Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/p53Cj38KXNjnLy2SJVA8CijaYg4.roa
File: p53Cj38KXNjnLy2SJVA8CijaYg4.roa (raw, json)
Hash identifier: IjRu2ojoUiu4tOHEbSGYcF+5nTVSGz0cE/pPpQ95h10=
Subject key identifier: A7:9D:C2:8F:7F:0A:5C:D8:E7:2F:2D:92:25:50:3C:0A:28:DA:62:0E
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018CC8DFAAC9365C925589CE544E2708ED76
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/p53Cj38KXNjnLy2SJVA8CijaYg4.roa
Signing time: Tue 02 Jan 2024 06:32:30 +0000
ROA not before: Tue 02 Jan 2024 06:32:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206243
IP address blocks: 193.109.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Sep 2024 14:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:aa:c9:36:5c:92:55:89:ce:54:4e:27:08:ed:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 06:32:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a79dc28f7f0a5cd8e72f2d9225503c0a28da620e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3d:6b:d6:61:6d:64:c0:71:ba:98:71:f2:79:
aa:e0:1e:d9:56:96:b1:64:43:1c:eb:e3:8d:47:3c:
5f:1b:b0:2a:05:db:f4:c2:bc:22:9d:ca:bb:c1:50:
9a:d4:c5:d6:2e:51:c1:c6:1f:64:01:07:cd:b1:66:
52:46:c9:e8:81:50:6c:67:5d:45:eb:9b:fa:98:b6:
83:a3:43:dd:08:82:aa:28:3d:94:0d:fb:53:74:06:
11:0a:c7:a6:70:83:a7:69:f2:02:04:b7:f9:db:71:
c6:97:25:ff:0f:75:3f:60:0c:fc:d7:17:42:ce:d6:
4a:a5:57:9e:1f:ba:58:29:f9:91:42:36:c7:1b:7b:
03:28:5c:17:47:13:80:c1:50:c1:ee:d2:ec:76:88:
fa:ab:33:4e:30:f5:76:37:77:22:65:2a:8e:de:ca:
59:19:82:3f:fa:c8:57:f3:c5:46:a9:44:02:1a:f3:
14:20:93:6b:35:52:a2:8f:6f:73:fd:c0:7d:c2:28:
b1:0b:73:3e:57:c4:31:23:32:af:09:c7:3c:30:24:
aa:6d:ff:7b:bf:c8:5e:79:97:fb:25:15:b6:c7:de:
b9:34:9a:92:bf:d6:5a:ea:c0:5c:d2:63:08:1d:0b:
5d:f8:61:a3:14:27:0f:7c:81:7d:a9:8f:df:e7:bf:
64:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:9D:C2:8F:7F:0A:5C:D8:E7:2F:2D:92:25:50:3C:0A:28:DA:62:0E
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/p53Cj38KXNjnLy2SJVA8CijaYg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.85.0/24
Signature Algorithm: sha256WithRSAEncryption
48:35:ef:8b:ff:03:56:85:a3:5f:cc:53:98:20:d5:2b:a8:e5:
f9:07:14:fe:f7:fd:f9:44:aa:cb:c2:16:be:7f:14:10:77:e7:
de:57:14:8e:ec:d8:0f:e3:d1:b4:da:27:d7:8a:fc:72:1a:a3:
a5:72:af:6b:2a:53:fb:d1:d9:63:52:20:21:2c:e1:e6:ef:72:
d7:12:0b:01:b0:4c:b6:50:dd:8b:7b:6e:67:97:be:88:3b:4a:
49:72:58:43:18:8f:e1:a1:8a:89:6f:46:34:0f:bb:8b:d1:1a:
da:2f:2a:e3:c1:1c:a9:15:93:a7:ff:93:d1:83:22:7e:0c:2a:
31:65:c6:ff:86:a8:34:43:4f:6d:87:7d:1e:6e:33:67:47:47:
4f:f9:da:11:0d:43:c6:ed:70:82:73:1a:34:08:21:d3:d1:5a:
b0:ea:f0:4e:b5:63:0f:60:3f:a9:63:8a:a4:da:53:57:75:e6:
f8:66:03:c7:99:4c:b8:a2:d5:01:c0:35:f4:f7:78:a1:cf:96:
3b:e2:bd:e3:2c:18:17:0f:88:1d:2d:c9:26:6d:56:56:cf:d6:
be:d1:bb:52:ba:aa:52:49:f5:a2:4c:70:1b:14:9f:04:b5:45:
e4:9f:57:07:62:62:f3:c2:a9:6f:d0:71:44:39:26:11:03:79:
ce:bb:0c:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 16:46:29 2024 by rpki-client on console-fra.rpki-client.org