Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/1-n5Nwh0Pxb0oGl1ELX6y7YQnyZ4.roa
File: 1-n5Nwh0Pxb0oGl1ELX6y7YQnyZ4.roa (raw, json)
Hash identifier: QtEui83Tf69ycmw3FKnR97Duj4gU9FDnLq/O0ytqUWE=
Subject key identifier: FA:7E:4D:C2:1D:0F:C5:BD:28:1A:5D:44:2D:7E:B2:ED:84:27:C9:9E
Certificate issuer: /CN=22d7c11a449a4376c3a787c7f613c551aa611f91
Certificate serial: 0185D968B9397D567E3C8D8585541011D615
Authority key identifier: 22:D7:C1:1A:44:9A:43:76:C3:A7:87:C7:F6:13:C5:51:AA:61:1F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItfBGkSaQ3bDp4fH9hPFUaphH5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/1-n5Nwh0Pxb0oGl1ELX6y7YQnyZ4.roa
Signing time: Sun 22 Jan 2023 12:16:37 +0000
ROA not before: Sun 22 Jan 2023 12:16:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56430
IP address blocks: 193.105.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Feb 2023 22:44:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d9:68:b9:39:7d:56:7e:3c:8d:85:85:54:10:11:d6:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22d7c11a449a4376c3a787c7f613c551aa611f91
Validity
Not Before: Jan 22 12:16:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa7e4dc21d0fc5bd281a5d442d7eb2ed8427c99e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:95:b5:61:41:67:55:77:f4:eb:9c:9a:8e:32:
a7:7a:76:12:9d:35:21:c1:31:f7:65:75:d0:26:80:
0d:59:6a:aa:c4:ba:fa:a5:d1:81:16:7e:7f:8d:5a:
78:0e:48:54:a1:27:34:67:1b:68:85:a7:13:84:db:
af:2c:ee:58:56:03:60:da:0b:6f:a3:09:3a:94:45:
26:e4:79:64:2a:eb:4d:b9:cf:f2:97:f4:c6:50:20:
d2:a8:fa:ee:f5:9e:9d:19:83:65:48:0a:79:ce:cc:
81:3e:50:ca:33:7d:fd:d1:ae:ac:25:d6:0a:27:5b:
38:0f:b5:58:a0:56:51:91:bb:e0:bb:fc:d2:cc:56:
69:46:54:7a:2f:ec:c2:45:2d:4b:62:0a:78:0b:1c:
c7:7c:b1:1c:ab:0a:02:d8:01:b0:62:4d:b6:63:f6:
4a:8f:e9:05:6e:6d:0c:2d:5d:47:02:91:dd:a5:71:
6c:c8:53:b6:01:a7:34:c8:0d:5d:37:19:25:d8:09:
45:51:d1:34:69:79:9c:12:7c:de:0d:a6:48:da:2d:
ac:b6:a8:3c:eb:d7:a9:ac:c6:43:dc:b8:fe:e0:9e:
62:b9:f9:19:3e:8a:9a:40:e2:ec:03:34:69:42:5d:
d2:4c:a3:5d:9e:20:00:07:10:66:b5:e3:02:42:d6:
de:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:7E:4D:C2:1D:0F:C5:BD:28:1A:5D:44:2D:7E:B2:ED:84:27:C9:9E
X509v3 Authority Key Identifier:
keyid:22:D7:C1:1A:44:9A:43:76:C3:A7:87:C7:F6:13:C5:51:AA:61:1F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItfBGkSaQ3bDp4fH9hPFUaphH5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/1-n5Nwh0Pxb0oGl1ELX6y7YQnyZ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f2ef4-e161-4b10-a221-999f4f60f0af/1/ItfBGkSaQ3bDp4fH9hPFUaphH5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.218.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:7f:4e:87:2a:87:bc:ab:c3:16:4c:b4:44:a1:b9:74:fe:aa:
39:b8:3d:00:18:cf:25:58:31:ba:b8:db:db:7e:f2:6f:87:8e:
17:3b:e1:82:29:4a:42:c7:95:87:92:aa:c5:60:92:5e:be:f9:
f0:83:c9:1f:7d:c8:74:30:70:69:a8:99:79:1b:6d:9f:42:96:
8b:b3:db:16:74:0d:b7:ea:c2:7b:71:0f:dc:1f:65:ff:d9:90:
f4:b9:ca:50:40:f1:2f:8d:c5:4a:6b:96:a5:d1:ac:8a:9c:cd:
07:65:de:6e:52:b0:f5:61:fd:bb:d4:cc:09:e6:fa:16:e5:79:
79:e8:b2:87:7b:59:f7:1b:0c:94:aa:3c:da:b3:0d:1f:aa:ca:
d2:08:37:33:34:98:9e:ff:ae:a2:66:cc:d0:f0:08:22:89:27:
92:fe:2b:35:7a:80:d8:f9:bf:e8:fc:62:8b:29:0d:01:90:56:
0d:e7:74:1f:58:6f:07:1e:fa:6a:3c:7e:b6:75:a9:a4:37:0b:
8b:0d:33:1d:c2:43:86:6e:ce:14:c2:36:d6:96:0d:87:0d:f3:
49:51:b2:73:ba:36:c5:fb:b3:25:ab:26:19:d7:74:c7:ed:13:
c8:ed:65:f2:45:53:51:8b:45:d1:63:c1:21:d1:85:89:1d:33:
a1:4e:d7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:08 2024 by rpki-client on console-fra.rpki-client.org