Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/YfRlS9BcpDORCZ21dpmutees3oM.roa
File: YfRlS9BcpDORCZ21dpmutees3oM.roa (raw, json)
Hash identifier: 7KrSH03ipj7NLNyU09lbkpHWpjkbObpLDqhDrFsayTE=
Subject key identifier: 61:F4:65:4B:D0:5C:A4:33:91:09:9D:B5:76:99:AE:B5:E7:AC:DE:83
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 018AADF37D3457B6CBAF4A8B89BB0D493BC8
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/YfRlS9BcpDORCZ21dpmutees3oM.roa
Signing time: Tue 19 Sep 2023 14:58:50 +0000
ROA not before: Tue 19 Sep 2023 14:58:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209181
IP address blocks: 193.178.52.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ad:f3:7d:34:57:b6:cb:af:4a:8b:89:bb:0d:49:3b:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Sep 19 14:58:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61f4654bd05ca43391099db57699aeb5e7acde83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c6:60:7b:33:24:82:18:5e:e6:e5:bf:bb:53:
b0:34:fd:98:c9:be:49:eb:03:f4:21:c1:40:c5:32:
0a:36:e4:6c:ad:d8:89:62:6c:93:82:51:fa:94:59:
d7:24:e7:f2:87:e3:aa:5d:1e:e1:01:3b:70:c4:61:
a8:a5:99:cd:30:9a:15:99:2d:01:97:44:87:23:7d:
0f:7d:58:af:02:68:de:d3:60:72:f0:36:08:7f:9d:
27:a5:ff:7d:c9:5e:48:e1:0e:95:9d:c8:cf:89:3f:
a4:05:a8:8e:f9:5a:aa:13:db:6d:72:63:13:25:01:
cb:69:5a:88:eb:2d:90:4a:09:8d:1a:3f:d9:d1:52:
9a:10:82:64:91:7a:c9:02:ec:2b:e3:73:21:17:d8:
49:74:95:af:d1:51:ac:32:07:98:a2:fb:89:b2:71:
3f:59:ca:a5:67:91:45:10:5b:7f:c7:08:74:54:a2:
95:19:a1:bd:91:c0:fc:3e:23:ad:87:3e:e0:a8:55:
cf:25:9e:47:ee:64:bb:3e:4b:14:bc:8d:26:03:7c:
85:a4:b7:66:8d:61:77:25:47:0e:e5:68:bd:69:46:
78:2b:0e:c7:42:8b:73:d1:52:16:f1:0d:84:50:04:
a5:59:8e:14:18:98:4d:23:5b:01:1e:fd:e8:90:ac:
bd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F4:65:4B:D0:5C:A4:33:91:09:9D:B5:76:99:AE:B5:E7:AC:DE:83
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/YfRlS9BcpDORCZ21dpmutees3oM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.52.0/24
Signature Algorithm: sha256WithRSAEncryption
66:2e:f8:13:7c:57:97:1e:f2:0d:a1:67:f2:73:20:87:5f:fb:
72:ad:f1:cf:77:8d:1e:4a:a6:1a:f3:44:48:f0:00:ff:81:a2:
48:21:89:93:f0:5e:24:c0:db:de:f7:ea:a2:4c:31:52:dc:f2:
51:e0:06:bf:98:43:34:83:70:7c:7c:c8:60:e0:97:f7:50:0a:
8e:15:9f:02:11:65:8e:77:af:14:ed:f4:0c:bd:b2:90:9f:b7:
5c:13:ec:ff:ad:ca:9e:5d:33:c1:31:2a:b7:34:e8:c3:11:8b:
c5:f0:ad:75:f6:a7:bd:bc:cb:b4:e9:b5:cf:a9:16:55:99:1f:
9d:ae:25:fc:26:e1:b7:71:82:2e:05:e8:64:60:89:f7:d1:c6:
a2:79:68:f4:0f:99:09:e1:0c:12:94:66:5a:75:8e:9d:f7:07:
d6:99:e8:f6:a1:a6:76:34:af:74:c2:a0:8d:36:41:81:d3:74:
c9:dc:f3:d3:76:3c:25:6a:c5:ad:10:2d:47:6a:9f:c1:b9:20:
91:75:b6:57:d0:6b:38:47:57:a4:80:6a:3f:f1:ee:12:fc:6b:
84:47:a8:ef:2c:75:aa:81:62:b1:6b:99:72:68:47:ea:e4:b3:
87:20:db:0e:1a:7e:56:c6:d3:2f:5d:bf:33:60:d8:70:cb:86:
c5:20:53:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 08:10:10 2023 by rpki-client on console-fra.rpki-client.org