Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/ksPJIyD2oe-LClSgd0jB8OIicc8.roa
File: ksPJIyD2oe-LClSgd0jB8OIicc8.roa (raw, json)
Hash identifier: 2qxrk9poFzzKC6uV+Y5MEGll9prjuu3xd3+gCdS7FYk=
Subject key identifier: 92:C3:C9:23:20:F6:A1:EF:8B:0A:54:A0:77:48:C1:F0:E2:22:71:CF
Certificate issuer: /CN=f9e00abe184a625b76f8d1fbceef817aaf71415b
Certificate serial: 018EA9E2744B3274F55FC4EBFB0CB2741A0D
Authority key identifier: F9:E0:0A:BE:18:4A:62:5B:76:F8:D1:FB:CE:EF:81:7A:AF:71:41:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-eAKvhhKYlt2-NH7zu-Beq9xQVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/ksPJIyD2oe-LClSgd0jB8OIicc8.roa
Signing time: Thu 04 Apr 2024 16:12:54 +0000
ROA not before: Thu 04 Apr 2024 16:12:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43581
IP address blocks: 93.183.68.0/24 maxlen: 24
93.183.69.0/24 maxlen: 24
93.183.70.0/24 maxlen: 24
93.183.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 03:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a9:e2:74:4b:32:74:f5:5f:c4:eb:fb:0c:b2:74:1a:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9e00abe184a625b76f8d1fbceef817aaf71415b
Validity
Not Before: Apr 4 16:12:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92c3c92320f6a1ef8b0a54a07748c1f0e22271cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c8:e2:de:bd:d4:d2:cb:bc:5c:5f:0b:ea:64:
8e:4c:d5:ca:06:a4:bc:ce:54:b7:c6:d0:15:cf:5b:
87:5c:cf:04:01:89:45:e3:a3:ba:2b:ad:7d:6f:f9:
c4:b8:3d:7c:a1:4e:a0:6c:3c:1a:d3:e9:10:9d:db:
bf:88:3f:ae:1a:1a:c5:23:be:a8:9f:5e:c5:91:ec:
af:ec:e0:a0:d7:85:0b:45:cc:af:b8:e3:23:d7:44:
8c:e6:06:9d:8d:16:c7:e6:08:93:a5:23:61:56:b2:
71:6a:c3:f9:6e:6b:84:8c:3e:09:44:72:cd:0f:41:
3e:8e:33:c6:6a:72:c5:1f:f9:bd:82:51:bf:13:c8:
12:cd:38:fc:db:5b:d6:53:bb:c2:b5:c3:35:56:62:
7b:cd:b0:5b:d9:78:ce:8c:e0:5f:42:1e:16:51:0b:
99:58:2f:05:a0:61:90:4b:36:f4:53:0a:50:75:56:
28:6c:45:53:a2:da:fa:51:68:2d:02:1a:0f:33:03:
c8:2a:52:78:f3:86:fe:eb:b1:64:c2:8d:bf:cf:ee:
ec:11:7b:c0:1d:9e:ea:6e:95:f9:e1:41:c0:5b:1a:
02:8f:68:85:b2:b2:75:02:41:c4:6f:22:bb:19:0a:
85:9a:34:6a:18:e5:5f:5c:ee:23:ec:d2:f8:09:66:
50:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:C3:C9:23:20:F6:A1:EF:8B:0A:54:A0:77:48:C1:F0:E2:22:71:CF
X509v3 Authority Key Identifier:
keyid:F9:E0:0A:BE:18:4A:62:5B:76:F8:D1:FB:CE:EF:81:7A:AF:71:41:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-eAKvhhKYlt2-NH7zu-Beq9xQVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/ksPJIyD2oe-LClSgd0jB8OIicc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/1-eAKvhhKYlt2-NH7zu-Beq9xQVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.183.68.0/22
Signature Algorithm: sha256WithRSAEncryption
13:cf:ef:1c:9c:d9:fd:45:4d:85:52:57:77:24:7f:2d:18:98:
5c:fa:14:94:c7:0a:c0:f8:16:5f:14:08:31:04:62:7a:fd:94:
91:3a:f0:7d:41:31:04:3b:78:71:57:f1:3b:47:32:a5:8b:23:
af:2a:8b:44:93:99:39:12:b0:16:bb:58:75:9a:bf:9e:4f:e1:
e9:7f:32:95:cb:96:73:8a:a5:2f:ca:dd:57:44:d9:34:03:e2:
80:11:df:ee:ce:b2:1d:54:d9:16:96:c6:46:73:9d:d2:3d:0e:
f1:45:c8:de:32:85:04:0e:3d:5f:22:b9:a8:f2:7e:a2:bc:e9:
e5:5a:f5:43:5c:bc:c9:8b:70:f7:e2:5e:0c:75:58:c8:27:ed:
4c:ce:32:fb:d9:64:67:41:8c:f7:63:4a:e5:49:da:ac:13:8a:
3b:08:ce:62:42:dd:48:e7:4e:6c:b1:ea:60:51:1d:ad:e6:68:
d4:59:d5:13:2d:e8:2a:7a:58:df:a0:ce:06:59:43:3e:ff:6c:
2b:da:41:bc:7a:41:37:c3:29:89:d3:f8:4f:bc:45:03:98:30:
9e:1c:c5:49:e8:a6:a1:fb:9e:bf:c1:21:2a:40:b7:69:ec:49:
23:d1:15:9c:48:18:12:31:61:6b:64:4e:de:42:e6:81:6e:02:
76:f9:87:e7
-----BEGIN CERTIFICATE-----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Generated at Sun Sep 1 04:53:20 2024 by rpki-client on console-fra.rpki-client.org