Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/eZdsPKsunJbLw397Kc70D6WU7CQ.roa
File: eZdsPKsunJbLw397Kc70D6WU7CQ.roa (raw, json)
Hash identifier: njQ363psEyo6shzid9ye2D9qJoOSbmWouIEMwzLnfqo=
Subject key identifier: 79:97:6C:3C:AB:2E:9C:96:CB:C3:7F:7B:29:CE:F4:0F:A5:94:EC:24
Certificate issuer: /CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Certificate serial: 018CD57956226C205781242964149C7D972C
Authority key identifier: 21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/eZdsPKsunJbLw397Kc70D6WU7CQ.roa
Signing time: Thu 04 Jan 2024 17:15:48 +0000
ROA not before: Thu 04 Jan 2024 17:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207415
IP address blocks: 193.111.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 10:08:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d5:79:56:22:6c:20:57:81:24:29:64:14:9c:7d:97:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=210d1c0db5aa1880d7747e22f1dbf4716d3101a9
Validity
Not Before: Jan 4 17:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79976c3cab2e9c96cbc37f7b29cef40fa594ec24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:87:47:21:ae:72:6e:84:c5:96:65:69:c0:4b:
55:34:04:09:61:38:f0:20:9b:9b:82:86:19:1b:d4:
e7:34:9c:ae:43:5a:b8:c6:86:36:59:c6:06:f9:d0:
62:c3:c2:aa:84:55:2d:eb:39:05:d9:cf:48:b1:52:
dd:6e:4b:6a:7a:f4:46:fe:6d:a4:bc:d0:e3:ab:07:
35:f0:a0:70:05:51:d7:b6:f7:bf:7f:d5:01:97:0d:
b4:bb:9b:5c:41:e5:66:26:12:98:99:16:a8:bc:8b:
22:97:cf:4a:6e:be:20:e5:0d:d4:81:14:ba:12:d0:
58:5a:ef:97:ed:91:7e:6a:48:06:6b:d9:0d:38:19:
b2:dc:f7:4c:29:24:91:6e:05:ec:c6:04:b1:ab:20:
c1:a9:1d:0b:34:05:e2:fc:c6:1c:8d:6f:22:a9:e8:
99:1b:c1:21:5e:ac:fc:3b:13:48:14:b4:43:51:1e:
bb:ea:8e:bf:99:da:d4:ea:90:c2:2f:77:86:f5:19:
11:44:4d:9c:99:c4:e0:f7:0c:73:e5:f9:51:37:ae:
23:cc:3f:b9:79:30:53:37:7f:49:06:d1:a6:d2:4d:
32:60:d8:5f:a5:69:a6:80:f2:c9:9d:78:e3:0d:62:
a3:2b:07:5c:20:0e:77:62:09:b5:8e:00:85:00:dc:
c6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:97:6C:3C:AB:2E:9C:96:CB:C3:7F:7B:29:CE:F4:0F:A5:94:EC:24
X509v3 Authority Key Identifier:
keyid:21:0D:1C:0D:B5:AA:18:80:D7:74:7E:22:F1:DB:F4:71:6D:31:01:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQ0cDbWqGIDXdH4i8dv0cW0xAak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/eZdsPKsunJbLw397Kc70D6WU7CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/09c980-38eb-4222-b225-d71130c6c0f9/1/IQ0cDbWqGIDXdH4i8dv0cW0xAak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.209.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:48:86:cb:65:c7:00:62:11:4c:7a:22:e5:00:85:a5:61:be:
d7:31:ca:f3:5f:8d:27:51:57:ec:00:7d:49:f0:d1:0b:4f:12:
1a:ec:12:73:65:0f:7d:69:2a:72:b0:04:a0:1d:cd:91:6b:4c:
3f:62:dc:e4:09:fd:0b:f7:cd:5a:9c:23:99:9f:ba:32:93:60:
05:bf:f8:17:a2:dd:f1:22:0f:23:9f:77:b7:de:ba:37:09:fb:
35:e2:5f:05:3f:5a:54:64:e0:5d:d5:80:3d:a4:34:89:98:3d:
8c:6a:ca:7d:60:49:94:ce:0b:64:dd:55:e3:b8:3b:ca:36:90:
18:6a:a3:d6:80:ee:51:60:39:81:07:0c:f6:a3:61:2c:48:70:
b6:88:ab:56:f3:60:f8:f4:5d:70:2a:0b:bf:30:2b:1d:9a:4e:
b1:90:74:58:50:a3:40:63:54:26:73:cf:8e:6c:fa:b5:0f:3a:
3f:54:80:3b:ca:45:d7:0e:9f:1c:e0:83:fd:f2:89:5b:ea:07:
19:3b:ef:50:0b:8d:d7:d1:76:80:f8:86:a1:17:96:36:94:c6:
f1:a3:54:b9:86:ab:ca:29:a8:ff:c9:49:96:f4:1d:b8:23:a3:
44:72:d3:9d:14:4b:65:5d:dc:8d:69:d2:5e:75:4d:96:17:28:
1c:46:28:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 12 14:08:55 2024 by rpki-client on console-fra.rpki-client.org