:ac:8a:d7:a2:ab:7b:76:04:e2:85:1b:36:08:
0f:db:49:5e:25:74:69:e8:88:a4:92:4a:1f:ec:46:
02:70:4d:9a:21:63:e2:12:f7:9a:e0:4f:4a:07:48:
35:3e:97:ee:4d:1f:9d:b4:2f:97:70:d4:f7:a3:d0:
2e:59:a1:ee:01:5d:b5:95:e8:dc:dc:8c:71:1b:dc:
ca:15:9d:d6:45:ce:3f:6d:81:7c:58:93:9c:3d:00:
a9:86:73:4d:60:6c:3b:7f:d2:7d:67:f0:65:43:9e:
ef:60:6c:8f:67:c2:3e:3f:8f:03:6a:e2:c3:0a:ce:
99:da:3c:3d:c4:e7:58:67:e7:d8:26:2f:4f:c3:27:
7b:e7:c6:02:27:7c:c1:a2:80:f1:32:b8:03:98:b6:
a8:61:7b:84:f9:5d:57:6d:8b:2f:db:29:50:fa:73:
92:af:19:49:04:a0:7b:ea:a8:10:66:0d:a5:7c:c9:
e1:e3:b0:4a:03:2e:05:e5:d5:89:15:cc:38:9e:85:
75:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:41:E3:1A:7B:18:F8:AB:0C:8B:37:6A:AB:64:FB:00:8D:91:C6:23
X509v3 Authority Key Identifier:
keyid:19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/dEHjGnsY-KsMizdqq2T7AI2RxiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.64.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:88:f7:fb:5a:52:11:63:68:ed:a0:56:e9:94:f1:f1:94:e4:
20:93:1d:4e:22:22:e9:8d:8a:e8:09:af:79:c3:ed:2a:db:60:
da:37:34:a7:65:cf:4e:a5:19:80:a4:59:aa:5e:ec:c3:a9:bb:
a2:b7:78:ab:9d:9c:5e:97:3e:26:3b:28:94:ce:05:c5:ac:95:
18:59:e1:e8:7d:d4:3d:76:68:db:c9:51:8c:bd:66:d0:03:31:
59:cd:f1:23:d8:2c:4d:45:ef:e0:2b:52:c0:31:23:0d:56:27:
55:83:91:d4:c4:ef:35:52:1b:85:af:64:9f:9c:30:94:59:14:
b6:59:42:65:7b:20:f4:69:b9:98:8c:46:4d:a7:3e:0b:4d:55:
4c:6d:54:d9:0e:c4:a9:78:e0:96:7c:29:7c:57:59:d7:0c:d2:
9e:58:ab:b8:83:7b:ba:3c:e7:33:73:6d:47:b8:74:ed:1e:c8:
1d:ed:30:88:8b:44:15:0e:bf:63:db:88:41:7f:60:d8:54:37:
0b:c3:77:89:9d:c8:c2:70:e0:29:5f:c2:48:40:9b:cd:c1:65:
7e:71:fd:4c:0e:eb:85:d8:ed:77:a5:1a:4b:51:7d:88:ba:a2:
11:52:55:ee:3d:60:12:7c:2f:21:3d:86:3b:bb:c9:ea:f7:ff:
28:74:59:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:49 2024 by rpki-client on console-fra.rpki-client.org