Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6ImipQO2f_M32ifoMTEpFCt03I4.roa
File: 6ImipQO2f_M32ifoMTEpFCt03I4.roa (raw, json)
Hash identifier: 6Ei2HcL5lUsIwbtYm3vgvAqL0q7q/USwJ8eroM0jfHg=
Subject key identifier: E8:89:A2:A5:03:B6:7F:F3:37:DA:27:E8:31:31:29:14:2B:74:DC:8E
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0189543A91879865F3E8F0BD6F31750D2609
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6ImipQO2f_M32ifoMTEpFCt03I4.roa
Signing time: Fri 14 Jul 2023 11:47:51 +0000
ROA not before: Fri 14 Jul 2023 11:47:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 193.58.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:3a:91:87:98:65:f3:e8:f0:bd:6f:31:75:0d:26:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 14 11:47:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e889a2a503b67ff337da27e8313129142b74dc8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:01:13:8a:4a:1b:d9:2c:50:7e:0c:3f:31:e7:
a1:e6:4d:13:68:ef:d7:e0:f2:a2:ab:e3:60:1e:36:
f8:cc:27:78:00:bb:34:3f:a6:a8:4b:08:50:60:5e:
39:94:8c:ff:25:ce:87:be:23:fb:96:b6:4b:92:59:
f1:93:33:18:88:e1:d1:f3:39:19:8a:54:1a:f6:7d:
c9:74:cb:5f:75:98:ae:4e:ab:b7:e4:16:78:59:77:
ce:e2:21:2b:c7:21:64:8b:09:ae:8a:85:3c:08:c5:
41:b1:0b:a3:a4:a5:b1:fb:cf:56:a3:46:4f:ee:cd:
d2:15:7c:46:4e:4f:3e:33:00:48:5e:da:b5:57:1a:
d6:7b:c8:a4:a4:7d:bf:e3:07:91:9b:ad:24:55:d1:
a2:02:d5:d0:6d:09:9c:31:9a:dd:9d:3e:e5:15:e8:
cc:4a:03:e6:a3:9d:7e:73:91:64:ef:2f:4a:f9:68:
9f:b3:41:ce:20:eb:c6:81:f5:7e:6b:db:60:9a:32:
cd:e4:81:d4:48:94:ac:5b:dc:5f:59:a3:04:cc:24:
d5:6c:53:53:6c:e9:e3:ff:a7:9a:ee:a1:6e:ed:9d:
ad:25:3a:0a:6b:74:0c:12:1d:c4:36:b3:2a:a0:b7:
4b:ae:63:6f:1a:70:f4:a3:ce:7e:24:20:c0:58:27:
9a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:89:A2:A5:03:B6:7F:F3:37:DA:27:E8:31:31:29:14:2B:74:DC:8E
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/6ImipQO2f_M32ifoMTEpFCt03I4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.145.0/24
Signature Algorithm: sha256WithRSAEncryption
77:4d:e7:a0:6c:67:c3:aa:69:98:9d:86:0f:f3:0a:ed:5d:94:
f9:01:0d:5e:7e:83:1c:1a:a5:00:b8:62:15:45:39:11:12:d3:
f5:4c:b7:cc:27:05:07:44:91:7a:b5:0d:b0:61:6d:b1:fd:6b:
bc:52:a7:c5:9d:92:23:e1:0c:25:d1:9b:2c:92:71:9e:73:90:
01:a8:8e:00:9a:20:6c:60:ad:9c:cc:f7:c4:08:65:ea:7e:1e:
fc:3a:50:a8:fd:c3:c8:10:c2:ba:d3:0f:c9:17:6d:ec:78:44:
a5:cb:e6:0e:95:55:44:f7:23:28:b9:e7:18:04:e9:8d:d1:e5:
5b:12:05:64:26:7a:14:29:e0:29:55:cb:61:fc:42:39:a5:ef:
4d:2a:2a:2f:e8:33:c7:bd:5d:0e:00:59:42:fc:df:59:89:19:
f9:43:6f:2a:3a:03:96:c2:65:20:cc:16:87:7c:dd:f1:d0:01:
0a:7d:ad:51:37:1b:3b:05:09:0a:da:12:bf:ab:aa:21:db:a7:
b6:1b:ff:14:94:96:50:1f:0b:8b:a0:fe:c1:59:84:03:e9:c9:
8d:77:39:9c:ac:0a:23:a8:88:56:ac:d3:c4:8c:00:f4:05:6f:
6d:4c:b5:70:4e:25:65:94:61:18:96:15:47:64:c9:e6:4c:56:
12:79:38:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org