Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/Lh86GgsgMa3KK2Nn0-FfHjfrpk8.roa
File: Lh86GgsgMa3KK2Nn0-FfHjfrpk8.roa (raw, json)
Hash identifier: VNLD0Hnx4bTkQNYI0iY//4efPRepLvnGevIiwXXsRxs=
Subject key identifier: 2E:1F:3A:1A:0B:20:31:AD:CA:2B:63:67:D3:E1:5F:1E:37:EB:A6:4F
Certificate issuer: /CN=ef739c0c04a4271b5aad62c119229e18fada5fd3
Certificate serial: 018CCA2BD49749C8409372E2331651137B27
Authority key identifier: EF:73:9C:0C:04:A4:27:1B:5A:AD:62:C1:19:22:9E:18:FA:DA:5F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OcDASkJxtarWLBGSKeGPraX9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/Lh86GgsgMa3KK2Nn0-FfHjfrpk8.roa
Signing time: Tue 02 Jan 2024 12:35:19 +0000
ROA not before: Tue 02 Jan 2024 12:35:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 193.5.56.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 07 Feb 2024 12:18:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:d4:97:49:c8:40:93:72:e2:33:16:51:13:7b:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef739c0c04a4271b5aad62c119229e18fada5fd3
Validity
Not Before: Jan 2 12:35:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e1f3a1a0b2031adca2b6367d3e15f1e37eba64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:49:bc:1b:23:12:98:fa:52:d9:4f:f5:c5:4f:
5e:0b:76:f6:3e:9e:64:30:2c:c3:e8:0a:34:8a:09:
99:27:be:a7:63:70:3a:9e:8f:ca:e6:d0:f5:f8:33:
fc:71:b3:ff:33:e5:9d:f2:a2:e0:ba:98:fe:cd:2e:
ae:ed:73:65:80:6d:c1:e0:da:bb:42:9d:16:7b:e4:
57:3e:4f:99:a2:81:34:c0:fa:ea:2f:b3:59:60:d6:
4d:07:60:88:6c:f7:21:8e:54:52:0a:80:95:f1:0d:
37:53:e5:3c:3d:31:e0:56:b7:2a:c4:6b:58:7a:91:
8d:16:ce:ec:66:4f:2e:b4:c3:22:82:9f:bc:7e:b3:
95:dd:0f:b5:b1:2c:e1:7a:71:bd:f5:44:b1:e7:1b:
76:05:b5:86:ba:92:36:4c:06:a2:e9:f6:45:4d:33:
19:27:c9:e2:00:55:4b:86:c7:8e:1b:a6:92:88:91:
dc:c3:86:71:b3:25:8b:df:90:14:ca:25:e9:af:c8:
f8:86:bc:7f:06:84:43:01:8e:a4:36:40:fc:73:97:
2d:30:5e:1b:76:d2:b4:ac:39:10:38:7a:d7:f2:a7:
62:56:41:eb:10:c6:70:03:77:75:75:fd:92:61:62:
8e:f6:71:d2:09:ca:22:27:f1:d4:89:bc:28:19:d1:
32:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1F:3A:1A:0B:20:31:AD:CA:2B:63:67:D3:E1:5F:1E:37:EB:A6:4F
X509v3 Authority Key Identifier:
keyid:EF:73:9C:0C:04:A4:27:1B:5A:AD:62:C1:19:22:9E:18:FA:DA:5F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OcDASkJxtarWLBGSKeGPraX9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/Lh86GgsgMa3KK2Nn0-FfHjfrpk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/28519f-dc48-4f31-a35e-99ee4a8985c3/1/73OcDASkJxtarWLBGSKeGPraX9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.56.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:90:28:24:30:ac:04:3c:3a:6d:fa:d2:19:84:b4:29:93:d9:
44:bd:0a:13:4c:37:59:94:b3:41:21:b4:45:77:7a:77:12:f8:
c0:db:2d:82:2b:ce:84:91:97:f1:21:10:56:d1:b9:cb:14:df:
ff:37:3c:85:af:89:a2:52:73:17:4d:24:32:f5:9f:9e:ab:c0:
8e:ba:40:d8:32:44:fc:47:49:b6:9a:3a:f1:ba:e5:04:42:81:
6e:3e:ca:9c:d9:50:db:3d:fb:aa:3f:bd:a4:b3:24:7c:4c:57:
45:b0:56:e3:fa:08:04:a0:33:75:f2:a0:fb:11:fa:58:4e:4c:
6a:cb:d6:08:1f:18:bf:4f:16:1e:5f:d7:8b:a4:0c:a6:d6:d3:
78:80:bf:08:8e:d3:46:44:94:f4:d3:c3:69:56:b3:8d:7e:61:
39:aa:e4:0a:b2:17:6c:4c:b5:5d:6d:26:33:ab:f1:d9:e3:a6:
17:1d:13:f6:f4:cc:93:19:e9:cc:db:77:38:3b:5e:43:6a:20:
fa:ff:a7:0a:ad:f8:47:89:ef:0f:88:3f:88:a7:ee:7c:c9:08:
86:4e:4e:3e:fa:9f:b3:c6:32:53:95:41:0b:14:c4:7d:65:a9:
1b:49:3b:b2:cf:d5:e5:92:1c:b4:e4:30:83:41:65:87:5d:66:
45:5e:d7:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 7 17:43:46 2024 by rpki-client on console-fra.rpki-client.org