Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/E4zX_RbeA1ogS0csS4BnOmZv5VE.roa
File: E4zX_RbeA1ogS0csS4BnOmZv5VE.roa (raw, json)
Hash identifier: /9H8yFbhcY8MuAT1hNum9RsFl0CQ6rmmcyxqWRl5JBs=
Subject key identifier: 13:8C:D7:FD:16:DE:03:5A:20:4B:47:2C:4B:80:67:3A:66:6F:E5:51
Certificate issuer: /CN=616a7260f386561b4358ea50c03c5e343d6d0c33
Certificate serial: 018A663F225480B016438B6BA0E93D79D822
Authority key identifier: 61:6A:72:60:F3:86:56:1B:43:58:EA:50:C0:3C:5E:34:3D:6D:0C:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWpyYPOGVhtDWOpQwDxeND1tDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/E4zX_RbeA1ogS0csS4BnOmZv5VE.roa
Signing time: Tue 05 Sep 2023 16:48:48 +0000
ROA not before: Tue 05 Sep 2023 16:48:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 193.109.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 09:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:3f:22:54:80:b0:16:43:8b:6b:a0:e9:3d:79:d8:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=616a7260f386561b4358ea50c03c5e343d6d0c33
Validity
Not Before: Sep 5 16:48:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=138cd7fd16de035a204b472c4b80673a666fe551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0c:c4:1c:c9:a8:ca:0c:25:9a:ac:5c:af:86:
fe:7a:cd:f8:ff:dd:fb:18:4b:1f:13:5e:36:ba:31:
76:f2:19:3c:13:8e:95:d2:ed:72:2e:19:ef:54:79:
61:f1:48:df:26:15:20:d3:c3:40:71:40:27:97:d5:
e1:b5:4f:ed:7d:4f:75:b6:3a:5e:80:e0:e2:ba:14:
37:c0:97:2c:f0:62:03:6a:3f:12:f1:5c:ae:81:5e:
55:6f:8f:b5:26:0d:a5:c0:87:ee:b4:45:f5:9f:6f:
96:e0:d2:3c:e4:b3:be:e5:7a:3b:da:6c:8c:2a:f7:
06:b8:2d:5f:02:83:6d:43:f7:dd:c6:d8:4e:e8:5d:
68:53:11:d2:10:25:47:a8:30:68:c9:db:81:21:a2:
e2:ec:23:85:04:5f:c7:d8:15:15:be:5e:c0:51:ff:
44:bb:c0:8f:ad:52:43:d5:87:ad:7e:40:f6:25:2f:
9e:e8:97:7b:92:61:64:f1:e1:6a:43:79:5f:0c:ed:
aa:a2:4b:9d:f4:95:81:0e:92:31:1d:5b:af:33:cc:
c2:d1:de:66:f1:0e:27:45:16:41:0b:e2:eb:80:f2:
52:f3:d6:b7:1c:5a:fb:68:34:9c:bd:7d:a6:6c:a7:
06:30:80:63:78:9c:f2:d9:52:67:34:c4:ef:f2:f5:
b5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8C:D7:FD:16:DE:03:5A:20:4B:47:2C:4B:80:67:3A:66:6F:E5:51
X509v3 Authority Key Identifier:
keyid:61:6A:72:60:F3:86:56:1B:43:58:EA:50:C0:3C:5E:34:3D:6D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWpyYPOGVhtDWOpQwDxeND1tDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/E4zX_RbeA1ogS0csS4BnOmZv5VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/YWpyYPOGVhtDWOpQwDxeND1tDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.82.0/24
Signature Algorithm: sha256WithRSAEncryption
40:03:10:c0:42:7c:d2:db:6b:48:40:c4:6a:8c:b6:fd:3f:08:
52:f2:0c:cd:14:c0:f4:6d:e2:37:ec:5f:37:3d:fb:85:ea:b2:
1e:07:83:38:25:d7:6f:0e:42:f6:9a:4b:70:99:93:6c:eb:1f:
dd:68:7c:bb:76:3a:56:dd:65:9e:62:97:ae:18:7f:c8:2c:4e:
31:4b:e4:47:f0:b7:63:c6:4c:4b:30:24:5a:f3:2b:c2:be:79:
f0:aa:0c:98:81:af:3b:82:eb:51:65:4f:65:3e:cb:b9:29:a5:
d3:bd:4b:cb:7b:c4:35:6c:44:7f:ab:f1:f4:f7:06:1b:f8:18:
ae:2f:14:1d:80:a4:0a:a7:7a:45:d7:39:c4:34:89:26:70:de:
4f:fe:0a:30:c1:e8:21:fc:16:a6:ba:f4:0e:ab:8a:90:14:c5:
12:1e:8d:c4:e9:7d:05:7c:56:a8:c4:83:71:76:60:82:e7:06:
0f:72:aa:fb:f0:87:16:44:72:df:a0:5a:d9:16:99:7b:29:fd:
89:f9:2c:7b:ac:da:97:4e:61:ae:01:d6:06:41:b0:e7:c7:d4:
46:28:d0:31:3d:ef:f9:90:b9:5f:ca:56:84:a4:7e:43:c7:dd:
e3:8b:77:fb:9a:05:0e:80:54:f3:28:51:85:28:a0:78:cf:8b:
30:73:52:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:54 2024 by rpki-client on console-fra.rpki-client.org