Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/lCl9DtrLmNZT_BLxQf4LAPdS3Po.roa
File: lCl9DtrLmNZT_BLxQf4LAPdS3Po.roa (raw, json)
Hash identifier: 3RATUmrXz1yQzjiq7dzgHTD+EFhg3IrD3rxlmZekdnU=
Subject key identifier: 94:29:7D:0E:DA:CB:98:D6:53:FC:12:F1:41:FE:0B:00:F7:52:DC:FA
Certificate issuer: /CN=add261cad0dff2d9bb2f8c7ad0db26ed5730d3dd
Certificate serial: 01856D8ADC0397EBBC28003AA0737D7C96B5
Authority key identifier: AD:D2:61:CA:D0:DF:F2:D9:BB:2F:8C:7A:D0:DB:26:ED:57:30:D3:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdJhytDf8tm7L4x60Nsm7Vcw090.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/lCl9DtrLmNZT_BLxQf4LAPdS3Po.roa
Signing time: Sun 01 Jan 2023 13:34:54 +0000
ROA not before: Sun 01 Jan 2023 13:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.138.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:dc:03:97:eb:bc:28:00:3a:a0:73:7d:7c:96:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add261cad0dff2d9bb2f8c7ad0db26ed5730d3dd
Validity
Not Before: Jan 1 13:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94297d0edacb98d653fc12f141fe0b00f752dcfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:eb:48:23:5e:b3:20:61:ff:d7:53:a7:5f:64:
2b:8b:15:79:a4:5c:9f:ed:98:dc:ad:d7:92:e3:a8:
46:6c:7a:85:84:ca:1e:b7:93:05:a5:8d:3c:78:e0:
a7:f2:a7:49:4a:6b:e1:91:65:59:86:c2:e9:c6:40:
e6:74:60:a2:b4:3a:d5:01:6d:2b:ba:33:0c:b4:79:
02:27:95:68:09:fc:04:17:3e:dc:96:c7:51:e7:8a:
be:56:d8:2b:47:e3:31:ed:2e:b3:e9:b2:d7:07:f4:
71:99:00:34:eb:ab:64:58:0d:90:db:7b:20:40:19:
d3:6d:82:35:8f:3b:9f:9f:b7:ea:44:59:05:a6:05:
e1:8c:4c:17:92:69:d7:38:75:33:2e:d2:6f:6a:7e:
5a:90:5a:bd:87:0f:96:82:34:5f:fd:de:20:ca:ce:
e5:07:e0:8c:7e:2c:11:cd:17:81:0d:77:1c:1e:87:
94:5f:b9:1c:41:9c:3a:93:de:75:95:8b:5e:1b:53:
6b:78:9f:a3:76:0b:7f:e7:ac:83:43:dc:5e:b3:71:
2f:92:60:32:82:81:2c:4e:cb:e1:9a:37:fa:02:9e:
86:72:b4:8d:06:f7:fe:5f:f9:b1:b5:8d:ba:ee:15:
a2:73:98:47:c8:d5:df:ec:8c:15:d1:51:0a:9a:3b:
34:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:29:7D:0E:DA:CB:98:D6:53:FC:12:F1:41:FE:0B:00:F7:52:DC:FA
X509v3 Authority Key Identifier:
keyid:AD:D2:61:CA:D0:DF:F2:D9:BB:2F:8C:7A:D0:DB:26:ED:57:30:D3:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdJhytDf8tm7L4x60Nsm7Vcw090.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/lCl9DtrLmNZT_BLxQf4LAPdS3Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/rdJhytDf8tm7L4x60Nsm7Vcw090.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.253.0/24
Signature Algorithm: sha256WithRSAEncryption
44:7e:6e:90:16:35:2b:2b:d3:fb:19:22:4c:a5:ce:64:ea:66:
31:45:52:79:23:60:c2:ca:f0:97:4c:ff:bb:d7:ac:2d:e3:a6:
da:dd:c3:63:b8:39:fb:db:22:fe:e2:64:99:62:11:ed:d3:21:
85:0d:a6:79:1c:7d:38:78:50:f9:fc:58:62:67:d1:71:2e:9e:
ec:71:95:77:25:0c:71:76:7f:f2:11:f5:e3:47:19:5e:5e:f0:
b5:ad:d0:65:ab:8c:aa:4f:a3:78:ff:87:33:29:9d:55:70:ef:
3f:19:3c:8b:f2:b4:fe:72:3a:07:e5:44:b2:3e:b4:ad:9b:ce:
e0:e3:12:ba:49:22:25:c7:26:4c:e4:0e:35:62:ed:29:8e:12:
09:51:11:ef:a6:e9:bd:88:e8:d2:83:07:5e:bc:c8:50:10:d0:
d9:c5:b4:d9:7d:d2:0f:ab:fd:06:73:62:d1:93:4b:0c:a7:74:
3f:da:5a:a6:df:31:0b:ee:ed:22:65:fd:bd:89:88:51:49:73:
aa:d5:07:20:c9:95:4a:19:6d:ab:23:59:fa:f6:70:84:31:08:
3d:61:8e:37:7f:7a:32:f0:6e:70:5d:37:7b:dd:7c:d1:f7:d1:
f3:37:d4:0d:79:2f:3c:8e:79:c5:61:48:c4:a0:0e:f5:51:8a:
21:39:b6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:14 2024 by rpki-client on console-ams.rpki-client.org