Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/a41c6d-f142-4c25-8997-63fae389a4db/1/tIYK--SRryCI4N2b-q99e8nurzo.roa
File: tIYK--SRryCI4N2b-q99e8nurzo.roa (raw, json)
Hash identifier: 0tf7jFkREZwd0Upu/aMiCjEMUa4Of8nuJ03itQXWqDM=
Subject key identifier: B4:86:0A:FB:E4:91:AF:20:88:E0:DD:9B:FA:AF:7D:7B:C9:EE:AF:3A
Certificate issuer: /CN=5701528c2a2e2c46913c0b28ca3570f3880f1a56
Certificate serial: 0185723112263B3DA382D5D056A90D0CE7B3
Authority key identifier: 57:01:52:8C:2A:2E:2C:46:91:3C:0B:28:CA:35:70:F3:88:0F:1A:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VwFSjCouLEaRPAsoyjVw84gPGlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/a41c6d-f142-4c25-8997-63fae389a4db/1/tIYK--SRryCI4N2b-q99e8nurzo.roa
Signing time: Mon 02 Jan 2023 11:14:56 +0000
ROA not before: Mon 02 Jan 2023 11:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33813
IP address blocks: 193.242.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:12:26:3b:3d:a3:82:d5:d0:56:a9:0d:0c:e7:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5701528c2a2e2c46913c0b28ca3570f3880f1a56
Validity
Not Before: Jan 2 11:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4860afbe491af2088e0dd9bfaaf7d7bc9eeaf3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:9c:80:0b:9b:f3:34:ab:af:f1:cd:dc:af:
92:c9:9c:ef:13:1e:45:85:a8:03:c7:a6:e0:4d:67:
12:0b:5c:92:9f:06:7b:83:82:cc:61:f1:ac:c7:71:
fc:19:ef:9e:44:2a:80:18:93:55:6d:3f:a0:59:fe:
0b:02:17:f7:c3:f4:70:d7:fc:d8:65:81:4a:f9:c4:
6d:56:a1:ed:db:14:9a:2a:51:b6:3d:49:02:3b:6c:
a9:05:d6:db:83:2e:9b:d1:91:83:78:9c:77:8d:b4:
b2:d3:dd:cb:d6:b7:5b:0b:59:a0:bc:84:fd:97:02:
d3:12:19:3a:4d:24:00:01:dc:39:d3:27:21:39:70:
96:e3:23:5f:a3:8e:78:ce:0a:84:b3:bc:de:97:73:
cb:e6:b6:39:53:46:6f:8f:7b:29:2d:0a:85:6f:3a:
b3:02:3b:47:44:27:c3:43:cd:c9:63:42:87:71:14:
d7:dc:41:f7:1f:b4:37:61:c3:e8:5a:cc:4a:e7:21:
46:91:ce:7f:62:c2:af:f4:39:48:49:6a:3f:7b:8b:
c9:00:20:2d:16:b6:bf:76:06:d3:c2:c5:2f:5a:5b:
7b:cb:ba:a5:4c:d0:a5:ef:b6:d3:79:f5:43:1c:22:
1f:ea:fb:7b:b6:38:5a:fc:c8:e8:01:93:85:86:06:
b3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:86:0A:FB:E4:91:AF:20:88:E0:DD:9B:FA:AF:7D:7B:C9:EE:AF:3A
X509v3 Authority Key Identifier:
keyid:57:01:52:8C:2A:2E:2C:46:91:3C:0B:28:CA:35:70:F3:88:0F:1A:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VwFSjCouLEaRPAsoyjVw84gPGlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/a41c6d-f142-4c25-8997-63fae389a4db/1/tIYK--SRryCI4N2b-q99e8nurzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/a41c6d-f142-4c25-8997-63fae389a4db/1/VwFSjCouLEaRPAsoyjVw84gPGlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.124.0/24
Signature Algorithm: sha256WithRSAEncryption
26:49:51:e5:74:eb:d5:d8:89:0d:55:d1:09:68:4c:38:55:18:
91:0e:fa:51:4c:2e:c6:0e:4f:2e:fa:00:5a:94:65:20:c9:3d:
24:5b:62:73:c8:51:b0:bd:a4:fe:fa:94:7d:ba:11:bb:8a:1b:
39:47:50:32:3a:36:36:6f:49:87:02:97:23:95:e9:26:1b:a5:
0b:80:bc:27:12:5f:29:8b:c9:87:33:6c:fc:a8:42:ee:c5:24:
c6:2e:e8:0f:8d:42:63:cc:7c:35:2f:aa:56:f0:ee:98:e9:d6:
d7:30:36:8f:f3:d0:43:91:74:f5:32:04:c8:3c:c4:02:b0:4d:
2e:bc:a5:09:3b:9f:1b:c4:31:dd:95:0e:d7:a8:c0:18:35:a8:
0f:3a:74:db:60:11:f6:57:d1:d2:cc:9e:74:cf:24:23:fd:04:
2c:32:51:ac:1a:38:c0:f0:86:2d:2e:1a:51:e3:97:17:3f:ce:
53:47:9a:31:6b:b7:4d:32:02:0b:a7:36:2d:1e:70:0f:dd:4e:
a2:72:eb:34:ff:46:b0:16:22:86:b2:02:14:4d:92:5e:df:63:
f7:77:a3:d1:b8:ce:a0:de:74:48:2e:8d:a6:37:0a:9d:98:ef:
6b:75:39:bd:e2:a3:b9:e8:51:e4:6c:41:ee:28:62:4f:59:7d:
c2:49:8c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-fra.rpki-client.org