Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/URiYsf16yRJCtrNFCdXZhCwLZQE.roa
File: URiYsf16yRJCtrNFCdXZhCwLZQE.roa (raw, json)
Hash identifier: NmnBtnt1j3TDYLkLDAyC7jI8aPxvN9QfFRWQj/GKusg=
Subject key identifier: 51:18:98:B1:FD:7A:C9:12:42:B6:B3:45:09:D5:D9:84:2C:0B:65:01
Certificate issuer: /CN=11184fb6503a760657f90270e276a3fcb50b8e8f
Certificate serial: 018571F0D64FE6664FAFA9F2044E05FC6A01
Authority key identifier: 11:18:4F:B6:50:3A:76:06:57:F9:02:70:E2:76:A3:FC:B5:0B:8E:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERhPtlA6dgZX-QJw4naj_LULjo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/URiYsf16yRJCtrNFCdXZhCwLZQE.roa
Signing time: Mon 02 Jan 2023 10:04:46 +0000
ROA not before: Mon 02 Jan 2023 10:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 193.110.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:d6:4f:e6:66:4f:af:a9:f2:04:4e:05:fc:6a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11184fb6503a760657f90270e276a3fcb50b8e8f
Validity
Not Before: Jan 2 10:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=511898b1fd7ac91242b6b34509d5d9842c0b6501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2a:36:78:ae:cc:0d:15:7e:4a:80:d4:c8:85:
97:00:c1:68:ec:f7:8c:a6:6c:d2:80:8f:aa:85:e3:
5a:8e:de:15:75:25:a1:f6:1e:5b:13:a1:3a:9e:30:
e4:7e:c6:05:31:12:84:90:ac:7c:cb:50:22:c2:b8:
15:21:1c:7f:88:c4:a3:fd:d5:f0:7f:8f:b2:42:2a:
19:9e:95:1a:1f:b0:3b:35:4f:66:fe:7f:99:0a:d9:
23:72:67:dc:65:c5:6f:8c:8f:89:ba:09:f4:ec:c9:
a0:d0:50:e7:ff:54:3a:16:99:1e:ac:e4:7f:45:f2:
3e:ff:75:fc:a4:cd:04:6a:83:9c:c3:af:cb:1e:19:
d3:b6:29:29:66:9e:0a:1e:a2:3b:0d:f7:8e:42:97:
74:0c:89:ba:c7:0a:1f:fa:ec:5a:23:90:df:94:76:
ad:2e:1a:bb:d8:f5:48:35:b9:3d:56:08:15:da:e9:
64:ba:a2:80:3c:91:b4:5d:2c:f5:1c:4c:4a:41:8a:
a5:d5:6d:db:28:b8:5e:f3:fd:23:d3:de:63:3b:20:
0b:21:ed:78:12:33:cb:d9:67:8d:e9:4d:fe:14:3e:
48:1f:74:34:e7:c2:57:82:da:91:3c:cc:a8:cd:2f:
ea:11:1a:ca:f5:bd:d7:88:28:72:50:78:26:d6:e9:
e1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:18:98:B1:FD:7A:C9:12:42:B6:B3:45:09:D5:D9:84:2C:0B:65:01
X509v3 Authority Key Identifier:
keyid:11:18:4F:B6:50:3A:76:06:57:F9:02:70:E2:76:A3:FC:B5:0B:8E:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERhPtlA6dgZX-QJw4naj_LULjo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/URiYsf16yRJCtrNFCdXZhCwLZQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a733-ef05-4af0-8535-196d666d2b2b/1/ERhPtlA6dgZX-QJw4naj_LULjo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.209.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:fe:ca:89:08:7a:f7:e3:d1:6d:72:06:87:03:e9:b8:f8:54:
9b:7b:c0:7e:12:be:02:61:6b:e5:0c:dd:e1:dc:af:de:7a:ae:
cf:36:45:e0:b9:c0:c5:c5:0d:fd:df:13:cf:23:15:82:2f:2a:
aa:85:1d:f8:b7:03:3f:60:c4:1b:c0:50:c2:d7:d9:39:d3:94:
5b:1a:d9:f5:11:80:e9:2e:97:f2:09:6d:06:69:18:53:a1:de:
5b:5a:9f:d4:3c:7a:43:21:a8:f6:8e:51:50:12:da:ce:ed:b4:
7b:43:34:6e:6f:96:e3:1d:b0:cb:a5:fb:ca:e9:fb:b7:58:02:
74:a2:2b:0c:c6:3e:3e:e5:59:b1:52:eb:a1:98:97:ab:9a:6e:
cd:c8:c6:54:af:f3:85:86:a3:40:44:9b:92:c4:38:e1:49:56:
39:07:b2:f6:4a:fb:0d:93:eb:f6:66:e0:b3:66:bb:56:e2:b2:
d4:1b:ac:ba:3c:4b:9a:9d:91:13:a7:8d:a2:ed:44:e3:c5:c0:
b7:43:86:77:47:9a:d1:47:9a:43:2d:1e:3d:0a:9e:d8:0d:56:
3c:09:ff:b1:69:ed:a1:da:ee:56:7c:13:ff:74:d8:71:4d:f0:
ae:44:ae:0a:fc:54:9b:ba:5d:ff:4a:ae:5a:03:1d:3e:4e:37:
d3:42:b8:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:49 2024 by rpki-client on console-fra.rpki-client.org