Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/PVyvSE4qWtRUgaHNYM2Zo6uUKBo.roa
File: PVyvSE4qWtRUgaHNYM2Zo6uUKBo.roa (raw, json)
Hash identifier: edeXjSthWHQVqNWwsp1CmxCrDXWnP73GmO41SzL+p3w=
Subject key identifier: 3D:5C:AF:48:4E:2A:5A:D4:54:81:A1:CD:60:CD:99:A3:AB:94:28:1A
Certificate issuer: /CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Certificate serial: 018F05510C30B5C2760D0E2B1C46FF336D84
Authority key identifier: A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/PVyvSE4qWtRUgaHNYM2Zo6uUKBo.roa
Signing time: Mon 22 Apr 2024 10:19:08 +0000
ROA not before: Mon 22 Apr 2024 10:19:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200260
IP address blocks: 193.242.222.0/24 maxlen: 24
2a13:75c1:100::/40 maxlen: 48
2a13:75c1:2000::/36 maxlen: 48
Validation: Failed, certificate revoked on Tue 23 Apr 2024 23:25:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:05:51:0c:30:b5:c2:76:0d:0e:2b:1c:46:ff:33:6d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a15237c39a325aa309b69e66fe09237da1ad0d2b
Validity
Not Before: Apr 22 10:19:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d5caf484e2a5ad45481a1cd60cd99a3ab94281a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:af:65:df:78:df:dd:bb:40:73:4f:ee:5e:25:
44:4c:ea:d5:65:d2:2f:bc:e2:53:3b:0a:ae:ed:be:
66:1a:09:64:2c:64:22:ac:44:b9:e4:62:33:66:59:
1e:8c:28:8b:28:3d:3f:19:97:6e:d8:14:8c:5d:4a:
c2:5a:bf:04:82:12:c2:25:aa:fb:33:3d:79:ce:be:
1b:00:66:2e:ec:3e:cb:74:cc:36:a6:f5:ce:3b:97:
02:09:db:fd:70:94:f3:67:de:93:7b:a1:0b:c8:63:
d3:8a:6f:db:22:37:55:f2:d7:c1:e4:d2:f7:0f:c1:
a5:40:1e:7a:8b:fa:cd:41:b8:4e:ed:54:4f:62:6c:
e9:d2:bd:6e:67:91:71:eb:11:71:28:72:47:d1:46:
59:b8:83:01:3a:e6:50:b8:43:20:ec:39:47:17:8b:
64:61:cf:04:23:c8:66:67:15:ac:50:95:98:b1:95:
bb:9f:c0:ef:c8:46:f3:07:e2:84:23:69:6d:ed:27:
55:34:c4:09:6f:63:62:94:20:dd:4d:fa:b3:47:b1:
50:17:bb:70:dd:a7:5b:e4:0e:72:8d:11:05:58:e8:
65:7f:5e:19:9f:9f:6f:f8:1b:89:6e:8f:1e:ab:49:
c5:e9:67:15:ec:10:03:34:2d:cf:70:54:93:9b:59:
b0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5C:AF:48:4E:2A:5A:D4:54:81:A1:CD:60:CD:99:A3:AB:94:28:1A
X509v3 Authority Key Identifier:
keyid:A1:52:37:C3:9A:32:5A:A3:09:B6:9E:66:FE:09:23:7D:A1:AD:0D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oVI3w5oyWqMJtp5m_gkjfaGtDSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/PVyvSE4qWtRUgaHNYM2Zo6uUKBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/f33229-ca2d-4108-892d-4c910ae3735d/1/oVI3w5oyWqMJtp5m_gkjfaGtDSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.222.0/24
IPv6:
2a13:75c1:100::/40
2a13:75c1:2000::/36
Signature Algorithm: sha256WithRSAEncryption
38:d2:55:1e:b2:46:a2:01:4c:d7:4f:61:cb:57:98:64:b8:af:
17:20:11:bb:21:15:5c:35:f9:65:bc:10:c6:3b:e8:9b:70:02:
c2:02:6b:21:cc:f7:e8:e0:76:3b:db:2f:6b:73:c1:8d:b5:de:
08:de:7c:8c:fd:f9:64:82:8a:9c:6a:c3:a1:38:03:bd:0a:84:
89:33:d6:57:a1:2d:ba:3a:ee:ad:f7:eb:93:d3:6c:ec:81:ea:
d2:4f:d8:8b:6c:75:49:87:74:0e:7c:aa:ea:ea:9d:59:fb:7e:
39:30:1c:f2:72:3b:07:81:82:05:4a:31:dd:6e:67:ef:37:38:
7b:ce:a7:71:e8:73:ef:30:7d:f7:b5:a3:cd:03:61:5d:ac:ef:
4b:f0:aa:7e:51:fa:c1:71:69:b6:4f:47:69:88:db:b7:a9:b0:
25:7b:4a:9b:59:a4:10:a1:18:5b:27:3d:57:7f:fe:4e:d3:0a:
54:af:49:bf:3f:c8:ad:77:ae:50:91:61:d6:24:6c:0d:40:1b:
65:b9:24:6c:f0:d6:7d:67:a4:9a:5b:46:df:46:dc:74:f9:38:
0a:30:f2:ac:9c:56:27:26:a3:8b:65:36:c4:bb:90:43:62:7d:
15:7c:ec:c9:a9:47:fb:31:04:e1:bc:c6:2b:62:96:6b:e2:4a:
a3:24:b8:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org