Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/8R8I1afdqe_a092bdgAMaQuZIHQ.roa
File: 8R8I1afdqe_a092bdgAMaQuZIHQ.roa (raw, json)
Hash identifier: 4I9KUvv1iUkpPqHA1wgwInBIovuwB+jNtrMErafxeno=
Subject key identifier: F1:1F:08:D5:A7:DD:A9:EF:DA:D3:DD:9B:76:00:0C:69:0B:99:20:74
Certificate issuer: /CN=4a97bc504f3075fb4f39236408c1c2d547b44c26
Certificate serial: 0185704BB811BD6BBAE1C916FB2218F0FD59
Authority key identifier: 4A:97:BC:50:4F:30:75:FB:4F:39:23:64:08:C1:C2:D5:47:B4:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Spe8UE8wdftPOSNkCMHC1Ue0TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/8R8I1afdqe_a092bdgAMaQuZIHQ.roa
Signing time: Mon 02 Jan 2023 02:24:48 +0000
ROA not before: Mon 02 Jan 2023 02:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20906
IP address blocks: 193.108.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:b8:11:bd:6b:ba:e1:c9:16:fb:22:18:f0:fd:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a97bc504f3075fb4f39236408c1c2d547b44c26
Validity
Not Before: Jan 2 02:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f11f08d5a7dda9efdad3dd9b76000c690b992074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f0:fb:57:7a:35:ab:56:56:c8:13:16:19:27:
11:77:5e:8c:1d:f4:63:03:10:b6:a0:64:c3:f7:1c:
67:63:4b:90:35:35:7e:ef:15:cc:99:3f:14:68:a8:
48:ea:91:07:f1:11:8c:2e:4a:9b:0f:c8:11:05:75:
92:00:4b:eb:58:02:d3:3b:1c:06:62:12:a6:f9:a2:
38:31:21:6f:13:1b:93:68:84:af:96:96:0d:34:f1:
48:35:a2:60:46:9c:8f:3e:b7:20:49:96:87:c3:bc:
7a:90:2e:7d:f9:46:07:e6:42:ca:9a:07:ff:af:f1:
88:1c:3f:83:62:29:8d:e8:ba:cb:28:49:af:cb:c0:
26:51:ef:3b:2d:81:30:bb:b5:03:e7:07:17:99:3d:
14:71:d8:2c:7b:f2:ae:30:7a:0d:10:93:00:61:da:
89:4e:6f:26:4d:be:68:3e:d5:fd:ab:7b:70:2c:63:
9f:94:28:30:af:7f:d0:b1:48:8a:99:42:74:08:75:
bc:62:19:ff:e2:c9:08:09:18:b3:13:c7:07:8a:32:
1a:52:46:db:7d:ce:e3:2e:e8:ac:14:ef:ab:04:ee:
56:c9:7b:94:6a:2b:ac:f1:dd:00:7d:8e:23:68:de:
0d:88:32:9b:23:d1:b3:46:c1:83:14:d3:4f:85:7a:
38:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:1F:08:D5:A7:DD:A9:EF:DA:D3:DD:9B:76:00:0C:69:0B:99:20:74
X509v3 Authority Key Identifier:
keyid:4A:97:BC:50:4F:30:75:FB:4F:39:23:64:08:C1:C2:D5:47:B4:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Spe8UE8wdftPOSNkCMHC1Ue0TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/8R8I1afdqe_a092bdgAMaQuZIHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/d4501b-18ea-4280-85a4-9329f9179fda/1/Spe8UE8wdftPOSNkCMHC1Ue0TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.174.0/24
Signature Algorithm: sha256WithRSAEncryption
10:1f:dd:76:6e:df:8b:d9:2b:46:4a:d5:64:5a:a4:4a:3a:72:
b3:50:39:54:e7:bc:8a:1b:0e:12:5f:9f:7d:e8:50:50:59:9a:
25:18:b2:42:f7:01:ca:06:c6:69:6b:53:5d:fc:66:65:ad:f2:
e1:70:9b:04:d2:96:cb:b5:49:b0:66:6d:ef:92:55:88:be:3b:
9d:cd:3b:fd:61:21:c2:d6:b5:29:e7:18:5a:cf:00:1e:b7:a3:
71:18:ae:bc:3f:93:89:a5:61:88:20:a6:52:6d:b2:c4:b6:82:
f5:38:74:2b:bd:af:5d:67:12:f2:75:37:ad:53:0f:de:96:1f:
55:f3:9b:35:77:e1:a9:f3:d6:78:64:24:9f:85:b9:2d:f5:63:
0c:45:fd:21:60:49:d4:fe:9a:63:c3:eb:16:96:0e:f4:4e:ca:
d7:06:9c:12:33:83:13:ee:fa:38:e8:61:20:d1:57:93:65:3d:
3f:2f:52:60:e8:56:40:04:41:68:13:e0:0c:7d:90:e5:fb:5a:
9a:7a:e5:ad:7d:2e:aa:b9:93:69:ae:83:ae:d1:0d:19:0d:d3:
df:f4:d5:84:a4:93:2e:28:4c:67:c0:e1:6c:4d:e0:1d:c3:32:
22:5a:78:63:16:a7:1e:dd:e1:c4:98:f4:c4:83:d6:9a:4f:bd:
d5:b9:d2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:10 2024 by rpki-client on console-fra.rpki-client.org