Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/P9hYSB_Tv5ojKK393-QxuXDp-pU.roa
File: P9hYSB_Tv5ojKK393-QxuXDp-pU.roa (raw, json)
Hash identifier: tP64VDohXY/rffpC1lEZCR/4xxXJdEL3gkdb8XmEkVg=
Subject key identifier: 3F:D8:58:48:1F:D3:BF:9A:23:28:AD:FD:DF:E4:31:B9:70:E9:FA:95
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018798B5768BBE7B87D148D42C31B2C99E35
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/P9hYSB_Tv5ojKK393-QxuXDp-pU.roa
Signing time: Wed 19 Apr 2023 08:50:41 +0000
ROA not before: Wed 19 Apr 2023 08:50:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 193.58.146.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 10:09:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:b5:76:8b:be:7b:87:d1:48:d4:2c:31:b2:c9:9e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 19 08:50:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fd858481fd3bf9a2328adfddfe431b970e9fa95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:51:16:93:70:4c:ba:47:38:82:ec:90:93:a9:
ea:57:4e:c9:46:83:3d:57:a5:e9:b9:c2:48:75:b1:
7f:1e:46:c3:7b:62:63:f5:1b:b1:65:c8:7f:58:95:
cf:04:e9:42:73:77:50:8e:95:89:6a:dd:58:ee:0a:
ca:5b:6a:9d:03:55:47:2b:5a:54:1e:6f:48:02:f0:
3e:7a:ac:a7:e3:39:af:6d:fb:cc:f6:22:2f:1d:b5:
32:bb:c9:88:c7:a9:33:fc:12:f2:f9:40:6a:bc:a8:
45:07:ea:d6:fd:25:bd:6b:03:eb:bf:d9:9a:3c:bd:
82:2c:23:a3:2b:db:e1:0b:06:6b:65:62:71:0b:59:
ff:dc:27:de:17:3f:14:78:4d:df:56:35:a2:8c:b3:
0e:ed:1d:56:82:37:43:98:34:e2:85:fe:24:11:9b:
dd:93:08:a5:bf:8a:97:1f:fb:a8:e1:d2:05:60:24:
dc:cf:0b:85:22:0d:50:7e:48:a4:dc:07:f7:0d:81:
42:71:4f:1c:d1:cc:96:80:13:53:c1:c2:ce:65:95:
6a:94:f1:71:80:6d:00:d3:8e:9e:5f:b4:62:19:ca:
16:9b:6d:20:40:3f:3c:ae:c0:35:d9:3f:f5:5b:2e:
1d:11:2a:24:da:f7:ea:78:b7:a2:01:20:2e:65:bd:
76:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D8:58:48:1F:D3:BF:9A:23:28:AD:FD:DF:E4:31:B9:70:E9:FA:95
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/P9hYSB_Tv5ojKK393-QxuXDp-pU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.146.0/23
Signature Algorithm: sha256WithRSAEncryption
95:86:71:50:70:19:9d:bc:4d:2f:41:d3:0f:d9:77:10:36:f8:
64:82:11:47:21:a4:56:60:5d:46:e9:28:aa:83:8b:34:30:f9:
9e:be:82:a8:f6:bb:df:95:3f:c6:cb:d6:4a:c2:92:7a:0f:78:
ce:eb:8a:44:ef:dc:55:62:e7:28:7f:99:21:3e:16:00:f0:11:
f3:cc:6e:c7:b7:9e:9b:84:ce:be:44:18:7d:2a:d1:44:26:7e:
2d:81:35:97:a6:0f:0e:25:a3:42:4b:52:b5:8e:bf:90:3c:3c:
50:1b:a5:d6:76:ee:a6:0b:a6:35:f1:32:60:9a:4a:14:65:e0:
67:b6:3d:a4:6c:29:b0:7c:5e:0f:69:ae:42:55:79:68:d5:ff:
af:26:4a:3e:d9:67:2c:64:65:00:33:79:bf:86:6a:09:60:04:
71:7e:6b:92:8f:b2:ca:a3:96:ec:a3:03:c5:82:11:2a:27:a8:
7f:b1:be:03:89:d7:c7:98:b4:59:98:7c:ad:02:0e:0f:ff:57:
a1:ae:20:cc:56:71:8e:6a:2b:1b:46:81:2e:9e:39:71:be:11:
9e:ca:e8:37:69:e4:37:2c:1e:1f:00:34:f0:ee:46:2f:c3:58:
6c:6a:02:0c:d0:34:79:94:39:4a:bd:78:63:fc:ee:0e:ac:6c:
bd:27:76:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:22 2024 by rpki-client on console-ams.rpki-client.org