Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/jw5bQEmOjajS9ToH55d1zgRqtH4.roa
File: jw5bQEmOjajS9ToH55d1zgRqtH4.roa (raw, json)
Hash identifier: fHSGJF5qqdpixhaMq5+bUbHSl2+KJNUUPMArwqIIzvc=
Subject key identifier: 8F:0E:5B:40:49:8E:8D:A8:D2:F5:3A:07:E7:97:75:CE:04:6A:B4:7E
Certificate issuer: /CN=8267fb4a0b677b8377907b82fb1fb8810a2fef08
Certificate serial: 018D1780812643BDFC652C139682AC48736C
Authority key identifier: 82:67:FB:4A:0B:67:7B:83:77:90:7B:82:FB:1F:B8:81:0A:2F:EF:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmf7Sgtne4N3kHuC-x-4gQov7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/jw5bQEmOjajS9ToH55d1zgRqtH4.roa
Signing time: Wed 17 Jan 2024 12:58:34 +0000
ROA not before: Wed 17 Jan 2024 12:58:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204341
IP address blocks: 193.200.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 13:41:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:80:81:26:43:bd:fc:65:2c:13:96:82:ac:48:73:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8267fb4a0b677b8377907b82fb1fb8810a2fef08
Validity
Not Before: Jan 17 12:58:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f0e5b40498e8da8d2f53a07e79775ce046ab47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:ff:d8:63:ff:b4:c9:ca:d0:6c:61:e3:c2:8b:
dd:9b:60:34:08:ec:40:71:49:16:98:21:09:2f:14:
95:63:25:d2:34:e2:22:80:2e:25:01:35:31:bd:62:
c8:78:74:a2:25:c2:66:d0:75:5e:f3:64:66:76:1c:
83:58:84:87:e0:2f:71:92:24:1a:42:4e:20:36:57:
d7:c7:1b:57:ee:25:08:6a:fb:9d:39:d2:a5:1c:a1:
22:27:21:55:72:3e:1b:cb:9f:e3:c4:30:67:68:be:
f1:7e:8f:23:08:b1:b1:a4:3e:aa:58:31:b1:e7:e2:
0a:cd:65:58:4b:48:4e:eb:1d:cd:1e:72:0d:a2:d8:
ec:00:ef:bf:37:47:30:7e:e7:19:21:db:95:27:f5:
a1:ef:10:0f:e3:37:c8:08:00:8e:85:31:41:22:e2:
b3:27:fa:73:df:d8:fa:aa:b0:22:81:01:62:1e:f5:
15:7d:ff:a6:bb:bc:c5:47:fe:8b:b0:23:f5:7b:90:
02:fd:9b:b6:3c:d5:01:a1:2c:fd:68:2b:ec:9b:74:
9c:1a:ab:b3:53:9b:5b:85:4c:43:c5:84:a2:2b:dc:
49:1b:ec:80:1a:ae:ea:f9:77:30:06:5a:f2:d1:45:
d1:b8:5a:55:56:f7:73:4b:95:86:bd:82:4a:a0:d7:
be:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:0E:5B:40:49:8E:8D:A8:D2:F5:3A:07:E7:97:75:CE:04:6A:B4:7E
X509v3 Authority Key Identifier:
keyid:82:67:FB:4A:0B:67:7B:83:77:90:7B:82:FB:1F:B8:81:0A:2F:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmf7Sgtne4N3kHuC-x-4gQov7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/jw5bQEmOjajS9ToH55d1zgRqtH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/gmf7Sgtne4N3kHuC-x-4gQov7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.52.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:f5:61:64:ad:74:f5:82:20:81:41:cc:4e:ae:fb:b0:40:ca:
ca:1d:fb:4e:d3:05:27:fc:82:1d:3d:ed:0d:c5:cb:b8:92:b3:
51:ce:81:b5:92:d7:10:8f:fa:76:f1:e3:d1:19:2c:4a:14:f8:
f4:1f:c0:47:74:50:75:9e:26:d5:57:27:ac:a2:8c:e0:76:b8:
fb:ef:d9:de:97:c4:9b:38:03:95:93:d1:ac:68:f7:b1:49:54:
cc:81:8a:92:76:a5:d7:4d:d1:1a:e5:f8:09:71:1c:09:1c:59:
4f:4a:2a:81:a3:cb:d6:87:8c:d5:05:31:0d:90:8b:66:0f:ae:
ea:fe:e0:8a:ed:73:f1:a2:c4:be:95:aa:b4:88:40:de:c8:a9:
ba:4a:da:c9:62:0b:03:cd:be:b3:41:19:c6:90:fa:df:e0:9d:
74:0e:b9:a9:c8:1a:25:68:04:88:f3:6f:c5:5b:2a:d9:80:79:
31:6f:e6:31:ef:22:fe:4c:b1:aa:13:70:61:e0:43:c6:88:18:
dd:1a:21:7d:94:f4:35:e2:ca:84:23:07:7a:ee:bc:bd:b8:da:
a6:7e:eb:a2:52:01:83:28:24:73:57:01:bc:ec:18:af:20:69:
c2:a0:b0:c2:bf:69:97:b2:03:00:69:2f:63:7c:d1:f6:38:40:
a2:f2:3f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 19:00:55 2024 by rpki-client on console-fra.rpki-client.org