Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/NIsXHOuqh2AFotexERM2rFtzpRc.roa
File: NIsXHOuqh2AFotexERM2rFtzpRc.roa (raw, json)
Hash identifier: 5U0fUuNmuVduF65jxBGY9GGnJFZMyYUG/7Hk8sGpA08=
Subject key identifier: 34:8B:17:1C:EB:AA:87:60:05:A2:D7:B1:11:13:36:AC:5B:73:A5:17
Certificate issuer: /CN=616a7260f386561b4358ea50c03c5e343d6d0c33
Certificate serial: 018A663F22F2891E3A0E2D3C881634C1618F
Authority key identifier: 61:6A:72:60:F3:86:56:1B:43:58:EA:50:C0:3C:5E:34:3D:6D:0C:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWpyYPOGVhtDWOpQwDxeND1tDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/NIsXHOuqh2AFotexERM2rFtzpRc.roa
Signing time: Tue 05 Sep 2023 16:48:48 +0000
ROA not before: Tue 05 Sep 2023 16:48:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 193.109.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 09:49:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:66:3f:22:f2:89:1e:3a:0e:2d:3c:88:16:34:c1:61:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=616a7260f386561b4358ea50c03c5e343d6d0c33
Validity
Not Before: Sep 5 16:48:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=348b171cebaa876005a2d7b1111336ac5b73a517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:45:f6:52:8f:1c:1a:7e:75:68:94:2c:ba:7a:
2b:70:e0:3a:0b:bb:58:f7:e8:68:d0:86:bd:fe:24:
e1:e9:97:ee:e3:8b:85:25:39:64:06:0e:2c:a9:4f:
8b:56:3a:2e:35:08:2a:21:3a:4f:8e:ed:f0:89:28:
bf:d1:af:4a:b6:08:f5:44:35:d2:43:78:d4:8c:33:
db:6e:23:0b:8e:9b:e1:49:7a:90:3b:6e:dc:80:fa:
0f:35:ef:37:b8:7f:76:5e:c7:3d:fd:b2:56:af:bb:
fd:be:cd:45:d6:62:ee:fd:3a:6c:48:6c:82:72:37:
09:d1:00:d2:66:18:42:69:65:72:6c:10:9f:8a:7d:
54:b5:cb:e1:ab:7d:dd:30:af:2b:dc:4c:fa:69:54:
3e:fa:51:a5:a0:2f:00:a4:2b:ba:24:9e:36:e3:d0:
1d:91:5b:d7:40:21:ab:11:b3:ef:25:35:6f:99:cb:
f2:9e:76:6d:db:04:9c:97:6f:a9:ef:b7:d1:c2:0f:
d9:89:4e:a4:6e:92:28:8b:99:69:1f:ef:a8:72:4e:
2f:14:69:fb:04:f6:6f:d6:9b:a5:4f:88:7f:da:d2:
b6:dc:2f:60:7e:65:29:0f:dd:d2:30:44:56:f2:c1:
a3:c3:78:94:a7:ca:9d:4d:21:35:76:b6:cb:df:dc:
09:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:8B:17:1C:EB:AA:87:60:05:A2:D7:B1:11:13:36:AC:5B:73:A5:17
X509v3 Authority Key Identifier:
keyid:61:6A:72:60:F3:86:56:1B:43:58:EA:50:C0:3C:5E:34:3D:6D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWpyYPOGVhtDWOpQwDxeND1tDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/NIsXHOuqh2AFotexERM2rFtzpRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/67668a-21e5-4954-aa27-c0e3c9072062/1/YWpyYPOGVhtDWOpQwDxeND1tDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.82.0/24
Signature Algorithm: sha256WithRSAEncryption
10:72:9b:30:54:20:9d:50:63:11:e4:8d:c8:1d:cb:cb:7b:c1:
b3:f7:0c:dc:b8:c9:21:d0:81:76:8e:ae:60:24:4c:c1:aa:ce:
fe:63:c0:77:83:cb:42:89:64:48:cc:a4:3b:85:fc:95:5a:ae:
6c:08:b1:5f:62:10:57:98:4c:51:06:37:b4:30:5b:14:fc:5d:
3c:d5:e6:f0:73:cd:a0:9d:04:4b:67:84:c8:73:c3:43:d9:3e:
1e:16:e0:7d:bf:a6:90:cf:b2:74:5d:46:0e:0a:a5:c2:21:2a:
7c:18:58:67:aa:0f:65:04:24:ad:c8:c8:8e:43:a2:4e:f6:23:
5f:ef:0a:ae:f7:ac:6a:8f:b6:2b:bb:e9:ee:14:b5:7e:28:3a:
20:e1:d7:dd:07:4d:d7:b9:83:98:df:5f:8f:26:98:27:c6:af:
b5:e2:4e:f8:87:47:35:2e:58:ad:bc:c4:a5:f0:8a:29:fb:c0:
b4:29:70:57:ce:80:32:74:5d:e1:cf:88:5c:f7:b9:63:3e:e9:
8f:66:ce:0f:68:fb:92:a4:65:d5:3f:a3:f7:6e:ff:a6:8e:fd:
35:07:21:10:35:6a:2a:03:1b:63:cf:04:3c:0f:6a:01:75:98:
cc:37:9f:01:a0:c9:3b:87:c7:cc:8f:ff:f1:b9:b1:84:44:b9:
00:e4:9a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:44 2024 by rpki-client on console-ams.rpki-client.org