Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/jCi5Fu1NeK0ICRaS0fXIoNSOqNo.roa
File: jCi5Fu1NeK0ICRaS0fXIoNSOqNo.roa (raw, json)
Hash identifier: KfgpSrebLNBbFTeV/bmhU0Agqcsd1DlaeQ8D/pKCBvU=
Subject key identifier: 8C:28:B9:16:ED:4D:78:AD:08:09:16:92:D1:F5:C8:A0:D4:8E:A8:DA
Certificate issuer: /CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Certificate serial: 01857231101D680701AABFD26FC932991FAB
Authority key identifier: 40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/jCi5Fu1NeK0ICRaS0fXIoNSOqNo.roa
Signing time: Mon 02 Jan 2023 11:14:56 +0000
ROA not before: Mon 02 Jan 2023 11:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13195
IP address blocks: 193.201.107.0/24 maxlen: 24
2001:678:c28::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:10:1d:68:07:01:aa:bf:d2:6f:c9:32:99:1f:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40d5591a75bd693e9d3b766834bf074f7b1eee3a
Validity
Not Before: Jan 2 11:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c28b916ed4d78ad08091692d1f5c8a0d48ea8da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3f:10:d7:58:f6:17:94:c4:cb:fa:a1:f8:86:
13:ed:b3:56:fd:9b:7f:3c:10:cc:b7:55:23:fe:3d:
26:a1:36:b8:80:37:94:7d:5c:0e:a0:08:35:d3:81:
51:6f:aa:e8:02:8f:b2:9b:73:28:ce:75:6c:23:f5:
58:98:40:c8:f3:39:a1:ab:5a:19:4a:81:f3:02:09:
38:89:67:d5:32:b8:59:18:b7:ba:b6:fd:77:6e:e8:
4f:ed:f7:53:7f:35:3b:d8:68:73:61:0a:16:df:00:
52:83:ef:ec:a9:14:3b:ed:0d:00:7d:87:3f:d6:ac:
8f:9c:0f:e1:b0:90:7a:e8:f3:f3:67:8d:99:73:d5:
81:6a:9f:9c:69:c6:75:d3:21:57:d1:48:be:e4:34:
54:3d:72:7f:26:b8:a1:98:66:4a:53:b3:b4:7b:d8:
df:6d:47:67:3a:75:a6:cf:5a:4e:58:05:f9:5c:21:
cf:86:5d:68:ab:66:b1:b7:ff:a3:72:bb:97:14:ca:
01:b4:fd:07:05:48:4d:e4:c1:5a:98:60:de:86:48:
a2:c8:b7:e0:c0:88:61:5d:e4:42:ed:75:58:e1:f0:
ba:1a:15:98:71:b8:ce:14:50:96:c1:d1:99:3c:6b:
65:39:2a:d1:31:57:a0:73:06:2e:08:5c:40:62:ea:
05:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:28:B9:16:ED:4D:78:AD:08:09:16:92:D1:F5:C8:A0:D4:8E:A8:DA
X509v3 Authority Key Identifier:
keyid:40:D5:59:1A:75:BD:69:3E:9D:3B:76:68:34:BF:07:4F:7B:1E:EE:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QNVZGnW9aT6dO3ZoNL8HT3se7jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/jCi5Fu1NeK0ICRaS0fXIoNSOqNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/9c9f28-4f41-472d-a63e-a10a3a4963fb/1/QNVZGnW9aT6dO3ZoNL8HT3se7jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.107.0/24
IPv6:
2001:678:c28::/48
Signature Algorithm: sha256WithRSAEncryption
92:ce:bd:05:aa:eb:2b:b9:af:e0:83:f5:3b:a5:6d:36:81:14:
35:25:74:a9:f4:2c:2f:d5:39:89:f5:68:2b:76:03:72:03:3a:
ef:b5:a4:04:bc:e7:75:7d:26:a6:fe:9c:7f:59:33:3b:3b:93:
bd:ac:84:d1:09:af:81:ba:51:c7:f7:70:19:0a:ee:f2:17:66:
24:ab:7a:a9:08:c3:a8:ba:d3:37:7e:60:bd:c5:fa:e7:6f:a4:
41:25:0a:5b:c4:0f:31:c4:f9:3c:25:d9:ca:ec:41:13:28:b1:
1d:ab:2a:05:f5:f7:5b:1b:cc:b2:31:0c:3e:40:ff:59:a7:32:
f5:f5:06:9a:b9:63:0e:e6:9b:0d:89:94:e0:b8:1a:4d:bb:ed:
15:d2:3d:28:21:8f:a0:a5:ef:82:b7:5b:3a:31:10:2d:29:33:
58:63:4a:21:9a:bc:fb:9c:f8:26:73:76:01:b9:b2:26:82:10:
27:5e:49:07:66:eb:34:4a:48:c7:fa:ba:42:a4:e7:61:b0:b3:
0e:82:3e:29:b7:57:f0:8b:78:1f:3f:fc:7d:ec:8c:d0:1a:42:
0b:27:32:ff:b2:1c:02:1b:83:18:44:e1:5e:79:ec:35:c0:86:
cb:91:c0:91:14:9e:a7:73:20:f0:eb:89:1c:52:23:d6:dd:30:
fa:80:39:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:06 2024 by rpki-client on console-ams.rpki-client.org