Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-Y3vFNxklaEIUwCm9kAQde0k5mQ.roa
File: 1-Y3vFNxklaEIUwCm9kAQde0k5mQ.roa (raw, json)
Hash identifier: X1GY1xVixQ/NXAv0ZuX8LhPPn1ONkk2pguKfS0suTas=
Subject key identifier: F9:8D:EF:14:DC:64:95:A1:08:53:00:A6:F6:40:10:75:ED:24:E6:64
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018AA79E170236F19109088811D9154BAF14
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-Y3vFNxklaEIUwCm9kAQde0k5mQ.roa
Signing time: Mon 18 Sep 2023 09:27:50 +0000
ROA not before: Mon 18 Sep 2023 09:27:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8100
IP address blocks: 193.58.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:9e:17:02:36:f1:91:09:08:88:11:d9:15:4b:af:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 18 09:27:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f98def14dc6495a1085300a6f6401075ed24e664
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0f:82:2f:0f:0d:a0:29:6b:0d:f1:89:81:26:
26:3b:2f:a7:d8:75:96:ef:e2:09:b6:aa:47:1d:27:
01:c4:53:fa:54:19:e6:a4:14:21:fe:18:a0:0d:49:
8d:73:6c:20:0e:6d:1b:9e:f5:1b:8b:61:f3:24:79:
e3:57:87:55:77:58:27:ec:34:5f:b8:93:79:7f:43:
5a:bf:2d:39:9d:0f:b0:d6:24:3a:65:ae:08:68:88:
66:1c:14:ba:50:16:47:01:22:31:91:8b:f5:d3:6f:
9d:93:86:16:aa:59:74:21:a5:a1:87:6d:0c:87:c2:
f4:a6:23:a9:90:95:c5:d8:2d:54:ab:bf:3d:df:56:
57:15:0a:f1:e3:08:af:db:be:e0:5b:57:e0:99:99:
0d:7b:39:85:68:ea:30:f8:5f:32:66:12:aa:88:84:
3c:ba:9a:01:bc:1b:31:a2:52:c6:f7:4d:4a:72:ef:
02:c2:d6:b6:3a:01:01:12:29:e2:e0:1f:6e:77:82:
99:58:85:9c:d6:be:ec:1c:9d:bb:69:ac:3c:db:42:
46:01:43:d9:9f:83:04:e1:a0:bf:16:99:4c:0d:fd:
8b:45:9f:17:55:39:dd:45:20:6d:02:a6:75:80:84:
a2:de:85:7b:d5:af:ce:22:92:f8:2f:4f:a1:88:f1:
50:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:8D:EF:14:DC:64:95:A1:08:53:00:A6:F6:40:10:75:ED:24:E6:64
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/1-Y3vFNxklaEIUwCm9kAQde0k5mQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.147.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:94:9e:2c:13:2d:fc:95:b0:29:6f:fc:08:e9:c3:15:72:12:
02:26:e5:4b:53:0e:7b:14:2e:a1:6d:f5:df:3e:1f:bb:5e:e6:
8a:28:53:f1:25:a7:aa:50:e5:46:1e:d4:b7:42:a0:2f:51:86:
92:07:d2:39:0e:33:a0:0e:7a:e3:54:f6:fd:d9:2e:06:e8:82:
42:94:8b:e7:b7:8b:0c:dd:7b:42:b1:fa:e3:3a:c8:b9:4f:19:
76:a1:bd:26:ff:09:34:69:7e:3f:6c:b4:f1:fe:80:8b:71:b9:
24:5c:ca:67:b1:a0:1c:71:90:1b:bc:97:5a:7e:08:66:9e:7b:
e2:5d:b7:92:24:b7:41:28:4e:01:a5:24:ff:d6:ed:78:da:e8:
29:88:fd:fd:e2:35:a7:e2:d2:c6:bb:23:e7:e0:7e:36:55:40:
f1:d4:4e:f3:0a:09:51:8a:0f:dc:92:16:39:60:b9:6a:13:ef:
cb:71:f1:99:50:2e:99:a1:90:74:1f:1e:4a:4b:b9:83:6e:fd:
5c:08:fc:85:d4:11:a9:d7:20:28:51:17:ae:fd:59:dc:3d:0a:
26:9f:cf:21:6e:f2:f6:78:a7:bd:44:38:13:12:9e:d7:c4:4f:
3c:bd:f3:5a:45:cf:2b:18:26:9a:2f:45:ed:65:19:06:f1:67:
50:0e:f3:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org