Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nmQvKKZ_olLusSiOzlw2-soN43U.roa
File: nmQvKKZ_olLusSiOzlw2-soN43U.roa (raw, json)
Hash identifier: FkLPzihDZBadPDTTtmTWlfcPBRVIbzLaPKsRImv7Byk=
Subject key identifier: 9E:64:2F:28:A6:7F:A2:52:EE:B1:28:8E:CE:5C:36:FA:CA:0D:E3:75
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018895F7E9066F7D609B07FC7A45C2CAF182
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nmQvKKZ_olLusSiOzlw2-soN43U.roa
Signing time: Wed 07 Jun 2023 13:07:12 +0000
ROA not before: Wed 07 Jun 2023 13:07:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206243
IP address blocks: 193.109.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:95:f7:e9:06:6f:7d:60:9b:07:fc:7a:45:c2:ca:f1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jun 7 13:07:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e642f28a67fa252eeb1288ece5c36faca0de375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c0:d1:5f:70:1f:bb:ad:09:69:b1:c9:f5:bd:
13:5a:a2:ad:db:cc:56:e3:a1:24:e9:06:f5:7a:20:
fd:6e:47:9f:23:23:12:b6:83:f1:b5:3b:19:9f:15:
2f:e3:49:23:b6:50:30:c7:c6:7e:86:e9:9a:f3:1a:
73:d3:e4:e8:34:42:54:5d:fe:85:e4:20:62:7a:be:
06:e8:71:79:1b:d2:3d:a6:05:aa:81:08:2f:34:d4:
a9:74:c5:86:c1:39:69:7d:a9:f2:45:c2:3d:9d:11:
f5:0f:8f:60:23:0d:b1:de:57:4c:0f:95:6c:b3:16:
fe:ed:c3:95:5b:65:ef:43:5c:ef:82:41:ef:c5:ef:
5d:77:27:e7:7a:5a:39:4a:51:24:b3:01:5c:0a:d3:
02:b6:26:2e:1b:e6:75:74:1e:99:3d:7e:ed:5a:d5:
ec:46:7b:94:1c:d4:77:f8:56:d7:5d:f8:96:19:e3:
a2:55:0e:ed:cf:9f:7c:ab:cf:4c:23:68:a5:d4:bd:
07:d8:4a:35:82:ea:c2:75:d8:a5:a7:4b:74:f2:d6:
d3:dc:20:86:f1:5c:0f:3d:aa:23:ae:23:92:f5:bb:
c9:ab:8e:6f:9a:17:02:88:ec:93:90:f7:b9:59:f1:
e0:e2:2c:ac:64:53:2c:65:7d:73:31:c5:1c:dd:99:
25:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:64:2F:28:A6:7F:A2:52:EE:B1:28:8E:CE:5C:36:FA:CA:0D:E3:75
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/nmQvKKZ_olLusSiOzlw2-soN43U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.85.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:7f:77:72:8e:1a:22:8b:d4:2b:29:ee:41:b6:f3:6f:ee:72:
96:df:e1:29:c1:61:a3:df:88:23:a3:f9:e0:55:3d:e8:6d:b4:
d4:88:1b:22:7f:df:8b:6e:28:9b:8f:51:ec:0d:be:5b:8a:b2:
52:e2:3b:99:a0:92:ad:62:30:10:a6:91:b4:99:ea:80:bd:96:
76:d4:5b:bc:88:a7:0c:09:42:11:c1:26:8b:68:7c:05:39:7c:
74:4e:06:3e:01:8f:6c:bc:ec:53:48:76:a1:99:11:e9:9e:38:
e7:48:14:b2:47:7a:cf:24:df:5c:72:cc:8a:f7:d8:35:05:8e:
e9:ba:5d:d0:87:82:28:f1:b4:b9:fc:48:4d:7a:82:d1:9f:65:
ab:51:81:59:94:2a:df:49:9d:e5:bb:bb:e8:b4:e1:dc:2e:eb:
89:12:7a:32:b1:26:d0:90:2e:36:4e:bd:dc:28:76:f8:61:b8:
5f:83:28:24:39:40:81:76:c1:be:bd:b8:be:e5:fd:df:7c:c6:
37:d8:34:99:dc:6c:09:3d:04:4e:4e:2d:34:f9:32:c8:22:8a:
43:49:61:e1:08:f2:5b:62:48:a9:31:e6:8d:64:de:c5:bf:18:
01:dc:13:c8:fe:e2:81:bc:9c:b5:42:e0:5b:bf:a6:4b:2a:d0:
79:14:da:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org