Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/XmIysD7QTOWAjvoFMUNPOokXBho.roa
File: XmIysD7QTOWAjvoFMUNPOokXBho.roa (raw, json)
Hash identifier: DyJKTFhjLwI+R53pIr09BBWX+KjrIQfogPVsrnYnRw4=
Subject key identifier: 5E:62:32:B0:3E:D0:4C:E5:80:8E:FA:05:31:43:4F:3A:89:17:06:1A
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018AF0E1C0DF7C87B723A8BA266A06620D2E
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/XmIysD7QTOWAjvoFMUNPOokXBho.roa
Signing time: Mon 02 Oct 2023 14:54:01 +0000
ROA not before: Mon 02 Oct 2023 14:54:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216234
IP address blocks: 194.67.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Nov 2023 12:10:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:e1:c0:df:7c:87:b7:23:a8:ba:26:6a:06:62:0d:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Oct 2 14:54:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e6232b03ed04ce5808efa0531434f3a8917061a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:96:35:8f:6c:14:3d:72:a0:88:f2:de:be:
7c:ba:39:15:0e:65:c1:7c:5c:d0:18:24:8e:59:6c:
43:0b:69:20:c6:c2:3b:5f:e4:08:74:70:cb:a6:64:
6b:03:d1:2e:72:36:ca:23:71:25:8d:32:28:23:4c:
79:39:2a:f7:03:eb:4e:3d:83:90:60:b2:f4:5d:8c:
df:c6:22:f3:d8:dc:b9:64:d8:51:e6:5e:39:b0:ae:
b0:32:2b:6d:fa:1a:ee:bf:97:96:cd:2f:fd:5a:5c:
a3:0f:2f:c2:f3:d4:3e:5f:7b:3c:60:e1:7e:4c:4c:
e6:85:57:cc:14:14:2d:15:17:62:93:14:10:31:2d:
a6:e8:08:85:74:1b:32:08:e8:df:fb:04:36:5f:19:
37:0a:be:b8:ca:58:24:a2:3a:e4:3b:fa:b1:f7:76:
08:35:5b:0c:02:76:f6:a5:98:29:3a:30:51:8b:db:
4f:a4:ea:93:66:24:4d:82:95:55:c0:55:94:c5:29:
1c:b0:09:9d:d4:ab:ac:90:93:c7:94:5f:70:70:16:
ff:08:e2:17:fb:09:6f:8a:b9:c2:13:1f:32:7e:e6:
6d:5b:1e:be:b3:6a:95:a6:a8:d6:7d:6b:76:fd:ad:
af:40:9e:ff:ff:3c:89:5a:bf:ae:04:71:dd:8d:dc:
11:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:62:32:B0:3E:D0:4C:E5:80:8E:FA:05:31:43:4F:3A:89:17:06:1A
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/XmIysD7QTOWAjvoFMUNPOokXBho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.67.193.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:20:b3:68:b4:8a:cf:5e:29:a4:c4:eb:0b:08:a2:ff:47:12:
42:27:4d:60:a2:df:1a:32:c9:a8:c1:8d:6a:6c:69:76:29:81:
52:f5:f2:1d:b2:7d:07:73:42:c1:1e:b6:e1:61:45:f6:31:5a:
ea:b1:3a:22:c0:c8:50:9d:1d:a1:29:30:e8:cf:1a:78:4c:22:
4e:75:8e:97:59:81:86:ea:3a:db:ea:3a:f1:09:4f:b9:41:04:
8f:5c:28:d7:3a:88:ca:1a:f4:22:88:60:9a:22:c1:93:a5:bd:
9f:34:c0:be:59:7a:e2:13:c2:74:71:64:7b:8e:73:29:6d:b2:
a1:2b:37:19:66:85:1d:4a:52:b4:41:24:c2:98:79:35:d3:15:
8c:ef:13:34:dd:29:7b:fd:2a:0b:6b:1f:e7:54:86:1b:61:76:
75:00:5b:44:d5:5e:9c:1c:f0:12:34:2e:be:c2:97:5b:66:a0:
cb:2e:56:8b:f6:e8:fd:96:e1:c6:1a:bf:ec:71:de:1f:57:4a:
be:a7:3e:ba:ce:1e:44:ba:ee:a6:ce:67:fc:b3:5d:db:e0:e8:
42:c8:bf:32:b4:8a:b2:bf:30:26:75:cf:75:b3:a7:70:af:28:
58:12:01:08:a5:32:6f:98:93:14:7e:dd:01:88:c6:ef:d8:e8:
05:1e:55:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org