Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/mId2DbqCnswvtltxcrnkPkDF8DQ.roa
File: mId2DbqCnswvtltxcrnkPkDF8DQ.roa (raw, json)
Hash identifier: 3XBGzHO3kB+fk72oTSGGnz8ymt6OQJ/iBeUdRz+fx1k=
Subject key identifier: 98:87:76:0D:BA:82:9E:CC:2F:B6:5B:71:72:B9:E4:3E:40:C5:F0:34
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 0190A08ED80E24084E0D2414215C6E11763B
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/mId2DbqCnswvtltxcrnkPkDF8DQ.roa
Signing time: Thu 11 Jul 2024 06:50:34 +0000
ROA not before: Thu 11 Jul 2024 06:50:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.178.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Aug 2024 10:16:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a0:8e:d8:0e:24:08:4e:0d:24:14:21:5c:6e:11:76:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Jul 11 06:50:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9887760dba829ecc2fb65b7172b9e43e40c5f034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:65:de:56:cf:6d:49:bc:25:fe:15:28:d3:f7:
ce:ee:b6:c8:78:35:c1:4c:50:4c:8d:38:86:81:40:
8e:81:f2:36:28:33:85:f6:58:15:4e:3d:a7:c2:e6:
d1:a5:14:a3:88:b4:9f:7c:de:a1:aa:31:d8:28:e7:
86:12:33:28:01:8e:be:fd:5b:06:45:43:31:8d:bc:
a7:11:0e:79:73:ec:2a:25:8b:e5:51:ee:21:19:fc:
7a:92:d8:14:26:7f:15:bf:0f:52:13:2e:b5:30:e0:
7e:8a:49:d4:67:c7:a5:59:7d:ca:5f:80:7a:21:7d:
ad:81:77:59:85:c8:88:ea:4c:e0:a0:59:d2:36:4f:
5c:7a:2a:17:e1:ce:1e:bd:dc:17:79:dd:a3:6d:f0:
9f:19:8f:3a:c6:5f:83:20:62:a4:27:8c:75:80:1b:
3f:b6:11:5b:65:50:e6:fc:a0:01:90:3b:c0:6a:88:
98:da:70:d6:f3:a6:df:00:8f:68:e1:99:b7:27:83:
ea:d0:7a:7e:e6:ed:d2:8a:0e:3f:e5:2e:e6:94:99:
cb:8c:14:bb:01:2d:53:89:1f:7e:8f:c6:73:16:1f:
30:9f:80:2b:70:c5:f5:7f:73:38:09:f0:8d:94:17:
4f:82:4f:a1:7d:28:85:49:e0:c4:63:03:97:30:48:
ec:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:87:76:0D:BA:82:9E:CC:2F:B6:5B:71:72:B9:E4:3E:40:C5:F0:34
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/mId2DbqCnswvtltxcrnkPkDF8DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.52.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:08:a1:e5:e2:0c:a7:23:db:bd:36:8f:65:35:c6:99:c6:be:
23:c3:f9:1f:9b:e4:98:8a:c4:d7:da:83:fc:7c:7c:18:b1:e9:
a8:62:ad:dd:33:25:19:88:dc:57:e9:77:e5:ac:d7:aa:4c:97:
15:6c:02:09:bf:7a:75:08:2a:48:38:4f:b2:ae:3a:d4:23:7b:
54:87:55:23:5a:d7:49:3b:bf:33:24:78:8e:b5:a2:9b:64:4e:
b8:24:13:40:fa:65:7f:ed:90:7b:5d:40:43:3d:4d:38:87:0a:
60:a7:a7:12:39:22:68:07:79:e8:29:c2:fe:aa:29:e5:ae:3d:
3e:48:2d:f8:56:66:43:b7:9b:76:25:91:7a:75:3b:7a:2f:7b:
15:ac:e4:d9:0a:e5:e7:16:f1:4f:36:0a:24:21:a3:20:32:22:
a1:02:cf:0f:8a:1e:57:50:0d:bd:4d:d1:76:ca:d5:0d:fb:07:
47:5d:58:ff:0e:2a:53:52:fc:83:8c:ab:36:df:b8:ca:6c:fc:
fc:0f:ea:69:fb:91:49:df:60:da:66:f7:dd:41:7d:fb:78:f1:
88:1b:95:5b:20:e7:6f:2b:5c:f6:81:8e:0f:8d:9f:a5:63:dd:
18:92:a6:d8:f3:8b:12:30:fc:5e:1b:28:e9:f7:93:62:9d:c2:
88:a9:31:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 13:14:59 2024 by rpki-client on console-ams.rpki-client.org