Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/Sn21hXRfPpO5I3Yu-3lTisfdU2E.roa
File: Sn21hXRfPpO5I3Yu-3lTisfdU2E.roa (raw, json)
Hash identifier: 7uPorWrlWUBB2ki9bEtkTZUUhsiCgbx+uxs0CidXTF8=
Subject key identifier: 4A:7D:B5:85:74:5F:3E:93:B9:23:76:2E:FB:79:53:8A:C7:DD:53:61
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 0189CF7D3C30959E21E10DFD72E2DE3F2B45
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/Sn21hXRfPpO5I3Yu-3lTisfdU2E.roa
Signing time: Mon 07 Aug 2023 10:13:58 +0000
ROA not before: Mon 07 Aug 2023 10:13:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 80.93.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 10:43:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cf:7d:3c:30:95:9e:21:e1:0d:fd:72:e2:de:3f:2b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Aug 7 10:13:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a7db585745f3e93b923762efb79538ac7dd5361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d8:50:0a:bc:26:1b:47:6e:d5:23:4f:a9:97:
3d:2a:f4:b4:d1:a3:d9:d2:d3:0e:32:1a:47:29:49:
3b:fd:3a:b7:15:73:e3:4a:01:54:c8:5c:60:c7:8e:
3a:36:5a:2c:81:96:07:08:63:3d:46:ce:31:25:ba:
cc:6a:1d:89:78:a4:78:b9:28:bd:d5:22:fb:88:5c:
15:f3:4a:35:eb:8e:3a:7d:5f:86:cb:5d:d4:28:6d:
d6:d7:fe:5c:cc:dc:95:09:d7:82:22:c6:34:b9:ac:
03:93:81:dc:a0:e9:e3:bc:73:e6:88:d2:45:64:e3:
66:27:b6:65:e6:c4:15:fd:d2:37:32:b7:31:2b:d1:
8a:12:75:a1:e9:15:08:fa:0f:7f:52:ad:5a:60:5a:
6e:86:9f:a4:d4:63:66:73:6e:32:e7:73:74:d8:0e:
01:cf:bf:b6:cc:b7:d0:c0:b3:3f:0e:b8:c6:cb:95:
12:be:eb:8f:78:de:b3:ce:e8:cc:1a:5d:d0:18:ba:
65:d1:9c:14:0d:0e:3d:c4:26:9a:13:68:78:8a:ea:
8f:bd:c5:f9:dc:47:fa:fc:5f:64:23:0f:89:1f:6d:
c3:77:56:d4:8d:e3:00:86:81:4d:4d:dd:d4:3a:ff:
c1:1b:59:1d:2f:02:74:4c:37:40:98:d4:76:b5:3c:
61:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:7D:B5:85:74:5F:3E:93:B9:23:76:2E:FB:79:53:8A:C7:DD:53:61
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/Sn21hXRfPpO5I3Yu-3lTisfdU2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.203.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:f8:c8:98:89:99:82:84:ae:21:bd:1d:ad:ff:cc:64:7e:49:
a8:04:17:8b:dd:95:d4:ef:b2:88:f5:60:51:02:ab:f5:5b:70:
08:e5:d1:64:45:80:96:55:ea:19:63:9a:e7:ba:6d:dd:9b:34:
b1:ef:db:b8:54:4b:87:76:8f:04:4a:29:ad:88:b1:3f:d3:ac:
f3:4b:16:77:d6:db:b9:ba:bf:75:f9:99:d3:a0:14:9f:93:a6:
cf:32:1d:60:5f:ec:a5:ca:75:1c:17:7c:5f:cf:4a:eb:0e:44:
3d:6d:a9:a2:69:ac:0d:50:0b:02:c0:b4:22:a7:4f:32:bb:94:
91:2d:b1:98:5b:0f:56:f6:66:e1:b7:8f:09:ec:fc:49:04:91:
08:85:2f:0c:59:37:fc:4d:c3:8d:96:c4:31:b2:72:3c:dc:12:
e5:b3:d1:6e:20:ca:26:d9:bf:ef:a5:2b:c0:6f:8e:17:7c:b6:
b9:1a:c9:65:48:5a:93:cc:4b:0b:57:86:5f:72:eb:07:92:12:
ae:55:d1:8a:07:fc:70:29:b5:78:42:54:ad:19:17:d4:44:91:
7b:56:e9:53:46:69:5f:19:ed:8b:65:74:13:14:a9:a4:b8:c2:
03:31:b4:b1:8e:d5:96:dc:76:37:d3:15:61:c9:ec:f1:70:10:
53:45:9c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:57 2024 by rpki-client on console-ams.rpki-client.org