Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/EPVFvFmYkCtS2fgZHyJ-I4054rY.roa
File: EPVFvFmYkCtS2fgZHyJ-I4054rY.roa (raw, json)
Hash identifier: 9N5akfAXHTm6jthu3o74COfUyYIBqmu4eweTvoWW6e4=
Subject key identifier: 10:F5:45:BC:59:98:90:2B:52:D9:F8:19:1F:22:7E:23:8D:39:E2:B6
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 018CC802F70131FDAED14C39D2A44AF0C1E7
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/EPVFvFmYkCtS2fgZHyJ-I4054rY.roa
Signing time: Tue 02 Jan 2024 02:31:26 +0000
ROA not before: Tue 02 Jan 2024 02:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57829
IP address blocks: 193.234.1.0/24 maxlen: 24
194.14.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 09:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:02:f7:01:31:fd:ae:d1:4c:39:d2:a4:4a:f0:c1:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 02:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10f545bc5998902b52d9f8191f227e238d39e2b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b1:0b:19:ed:ce:2d:18:e2:f9:48:a3:67:f8:
c8:18:3e:c5:f6:70:bc:2d:c6:63:1b:90:1f:88:7d:
98:68:c2:74:4e:f4:b9:e5:76:20:e6:59:1e:f1:91:
57:c5:87:c5:9a:38:45:58:11:34:b1:60:d7:ca:79:
aa:ae:7b:e3:17:fb:8d:d2:35:c4:98:31:af:29:ad:
ac:cc:d8:50:c0:83:47:36:6a:7d:5e:c0:a4:77:4f:
ae:fc:9d:e3:ba:dc:d7:4d:b0:bc:f9:4e:65:46:d8:
79:be:af:b9:83:bd:d7:d7:73:b8:c7:5a:8f:a2:7b:
7c:4d:89:65:d9:80:98:a8:31:bf:02:c4:7b:aa:5f:
f1:f8:57:33:59:3b:95:c8:fe:7f:d3:9e:0d:a8:03:
cb:51:26:ab:ab:39:af:fa:cd:52:91:2b:27:d4:e6:
bf:89:e3:1f:60:e4:86:02:a3:dd:70:20:db:03:1f:
e7:37:43:d5:c7:bc:f3:ae:d3:0a:55:b8:45:51:7f:
25:fd:d4:ed:67:33:88:52:0b:d1:fe:27:f2:53:1c:
a4:de:52:90:e9:48:8e:3f:15:83:7a:49:85:7f:7b:
ab:56:50:01:61:90:fa:50:c3:d4:59:78:f0:1e:ee:
f0:84:94:44:78:2c:2c:d9:b4:20:a4:60:9e:3f:32:
4a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F5:45:BC:59:98:90:2B:52:D9:F8:19:1F:22:7E:23:8D:39:E2:B6
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/EPVFvFmYkCtS2fgZHyJ-I4054rY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.234.1.0/24
194.14.195.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:dd:f5:48:06:cd:29:50:38:eb:55:35:72:3d:e8:49:df:72:
3b:a1:4d:7f:f3:4c:f6:1c:79:3c:51:16:77:60:61:37:66:e6:
99:a9:9e:58:96:0d:9c:f1:f3:07:b0:d0:c0:cd:76:df:9a:13:
f0:ec:4e:e3:65:0c:e1:5b:8a:4d:65:72:3f:ab:05:ac:74:3a:
1a:dd:85:77:a0:1e:ca:6a:ab:6a:09:72:3e:e4:16:2b:fa:13:
c8:99:c5:cd:72:2d:df:db:36:98:7c:88:62:35:72:60:ef:49:
6f:76:32:47:fe:df:c0:5a:72:54:0b:01:0a:35:63:4e:fa:c5:
31:4f:a1:6d:29:d8:6e:96:e7:3e:f0:46:eb:ac:b6:e2:50:f7:
7e:18:91:c9:bb:3a:95:f1:35:9f:9a:83:58:a3:35:39:cb:92:
95:cc:35:e4:c7:6c:19:b7:39:71:20:52:9b:af:c4:4a:e5:5f:
ce:ae:10:b6:c6:7a:6d:9c:5d:69:1a:0c:b0:68:c2:ba:66:d0:
f2:7a:dc:0b:e2:6d:21:f8:90:13:53:54:f7:b8:2c:96:94:ee:
3c:79:fc:bf:c8:63:d4:f8:13:71:87:07:e6:1d:50:e4:b9:aa:
e7:71:ca:50:43:6b:cd:9c:52:60:e8:46:3b:ce:4e:c6:51:43:
f9:64:c8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 11 12:38:59 2024 by rpki-client on console-ams.rpki-client.org