Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/K9RDRvdmwji4C8ir-HCeiZvmz3E.roa
File: K9RDRvdmwji4C8ir-HCeiZvmz3E.roa (raw, json)
Hash identifier: qc367VQ4wilFg+cTBaUL0vokMXqkvyyOyKaN1lgIvfk=
Subject key identifier: 2B:D4:43:46:F7:66:C2:38:B8:0B:C8:AB:F8:70:9E:89:9B:E6:CF:71
Certificate issuer: /CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4
Certificate serial: 018949CBFA944697D97D6184F9338FC3A187
Authority key identifier: FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/K9RDRvdmwji4C8ir-HCeiZvmz3E.roa
Signing time: Wed 12 Jul 2023 11:10:52 +0000
ROA not before: Wed 12 Jul 2023 11:10:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57698
IP address blocks: 193.84.108.0/24 maxlen: 24
2a10:ba80::/31 maxlen: 31
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:cb:fa:94:46:97:d9:7d:61:84:f9:33:8f:c3:a1:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd21cb4baa15862d1b5773bf2be60ca5f4fc24d4
Validity
Not Before: Jul 12 11:10:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bd44346f766c238b80bc8abf8709e899be6cf71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f8:4d:b6:e1:59:a5:e9:f8:3b:3d:f1:3b:06:
09:04:56:75:54:07:cc:32:bf:11:30:e5:48:88:0b:
67:65:e2:52:f3:1d:5b:01:9a:50:fc:84:fe:d9:d3:
54:de:98:05:3b:d7:e0:8d:68:e2:34:95:ff:e2:18:
8b:d7:f9:49:d4:99:44:3c:63:2a:8d:52:60:ae:4d:
c6:6b:6f:0c:6f:da:da:0b:59:16:22:a6:cb:e5:8b:
51:a8:78:c3:68:04:7f:b9:32:03:5d:2e:6a:1d:2d:
83:a5:c4:b7:01:06:33:5a:fd:7d:42:82:ae:dc:e7:
f0:14:07:1b:23:f0:14:8b:7d:eb:e4:91:d5:7e:a3:
d0:05:04:75:3c:ca:20:c9:d0:c5:88:32:9d:09:99:
f4:3d:17:f6:34:a4:9d:58:c3:6f:da:96:6b:f6:a9:
e8:b4:ba:60:ce:8c:90:be:a6:37:af:4e:61:67:fb:
4b:8b:e8:e3:7d:04:e9:5a:50:82:1f:37:1e:b5:00:
5b:b5:ac:1b:ec:ad:19:d4:a9:7d:0a:c5:12:c9:04:
c8:6b:01:b7:b6:38:17:22:3f:98:b1:b0:c3:83:22:
52:c7:1f:ca:32:c1:d2:1a:d2:a3:c4:62:e9:11:26:
53:5b:59:52:d9:2f:bb:7f:da:86:60:85:61:02:42:
d4:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D4:43:46:F7:66:C2:38:B8:0B:C8:AB:F8:70:9E:89:9B:E6:CF:71
X509v3 Authority Key Identifier:
keyid:FD:21:CB:4B:AA:15:86:2D:1B:57:73:BF:2B:E6:0C:A5:F4:FC:24:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/K9RDRvdmwji4C8ir-HCeiZvmz3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/326606-14ba-4436-9985-be5520a5c821/1/_SHLS6oVhi0bV3O_K-YMpfT8JNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.108.0/24
IPv6:
2a10:ba80::/31
Signature Algorithm: sha256WithRSAEncryption
2a:95:05:e3:86:57:bb:3a:68:6f:ad:3d:f0:a0:53:fe:76:fa:
d6:3c:b5:0d:dd:f9:3b:0e:c9:ab:12:9d:63:2d:d9:59:d3:80:
5b:4f:54:c7:a1:81:c0:10:9b:20:7a:d3:98:1b:d3:ca:ca:0a:
7e:85:30:dc:6b:f1:fc:2c:be:4d:84:db:3c:c8:dd:c4:95:95:
6a:b6:0b:02:8a:be:be:49:03:7f:71:7f:a1:be:8c:98:e7:0c:
15:24:cb:2c:46:3b:43:64:c7:58:36:3b:6c:13:9e:5e:7c:fa:
54:7b:78:a8:e8:0e:b3:1c:0b:48:00:04:fc:6f:4a:3d:b3:66:
a1:20:ee:35:f3:7c:a0:f2:e2:08:59:45:c6:12:49:91:6b:48:
dd:a0:6a:7f:cc:7d:f6:29:28:94:d2:50:b4:e4:94:68:0d:57:
42:9b:fa:9d:1a:97:25:3c:e0:55:af:bf:0e:9d:d8:75:9c:a1:
5e:ba:14:41:31:a0:9e:e8:ac:97:f1:ac:0a:c7:cd:3b:9e:99:
fa:26:bb:0c:53:67:e0:4d:9f:38:9e:df:9f:5f:98:cd:fe:c6:
2b:b3:be:a7:f6:02:63:17:98:d9:a3:8a:3a:bf:38:6d:40:3d:
d1:27:95:84:37:15:9f:e7:3b:8b:3b:6d:23:ce:03:bf:1d:c0:
9c:5e:21:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:51 2024 by rpki-client on console-ams.rpki-client.org