Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/PIY2lRv1ZALpYGZXxj1RIg2YcAY.roa
File: PIY2lRv1ZALpYGZXxj1RIg2YcAY.roa (raw, json)
Hash identifier: djmtRrm+eubbc+eYH0nOElpHM8zNxf2+wzMaEJmGCro=
Subject key identifier: 3C:86:36:95:1B:F5:64:02:E9:60:66:57:C6:3D:51:22:0D:98:70:06
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0189772F773810A3B6EDC25EC88B3C89DCFF
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/PIY2lRv1ZALpYGZXxj1RIg2YcAY.roa
Signing time: Fri 21 Jul 2023 06:42:26 +0000
ROA not before: Fri 21 Jul 2023 06:42:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50340
IP address blocks: 193.232.164.0/24 maxlen: 24
212.192.62.0/24 maxlen: 24
194.85.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:2f:77:38:10:a3:b6:ed:c2:5e:c8:8b:3c:89:dc:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jul 21 06:42:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c8636951bf56402e9606657c63d51220d987006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2c:17:92:47:4b:55:cd:c9:7d:aa:ea:15:2a:
e3:e3:a2:37:a0:04:38:db:04:2b:06:0d:1a:a3:55:
14:fc:6a:12:e2:9e:34:ec:3b:90:46:fc:86:3a:e3:
9a:ff:38:1f:73:68:5c:f9:3f:23:c4:8b:8d:47:85:
93:3e:87:fa:47:15:10:10:e5:3e:03:16:05:e4:3f:
7d:8c:09:e9:57:54:e9:05:9f:da:4b:b7:c4:fd:59:
42:43:ed:e2:fc:7a:4d:b8:b6:2b:f4:d9:53:e9:e0:
ae:86:da:ee:07:cb:34:56:a3:32:62:45:a2:26:86:
0d:69:b1:a3:2f:37:d6:1d:b8:23:2a:3e:51:b9:42:
eb:43:3b:e0:7d:6a:2f:88:f3:08:79:dc:c7:aa:b7:
a3:67:32:a2:4a:f2:76:20:fd:1d:75:2f:b1:41:65:
a8:ea:35:1c:29:80:55:c9:d7:ca:28:23:e9:03:b6:
58:02:a9:e0:90:41:34:d1:ab:fe:70:06:6c:65:65:
03:c8:3e:65:60:74:0b:64:87:fd:7b:4a:ab:47:f1:
de:e8:f9:df:32:b8:d8:11:4c:85:6b:4d:ba:02:95:
c0:d6:c4:a5:19:78:7b:91:e0:55:c5:e8:74:34:d5:
ae:69:ac:0a:d4:1b:08:ae:32:ba:a8:7c:99:0d:87:
86:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:86:36:95:1B:F5:64:02:E9:60:66:57:C6:3D:51:22:0D:98:70:06
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/PIY2lRv1ZALpYGZXxj1RIg2YcAY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.164.0/24
194.85.116.0/24
212.192.62.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:a9:6f:6a:e2:09:4b:b0:16:9c:56:17:4d:a0:56:9e:67:87:
2c:90:b9:8c:3c:a3:7a:79:45:fa:30:33:38:67:5e:ab:9f:57:
1a:8e:1e:00:69:bc:9c:6c:71:1a:92:9a:61:5e:02:af:e8:fd:
78:e6:b0:2b:a5:ed:ab:09:3a:f8:73:c5:d5:18:6f:33:e3:69:
06:50:08:db:be:9a:29:04:72:37:67:d0:71:b1:06:7c:9b:a9:
d2:b3:03:29:f3:64:1e:87:46:99:1e:43:1c:be:e8:d7:01:a5:
5c:9f:fa:ee:2b:1c:ae:de:35:fa:d8:10:80:6a:71:04:4f:37:
2d:18:7c:4b:e6:4d:ab:41:87:6f:37:1c:46:ec:93:40:40:6b:
81:c4:3a:a5:f6:9f:cd:f1:fb:28:f5:5c:59:11:a1:48:00:63:
a4:77:21:32:3d:94:ec:6b:24:68:cf:25:00:f9:5c:fc:64:a6:
05:ed:cb:b9:20:0a:30:92:77:17:54:31:a4:2d:cf:a1:76:f0:
98:ca:57:08:00:e4:e3:8b:25:9c:21:dd:bb:a2:f8:2d:bc:df:
9e:86:91:70:af:33:a8:7d:8c:d7:c8:5e:d6:a5:96:c8:7c:99:
42:7a:7a:d4:39:48:ad:13:0b:b2:e4:4d:dc:da:81:3d:fd:e6:
84:a5:19:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org