Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/baep5ZrbGfDKBTLZkv7hn0SdlYI.roa
File: baep5ZrbGfDKBTLZkv7hn0SdlYI.roa (raw, json)
Hash identifier: EA0dI5572AzudGZrGKC3ym1REDfE665MpqOX33QN3Xc=
Subject key identifier: 6D:A7:A9:E5:9A:DB:19:F0:CA:05:32:D9:92:FE:E1:9F:44:9D:95:82
Certificate issuer: /CN=59acb4022765898be4f06050cd3a2f9291d83367
Certificate serial: 01856CC1583A6927A352FB7792F8BDC6F993
Authority key identifier: 59:AC:B4:02:27:65:89:8B:E4:F0:60:50:CD:3A:2F:92:91:D8:33:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Way0AidliYvk8GBQzTovkpHYM2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/baep5ZrbGfDKBTLZkv7hn0SdlYI.roa
Signing time: Sun 01 Jan 2023 09:54:48 +0000
ROA not before: Sun 01 Jan 2023 09:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6798
IP address blocks: 193.105.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:58:3a:69:27:a3:52:fb:77:92:f8:bd:c6:f9:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59acb4022765898be4f06050cd3a2f9291d83367
Validity
Not Before: Jan 1 09:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6da7a9e59adb19f0ca0532d992fee19f449d9582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:73:83:29:11:7e:73:60:5b:67:e8:b6:cb:a4:
f3:84:d8:32:ae:20:fb:63:d8:da:1b:a1:a7:7d:13:
99:5a:17:79:ee:59:5e:f4:bf:22:48:ff:0e:35:cb:
a6:8d:d8:aa:62:50:5b:81:50:4f:83:a6:d1:2a:82:
da:b4:3d:46:81:e4:d7:c5:44:1f:f9:55:6c:cc:d0:
5f:e4:8b:66:be:cb:be:8b:1e:cf:6f:01:16:50:11:
43:99:d8:6d:86:63:88:29:d0:cb:4a:48:a2:19:df:
9c:a7:37:4e:74:fa:a3:67:77:d3:9e:99:c9:d0:54:
1a:f3:18:7e:86:67:6d:f7:32:fe:7c:4b:53:72:4f:
a8:c2:ab:08:51:47:15:2a:02:04:25:db:6b:6f:a8:
4a:6d:80:ea:90:17:c0:e5:8b:2c:1e:8d:8f:11:4c:
f3:d2:98:42:94:cf:35:1c:00:2d:5a:26:68:2b:de:
59:b9:21:c0:50:1d:fe:3a:be:68:86:4d:9a:6b:ab:
3f:77:43:78:9f:1b:29:f7:4c:00:3c:27:89:7e:7f:
9b:23:f6:f2:74:ac:19:bc:66:cb:ed:4d:3c:b7:48:
10:1e:3e:f5:b8:6b:b1:0b:0a:b0:75:28:13:cf:b0:
d0:a7:6d:20:45:ee:85:4f:b6:37:bd:57:71:05:66:
61:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:A7:A9:E5:9A:DB:19:F0:CA:05:32:D9:92:FE:E1:9F:44:9D:95:82
X509v3 Authority Key Identifier:
keyid:59:AC:B4:02:27:65:89:8B:E4:F0:60:50:CD:3A:2F:92:91:D8:33:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Way0AidliYvk8GBQzTovkpHYM2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/baep5ZrbGfDKBTLZkv7hn0SdlYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/625ed5-7e74-4427-9bdf-dd1d249017aa/1/Way0AidliYvk8GBQzTovkpHYM2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.153.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:f6:6a:2d:ba:5e:13:23:0b:b2:6b:a0:eb:fb:ff:8b:b0:ee:
f4:3c:3a:9c:a6:a1:d8:64:74:4f:ad:e0:a0:4a:23:3e:c6:9a:
0f:d0:98:c0:6a:1e:54:0b:5c:e2:aa:20:73:bf:92:2a:5b:7f:
f1:eb:27:7b:9e:37:2d:ef:75:e2:85:db:74:65:e1:55:78:1a:
6b:46:c6:95:7e:33:81:97:41:22:ac:64:fe:e2:e7:cb:5c:04:
66:40:48:bc:99:b4:98:d3:66:1c:e6:21:2e:4e:6a:86:d9:8e:
da:11:76:21:e9:7b:df:8f:ec:50:28:f3:39:dd:98:f3:8c:54:
15:87:54:21:3e:8a:ec:21:a9:71:6a:83:7b:24:8b:b7:a6:1f:
2e:b3:6a:5e:0c:e3:95:c7:2d:f7:3c:dd:65:ac:58:46:95:28:
b7:b2:6e:51:fa:6c:ec:0a:3e:0a:24:c2:08:7a:b1:b7:74:41:
ac:7c:93:f6:8a:c7:e7:6c:8f:f9:45:3b:fe:10:ff:a4:cb:12:
26:ae:21:42:45:71:27:c8:ff:26:f7:b5:72:4f:83:38:d7:95:
30:0a:d8:2a:f8:c5:b1:bc:4d:d4:96:79:7e:95:7b:f2:2f:20:
b7:cb:95:53:9d:4e:64:90:d6:03:e2:b8:32:22:66:55:84:12:
30:9c:26:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:58 2024 by rpki-client on console-fra.rpki-client.org