Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/peUVm89-vAVsj226-Vsntp45r9M.roa
File: peUVm89-vAVsj226-Vsntp45r9M.roa (raw, json)
Hash identifier: Vcv+SHGGiITy+fCos8vy5V5aDVD4Y0DUX/UcypPYqEQ=
Subject key identifier: A5:E5:15:9B:CF:7E:BC:05:6C:8F:6D:BA:F9:5B:27:B6:9E:39:AF:D3
Certificate issuer: /CN=fc9128a762ceeb6b59f5431568bc13fce41aba12
Certificate serial: 018FD2D9D5594BD7215F951C7175BDEE970B
Authority key identifier: FC:91:28:A7:62:CE:EB:6B:59:F5:43:15:68:BC:13:FC:E4:1A:BA:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/peUVm89-vAVsj226-Vsntp45r9M.roa
Signing time: Sat 01 Jun 2024 08:10:42 +0000
ROA not before: Sat 01 Jun 2024 08:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48108
IP address blocks: 193.8.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Sep 2024 11:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:d2:d9:d5:59:4b:d7:21:5f:95:1c:71:75:bd:ee:97:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc9128a762ceeb6b59f5431568bc13fce41aba12
Validity
Not Before: Jun 1 08:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5e5159bcf7ebc056c8f6dbaf95b27b69e39afd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6a:8b:4f:e1:18:2b:2a:b2:6d:ad:f1:ca:83:
02:75:8c:6c:4c:80:93:f0:df:62:44:b5:52:d9:80:
6e:a2:2f:6a:83:31:c5:da:48:f5:d2:8e:80:79:f1:
c7:e3:33:4e:97:e0:41:5c:7e:a4:e7:29:32:be:22:
18:ca:3d:94:0a:41:2b:59:e7:ca:c1:78:46:d0:18:
b3:6e:82:ef:d4:49:ba:c2:21:a5:62:d8:ec:17:97:
c8:ff:78:17:88:e8:d9:07:a4:88:d2:12:7e:4b:e4:
6c:bf:b9:b8:93:06:65:42:a2:ec:ec:de:08:3b:33:
71:8c:a9:80:ae:94:8d:9f:21:6d:81:91:c1:c0:24:
16:a7:22:22:a0:95:6e:dc:77:1e:25:50:ba:9b:92:
fb:f3:26:12:91:5f:62:4d:9a:04:62:10:00:40:8b:
5b:4a:80:2f:74:87:e3:3f:81:cf:08:2a:35:e8:32:
36:45:a7:29:c3:62:5c:64:74:a5:06:a1:24:cc:48:
4e:76:31:c9:23:55:c2:79:7e:62:0b:d7:a7:97:c4:
46:b8:ad:11:a0:6f:58:10:15:50:af:7d:1b:5d:8e:
da:f9:8c:64:f8:ea:4d:c6:7a:b6:29:e8:10:30:99:
bc:81:69:f6:81:3f:76:a0:48:ec:9d:75:06:d5:63:
18:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E5:15:9B:CF:7E:BC:05:6C:8F:6D:BA:F9:5B:27:B6:9E:39:AF:D3
X509v3 Authority Key Identifier:
keyid:FC:91:28:A7:62:CE:EB:6B:59:F5:43:15:68:BC:13:FC:E4:1A:BA:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_JEop2LO62tZ9UMVaLwT_OQauhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/peUVm89-vAVsj226-Vsntp45r9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/21e68c-1c4c-4559-9e30-135d709b59e0/1/_JEop2LO62tZ9UMVaLwT_OQauhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.201.0/24
Signature Algorithm: sha256WithRSAEncryption
37:3b:78:a7:59:83:da:3e:ce:6a:b3:ec:77:e5:20:4b:1d:82:
60:ce:be:68:b8:12:5b:3d:fd:f2:c2:a2:8d:8a:43:87:17:c8:
1f:d8:29:a9:d3:d1:94:52:a7:20:3a:1c:45:3b:85:93:b3:cf:
bc:f3:f1:e2:8a:09:e0:16:04:55:41:2b:a4:a8:8b:03:8f:b8:
f2:a9:21:85:30:06:93:9d:e5:7b:9a:b7:5f:aa:27:b0:ae:ad:
28:39:ed:f9:e6:93:73:c5:28:ee:34:bb:f1:c6:31:10:88:fd:
ec:da:58:34:a3:7c:bc:66:d7:f9:78:8f:e6:23:7b:1d:64:b2:
02:1a:6d:7b:fe:18:67:d0:5a:99:f6:37:d7:29:b6:9d:2f:f0:
93:40:57:5a:ed:9d:e8:2e:2f:e1:7a:3e:a1:61:3f:e9:2b:8d:
a3:91:d6:5b:28:fd:48:a8:51:d0:d6:82:a3:62:0c:2b:29:bc:
3c:bf:fa:83:5c:46:59:0a:47:72:20:ba:de:6f:11:92:26:b7:
83:9a:04:86:6e:dd:33:d8:13:c8:3a:f7:aa:e4:58:2e:ee:c8:
16:8b:11:05:6c:6b:23:0c:db:63:cb:75:1f:9d:50:5e:1d:d7:
8f:c9:d6:4d:0b:12:bb:f0:2a:26:7c:ae:a1:71:48:3b:ee:2b:
bd:8f:de:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 16 16:37:21 2024 by rpki-client on console-fra.rpki-client.org