Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/rJlDErqvOOUPuPhmOloFXi5FhGg.roa
File: rJlDErqvOOUPuPhmOloFXi5FhGg.roa (raw, json)
Hash identifier: htqFNuRamm7n6kMtx+BN20GamLUnvWeXwOwSWd9CyK8=
Subject key identifier: AC:99:43:12:BA:AF:38:E5:0F:B8:F8:66:3A:5A:05:5E:2E:45:84:68
Certificate issuer: /CN=8267fb4a0b677b8377907b82fb1fb8810a2fef08
Certificate serial: 018CC26D42607C344D42BE7881E5220BBAF3
Authority key identifier: 82:67:FB:4A:0B:67:7B:83:77:90:7B:82:FB:1F:B8:81:0A:2F:EF:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmf7Sgtne4N3kHuC-x-4gQov7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/rJlDErqvOOUPuPhmOloFXi5FhGg.roa
Signing time: Mon 01 Jan 2024 00:29:49 +0000
ROA not before: Mon 01 Jan 2024 00:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204341
IP address blocks: 193.200.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 12:55:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:42:60:7c:34:4d:42:be:78:81:e5:22:0b:ba:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8267fb4a0b677b8377907b82fb1fb8810a2fef08
Validity
Not Before: Jan 1 00:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac994312baaf38e50fb8f8663a5a055e2e458468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:24:3a:b1:6d:ef:f1:c0:51:8f:94:b3:4a:55:
b5:ea:bb:82:76:c2:a3:71:3b:59:31:40:43:e1:64:
db:59:e7:5b:ae:32:24:f6:36:f9:6d:a5:51:0a:c0:
85:f9:f2:9d:e9:6d:17:fa:a4:29:e7:a8:f6:37:a7:
09:b2:d7:a5:3c:1c:ef:be:ee:dc:4f:f2:cf:36:72:
b6:04:0c:2a:0a:ad:39:c0:eb:0d:ea:01:d1:8f:e8:
c5:40:ee:ee:98:6a:18:57:0b:e7:23:a0:42:33:70:
aa:6c:7a:8d:30:65:be:07:42:ff:49:a3:d2:25:da:
44:d0:0d:6c:85:c2:cf:b2:ec:27:fb:b4:f3:0b:28:
5e:48:14:fe:61:af:11:f1:3f:08:ec:cf:d3:79:6d:
1d:ec:8a:08:2e:50:5e:7e:58:d7:3d:d8:c9:3a:02:
19:bb:d2:f0:15:0b:d8:cb:c0:c0:57:25:56:38:db:
fe:fc:4b:4c:80:cf:18:11:0e:11:b8:2f:ee:e8:a7:
53:84:08:50:d4:50:1a:52:1b:aa:cd:ae:da:91:5a:
b6:7b:5d:8e:2e:ec:38:cc:35:b2:a8:27:6b:89:c8:
a9:8d:57:71:20:9a:1d:ed:f5:60:5b:38:9f:56:e1:
1c:c1:c8:fd:e5:52:ab:6c:bb:26:ac:2b:55:4f:a8:
55:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:99:43:12:BA:AF:38:E5:0F:B8:F8:66:3A:5A:05:5E:2E:45:84:68
X509v3 Authority Key Identifier:
keyid:82:67:FB:4A:0B:67:7B:83:77:90:7B:82:FB:1F:B8:81:0A:2F:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmf7Sgtne4N3kHuC-x-4gQov7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/rJlDErqvOOUPuPhmOloFXi5FhGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0dda42-53a5-4aba-86ae-639e14d04de6/1/gmf7Sgtne4N3kHuC-x-4gQov7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.52.0/24
Signature Algorithm: sha256WithRSAEncryption
ea:1f:c0:e2:52:81:c3:5b:87:99:73:c4:1d:f7:d5:9e:03:33:
fb:4f:7b:ec:7f:3f:50:1c:7a:43:15:7c:df:44:5d:67:34:cb:
1d:7b:50:51:86:bd:c1:49:47:09:29:59:97:29:ad:ae:1a:06:
a6:b3:6d:53:07:2c:12:b1:b7:c0:02:90:7f:d8:0c:b7:fb:2a:
74:9b:47:79:c2:42:a4:1a:12:15:ed:87:01:f5:f3:c9:03:60:
75:61:e9:53:5f:31:c2:5a:ec:97:3a:14:92:b6:7c:36:c5:05:
8f:45:cd:40:00:72:ad:90:86:72:5e:35:5f:74:17:2d:bf:c8:
60:18:0f:b5:ea:91:6a:b4:c0:f9:b1:68:e0:c0:79:02:38:a0:
32:e3:0b:16:b8:23:af:4a:eb:8b:b3:81:57:25:58:00:5b:ed:
15:bb:4f:45:26:fe:ba:01:50:0b:66:7a:c1:76:2a:ef:de:73:
25:29:ce:dc:89:d9:79:b4:1c:0a:9a:3e:09:e6:b9:cb:47:0c:
7c:d2:be:2e:75:a4:c2:29:d0:38:33:0a:1d:52:3c:87:0c:aa:
a0:f3:2a:d1:2e:82:ba:31:b5:d8:f8:26:66:1e:75:a6:68:c3:
b7:6e:2f:c0:06:74:68:d8:52:e4:1e:71:19:ff:fe:b9:a0:b5:
fb:17:87:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 15:53:15 2024 by rpki-client on console-fra.rpki-client.org