Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/siAgKRVQeinZRfywu0z6hWM-1ds.roa
File: siAgKRVQeinZRfywu0z6hWM-1ds.roa (raw, json)
Hash identifier: JyLmil1vjYvks88KFlrH7N85Q+QVi9bjnTeNgcn3mH0=
Subject key identifier: B2:20:20:29:15:50:7A:29:D9:45:FC:B0:BB:4C:FA:85:63:3E:D5:DB
Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Certificate serial: 0190B037067B7B725B41CB93E8ECF7CB62B0
Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/siAgKRVQeinZRfywu0z6hWM-1ds.roa
Signing time: Sun 14 Jul 2024 07:48:34 +0000
ROA not before: Sun 14 Jul 2024 07:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51396
IP address blocks: 193.68.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 08:37:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b0:37:06:7b:7b:72:5b:41:cb:93:e8:ec:f7:cb:62:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9
Validity
Not Before: Jul 14 07:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b220202915507a29d945fcb0bb4cfa85633ed5db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:96:90:71:48:75:35:91:63:77:0f:55:f0:84:
66:a0:98:24:c6:17:5e:ce:06:58:6a:ca:53:be:6a:
50:54:24:0b:7a:24:3b:af:1f:91:9b:57:a2:c0:db:
ef:f0:50:04:0b:86:d2:de:13:66:83:51:25:57:b4:
ce:2b:38:f7:8a:3d:76:05:b8:31:c8:b4:66:d1:b8:
6f:a9:bc:80:89:6c:4f:75:6d:3d:28:ca:39:1a:c6:
ec:53:65:7c:be:27:0e:e9:e1:e1:be:f4:ad:eb:4d:
e4:3e:6e:33:8f:37:11:a1:58:0c:26:e3:e3:d4:8c:
e8:6c:42:4f:4b:ea:aa:74:24:ce:dc:7c:01:f9:8a:
d8:50:51:0a:a2:5c:a6:53:a8:99:d8:36:3a:7c:69:
8e:77:77:ae:27:44:09:6e:f2:fb:02:1e:25:be:71:
72:1b:c8:5a:e6:7d:d6:34:b7:44:91:b5:d7:a3:df:
43:c1:fa:dd:c4:ca:e2:58:42:f7:07:1a:2c:a7:af:
53:e7:96:2a:74:8a:3a:69:09:1c:f2:44:dd:77:8d:
2e:df:3e:61:35:85:19:63:1c:91:16:d3:40:4a:c7:
63:3d:17:6c:96:ed:00:b2:5d:80:2c:f0:3f:62:4c:
15:a2:90:a1:a8:20:7c:bf:aa:25:d3:3b:13:2d:c2:
76:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:20:20:29:15:50:7A:29:D9:45:FC:B0:BB:4C:FA:85:63:3E:D5:DB
X509v3 Authority Key Identifier:
keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/siAgKRVQeinZRfywu0z6hWM-1ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.68.88.0/24
Signature Algorithm: sha256WithRSAEncryption
57:b0:72:c8:f8:2b:02:68:5e:ad:e1:94:32:6a:bf:85:ea:46:
69:f5:3d:70:a3:2e:2c:a6:9b:1c:e4:e1:17:ee:0c:f0:11:41:
f7:77:b2:13:c0:d6:b4:83:d9:1a:5f:41:4f:43:bc:65:87:bb:
3e:d9:5c:47:98:15:59:63:f3:cc:99:e2:69:08:3c:2b:68:67:
e5:de:24:6a:6b:ec:28:83:96:28:ec:62:c4:8a:fb:8d:46:8e:
8b:ee:94:40:f3:13:7b:e5:80:87:86:c2:1d:94:37:2e:cd:97:
36:e8:40:14:b5:2f:c0:b0:0a:94:6f:55:38:52:f9:1a:51:61:
5e:04:25:e5:e5:8c:b8:50:6a:aa:d0:92:97:09:56:3f:7d:5f:
e7:2f:4a:30:f8:5d:e5:bb:6a:9f:6b:ed:d3:3c:04:f6:e1:61:
3b:be:29:95:0e:37:93:af:fa:fc:17:fa:1a:a1:f9:97:d4:d2:
f8:b1:03:91:5b:be:bd:0a:bb:be:48:ac:50:4f:a4:24:8f:af:
98:f2:6d:1a:d3:5a:b9:4d:e9:06:c6:54:5d:ab:f6:2e:ae:be:
65:91:45:e3:3a:e0:f4:49:42:27:30:d6:dd:75:27:83:49:e1:
5e:59:1b:9c:f4:8b:20:f7:28:f2:dd:84:59:51:b9:f2:52:a3:
33:64:07:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 12:52:53 2024 by rpki-client on console-ams.rpki-client.org