Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/a48388-2ed7-44cf-9557-f38b289ff969/1/SuVyUWwx2RxP8QBUqj0Tegh9NvY.roa
File: SuVyUWwx2RxP8QBUqj0Tegh9NvY.roa (raw, json)
Hash identifier: qfhhaGICq0MHELBoh9W37/VpsJbGCzgxiXB+x7oQ0K4=
Subject key identifier: 4A:E5:72:51:6C:31:D9:1C:4F:F1:00:54:AA:3D:13:7A:08:7D:36:F6
Certificate issuer: /CN=256452a3420f4f18dfa3a14d26b3348fdfcf3d3b
Certificate serial: 018B20C57E5E865D42C9CB34A7EAAE128E87
Authority key identifier: 25:64:52:A3:42:0F:4F:18:DF:A3:A1:4D:26:B3:34:8F:DF:CF:3D:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JWRSo0IPTxjfo6FNJrM0j9_PPTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/a48388-2ed7-44cf-9557-f38b289ff969/1/SuVyUWwx2RxP8QBUqj0Tegh9NvY.roa
Signing time: Wed 11 Oct 2023 22:04:55 +0000
ROA not before: Wed 11 Oct 2023 22:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206894
IP address blocks: 193.25.96.0/24 maxlen: 24
193.25.96.0/23 maxlen: 23
193.24.38.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 25 Oct 2023 12:05:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:c5:7e:5e:86:5d:42:c9:cb:34:a7:ea:ae:12:8e:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=256452a3420f4f18dfa3a14d26b3348fdfcf3d3b
Validity
Not Before: Oct 11 22:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ae572516c31d91c4ff10054aa3d137a087d36f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f0:01:8a:d0:ca:26:c4:a1:c3:cf:25:32:e0:
78:f6:83:19:92:0f:c2:52:b1:26:b9:28:89:ee:41:
59:48:4b:f3:2d:93:7e:2b:da:9d:7d:a2:cb:b7:cc:
d2:6b:41:29:1e:e5:ba:2a:3d:72:b0:a5:48:91:27:
5e:58:3d:b5:df:89:f1:24:c6:85:1f:82:94:de:88:
de:49:67:24:df:2d:20:70:50:37:0a:ff:36:15:ce:
e4:d3:57:ba:92:fe:c5:ac:3e:23:68:de:1f:5b:59:
fe:a7:ce:b1:75:ce:d3:29:1e:09:72:6a:ec:f8:a6:
a5:29:12:e6:ff:b6:3f:c1:a8:45:43:5b:0d:e2:cd:
47:90:f5:0d:ca:ec:ba:b6:19:45:1e:2c:a2:4e:06:
d1:a0:f0:f4:e5:17:25:15:fd:0f:81:87:fd:93:5e:
c8:c2:bf:f3:db:a1:92:b5:07:ef:96:36:1f:1b:87:
8b:8f:5c:c7:1b:25:18:98:64:b4:f8:95:a5:a3:75:
5d:3b:fa:a1:16:39:f1:f2:eb:97:fb:17:87:ea:2f:
b2:4d:e9:f6:ba:98:b1:47:5d:92:a4:b3:99:88:35:
51:83:b1:d7:98:38:c0:37:e3:45:2e:9c:a2:cb:4a:
4b:7f:9a:95:6f:2b:89:09:4c:3a:47:26:70:14:6e:
15:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E5:72:51:6C:31:D9:1C:4F:F1:00:54:AA:3D:13:7A:08:7D:36:F6
X509v3 Authority Key Identifier:
keyid:25:64:52:A3:42:0F:4F:18:DF:A3:A1:4D:26:B3:34:8F:DF:CF:3D:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JWRSo0IPTxjfo6FNJrM0j9_PPTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/a48388-2ed7-44cf-9557-f38b289ff969/1/SuVyUWwx2RxP8QBUqj0Tegh9NvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/a48388-2ed7-44cf-9557-f38b289ff969/1/JWRSo0IPTxjfo6FNJrM0j9_PPTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.38.0/23
193.25.96.0/23
Signature Algorithm: sha256WithRSAEncryption
52:9c:83:66:6c:da:9f:83:e0:1a:db:af:fd:9c:d0:ec:70:57:
3e:33:19:36:80:27:26:c7:d5:02:cb:be:6a:49:d9:2d:c2:9c:
4f:54:ff:64:fb:41:85:a9:d9:be:92:77:aa:5e:05:6c:6f:21:
29:b8:be:c6:07:50:67:dc:b9:ad:eb:1a:d6:bb:ed:95:11:85:
81:52:da:6a:43:4f:57:91:a5:56:e1:bb:d3:54:a3:21:47:15:
31:62:7f:0b:8b:f3:82:c5:ac:2f:13:1f:cb:7b:2a:f7:51:72:
05:59:1d:74:ed:92:a8:85:a3:54:26:a3:61:b3:7e:99:18:d7:
89:05:9a:0e:62:e0:62:70:ee:a9:e8:41:81:20:c9:a2:80:a1:
4a:85:b3:42:3c:32:13:c7:7b:6a:8e:f4:a3:44:a2:d3:d6:24:
05:68:ca:4c:7b:6a:a4:db:07:83:d4:7c:85:15:f3:45:03:52:
67:2c:26:04:ba:22:f3:ed:be:ba:1d:28:20:6c:7c:93:cb:8e:
53:cb:c6:88:cc:e6:4f:d6:80:6f:ad:18:f5:8b:4e:22:2c:c6:
bc:3d:50:2f:93:b3:b6:32:18:d0:79:89:c8:62:82:96:01:ad:
f4:30:a0:7c:23:c5:d7:0c:80:83:61:e6:c7:e1:43:28:ce:95:
fc:c2:a0:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:32 2024 by rpki-client on console-ams.rpki-client.org