Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/T6BVVCnXnBmnZcfwPeOOWMaGabI.roa
File: T6BVVCnXnBmnZcfwPeOOWMaGabI.roa (raw, json)
Hash identifier: H9VZZQ8ps96HFjVUc2c6kVdIUbYO5xyVy79rMb4KfJs=
Subject key identifier: 4F:A0:55:54:29:D7:9C:19:A7:65:C7:F0:3D:E3:8E:58:C6:86:69:B2
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 018CC5DC83521923E0E66E61B27CDFB870F1
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/T6BVVCnXnBmnZcfwPeOOWMaGabI.roa
Signing time: Mon 01 Jan 2024 16:30:12 +0000
ROA not before: Mon 01 Jan 2024 16:30:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3170
IP address blocks: 193.8.173.0/24 maxlen: 24
147.189.141.0/24 maxlen: 24
45.14.112.0/24 maxlen: 24
2a0e:c80:1::/48 maxlen: 48
2a0e:c80:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 18 Oct 2024 05:56:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:83:52:19:23:e0:e6:6e:61:b2:7c:df:b8:70:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 1 16:30:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fa0555429d79c19a765c7f03de38e58c68669b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b1:e5:f9:59:b8:54:82:46:5f:6f:bd:3c:76:
f8:af:c3:6c:7e:1f:b8:d5:39:5a:aa:11:7a:e6:76:
26:c2:7a:ff:cf:8d:0a:7a:20:ca:47:e9:56:2e:93:
13:6d:fc:a1:be:ba:5a:ef:06:e4:a4:50:9c:7c:e6:
ee:38:3d:60:95:b7:2b:82:1e:a5:78:24:7e:14:eb:
df:fb:24:94:34:cd:80:13:cb:97:e0:78:53:0e:1a:
d7:63:43:b9:2f:13:33:54:10:2a:c7:6e:57:92:b6:
5e:a7:48:16:db:b2:e0:e9:6c:be:fd:ed:a0:88:b4:
e8:ed:14:b8:2b:27:73:ae:8b:06:73:1f:09:44:0e:
25:d7:81:70:d3:e5:78:f8:46:46:1c:01:ef:1f:a4:
0c:c2:41:78:47:bc:03:43:6c:bf:a2:71:f7:5a:8d:
54:b2:e7:87:a5:dd:f3:56:07:f6:df:81:55:cd:95:
84:71:b6:e6:39:0c:b6:48:20:75:e0:2c:a0:08:9c:
10:ab:41:a4:e6:ea:46:de:c2:9f:14:8a:5f:89:1b:
38:34:1c:91:00:60:4a:d3:41:15:20:2a:99:37:43:
43:c4:7b:26:c7:95:9c:de:c6:37:42:cc:a6:77:7c:
b0:3f:5d:0d:ac:02:e6:c4:ce:22:b0:a7:3d:26:9c:
c9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A0:55:54:29:D7:9C:19:A7:65:C7:F0:3D:E3:8E:58:C6:86:69:B2
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/T6BVVCnXnBmnZcfwPeOOWMaGabI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.112.0/24
147.189.141.0/24
193.8.173.0/24
IPv6:
2a0e:c80:1::-2a0e:c80:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
64:34:8b:e3:b7:53:b3:09:0c:c8:7d:76:3f:d4:ad:af:bf:38:
b3:b2:fb:00:2e:13:42:77:4c:9b:ee:a5:d0:45:43:33:08:b6:
a0:5f:86:91:18:b5:26:7a:12:a9:e1:39:ed:6a:8f:0c:65:fe:
76:08:9c:a7:fb:11:35:e9:4e:4e:c1:b2:ba:b6:25:0b:f1:61:
aa:c2:31:c0:b6:be:db:9a:87:ca:e6:8a:73:ca:c5:16:d7:5f:
56:cc:fe:bd:5c:db:f0:c0:65:96:d8:66:48:4e:83:6f:aa:e6:
51:59:13:44:35:c3:bc:a5:f5:ee:b0:18:84:00:cc:3b:86:0b:
c3:a0:ff:5e:8a:02:52:70:cd:69:72:c8:66:73:3f:30:9a:b6:
9f:93:08:a4:ab:3e:0b:75:eb:4c:5f:c1:1d:d7:fa:53:12:f6:
b6:26:1a:b2:6a:b8:52:21:f9:37:8a:a9:99:41:7a:22:c1:80:
3e:4f:9b:1c:0c:81:ec:24:97:ce:61:0b:56:4a:35:73:3d:73:
18:66:76:63:5f:88:65:6e:d1:e5:a6:fe:9c:ab:ea:40:30:79:
c4:fb:f0:c9:08:a5:c6:9d:bc:38:a4:72:8a:c5:8a:a4:6b:12:
b3:fc:09:f4:35:be:23:13:06:1e:2f:43:83:e1:0c:c8:c7:ff:
66:2f:05:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 18 06:36:34 2024 by rpki-client on console-fra.rpki-client.org