Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/xIhOZezsRzI4SUXD1Hq41mKMvAo.roa
File: xIhOZezsRzI4SUXD1Hq41mKMvAo.roa (raw, json)
Hash identifier: H3olDgyPlkbky49k8TQRWAkA3fqoZjzw/rrJcoa/P3E=
Subject key identifier: C4:88:4E:65:EC:EC:47:32:38:49:45:C3:D4:7A:B8:D6:62:8C:BC:0A
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 0189D4C3A238299DF4023409960279D3FE09
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/xIhOZezsRzI4SUXD1Hq41mKMvAo.roa
Signing time: Tue 08 Aug 2023 10:48:58 +0000
ROA not before: Tue 08 Aug 2023 10:48:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197450
IP address blocks: 193.36.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Aug 2023 10:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:c3:a2:38:29:9d:f4:02:34:09:96:02:79:d3:fe:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Aug 8 10:48:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4884e65ecec4732384945c3d47ab8d6628cbc0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a1:e3:33:1c:bb:f8:70:22:07:ff:1e:c2:cf:
35:41:3e:fb:73:42:45:a4:ec:6d:b0:fb:b1:c8:ee:
e2:ff:5e:3b:51:4c:bf:b5:10:6d:75:38:e5:bb:95:
b7:70:0e:a0:05:e4:30:a2:b2:2f:ff:64:6d:5a:0e:
73:64:e4:94:72:06:c2:3e:a1:ac:53:77:6d:58:da:
64:14:d1:7a:1c:f4:b2:3f:17:12:27:46:e0:56:61:
8d:30:97:85:6b:5c:4a:b8:9a:23:9d:f5:a1:a3:71:
ac:17:20:12:93:62:c4:45:cd:3a:c5:db:8c:b1:69:
0c:bf:9e:0b:d6:60:0a:50:b1:50:1c:b4:f2:f3:2f:
79:0b:1e:3d:6b:0d:64:3d:cc:0e:1b:28:8e:5e:2d:
ff:a0:b6:87:83:60:4e:b3:d0:22:29:3e:10:6e:c9:
a9:7b:cd:5b:df:9d:78:e6:7f:6c:64:ad:2a:2c:48:
e5:9c:b5:b5:1c:cb:d7:df:81:18:d6:e7:4f:59:f7:
e8:dd:6f:7c:31:8c:0a:ef:a6:1a:2a:1f:28:40:24:
61:94:21:f0:9e:be:e9:20:3a:60:04:0d:0d:96:dd:
31:77:2a:0c:f1:06:62:9a:0b:23:1c:11:09:1b:38:
58:fd:83:30:31:6b:ff:b6:73:ed:1b:9a:c0:83:e0:
b0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:88:4E:65:EC:EC:47:32:38:49:45:C3:D4:7A:B8:D6:62:8C:BC:0A
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/xIhOZezsRzI4SUXD1Hq41mKMvAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.162.0/24
Signature Algorithm: sha256WithRSAEncryption
db:af:81:a9:b0:e3:6c:b2:06:70:c3:3d:d6:46:bf:2e:7b:94:
a2:86:d2:64:e2:e4:75:ca:2c:f8:7c:a9:46:5e:1d:d8:94:c2:
ef:fc:3a:d5:ac:a7:bc:e1:71:49:6e:ce:c9:fc:62:b4:d1:a5:
c4:a0:22:b8:27:06:3a:79:90:54:c7:45:90:7c:82:72:56:a0:
2b:78:52:dd:ac:79:56:a9:f5:43:af:e3:05:d9:28:ff:2b:f0:
54:7e:97:ed:28:50:5a:07:96:4e:51:b3:62:da:52:e0:cb:e9:
bb:88:e1:9d:31:d6:d3:ca:00:c1:ab:43:0d:55:02:20:79:93:
f2:a8:1e:14:88:ce:ab:d6:22:5f:ce:7c:c8:01:be:81:03:00:
87:00:28:67:fc:1c:84:d1:99:4f:73:62:69:6f:43:fc:0e:16:
0d:f7:7b:91:00:77:d5:8d:01:3e:55:1b:11:e2:5d:ef:9d:14:
0c:f9:ff:17:81:9f:0f:6e:05:23:ca:0a:d0:76:ad:f1:fb:4f:
60:dd:fb:aa:a6:4d:e2:04:f3:d0:68:e3:4f:c3:d5:0c:a8:5f:
15:41:ec:61:79:06:cf:93:a6:85:06:62:53:e2:1a:03:39:53:
ed:0b:a9:c9:b4:36:68:2e:02:0e:6c:78:37:9d:b1:67:6e:84:
1b:ad:f3:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:13 2024 by rpki-client on console-ams.rpki-client.org