Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/aTKLZHs5a5rk1gQyd1O4JaDmvJo.roa
File: aTKLZHs5a5rk1gQyd1O4JaDmvJo.roa (raw, json)
Hash identifier: WLVRzX32oT0xFij2tRw4ivKLLMi4wJBqp4Ff/5RJZno=
Subject key identifier: 69:32:8B:64:7B:39:6B:9A:E4:D6:04:32:77:53:B8:25:A0:E6:BC:9A
Certificate issuer: /CN=712f9cb3c298b150beb79080376f74bdeac438ac
Certificate serial: 018CC64A8BAA1F99F05D2A73B11319EBC78F
Authority key identifier: 71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/aTKLZHs5a5rk1gQyd1O4JaDmvJo.roa
Signing time: Mon 01 Jan 2024 18:30:23 +0000
ROA not before: Mon 01 Jan 2024 18:30:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213110
IP address blocks: 193.169.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 17:59:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4a:8b:aa:1f:99:f0:5d:2a:73:b1:13:19:eb:c7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712f9cb3c298b150beb79080376f74bdeac438ac
Validity
Not Before: Jan 1 18:30:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69328b647b396b9ae4d604327753b825a0e6bc9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:ad:fe:e9:4c:1b:ea:58:bd:38:e7:24:a0:
77:40:21:ea:75:3d:f1:a2:7b:85:94:68:1d:65:55:
b9:f2:61:b2:0b:eb:97:65:2c:be:b7:94:b6:7d:38:
ea:64:35:2a:29:2b:c6:52:67:fa:1c:8a:41:e4:26:
ad:06:3f:44:a8:d4:b1:d3:e5:11:93:7f:8c:bc:8a:
64:56:1b:79:4f:68:39:4a:39:74:d5:57:dd:6f:6b:
57:6e:97:05:5d:f4:55:57:6e:1c:79:b8:89:5c:bb:
1f:a0:63:96:7c:2e:9b:16:2c:c3:91:03:19:88:7e:
13:1e:ae:7e:ca:8a:66:3e:f2:c1:bd:6e:6b:15:99:
fd:d1:cd:51:c6:39:6c:30:23:94:13:57:b9:af:cf:
3d:4d:01:72:dc:c9:95:26:db:43:8d:c4:7c:a5:91:
57:a7:e7:01:10:3c:5e:14:67:2e:02:df:5d:84:1b:
f8:f0:8a:7b:aa:b3:67:b7:b5:19:b9:fa:fd:02:b9:
f8:69:9e:f2:ad:84:9a:2f:f6:e6:b5:f8:4f:d2:1d:
26:9a:ac:e3:8f:da:98:8e:1c:7c:30:c1:0c:b7:e9:
7b:a9:d5:56:99:fd:2b:4f:b0:e0:47:0d:98:62:c8:
ad:79:4a:c9:d0:a9:fd:26:8c:4f:82:82:a2:29:53:
8f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:32:8B:64:7B:39:6B:9A:E4:D6:04:32:77:53:B8:25:A0:E6:BC:9A
X509v3 Authority Key Identifier:
keyid:71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/aTKLZHs5a5rk1gQyd1O4JaDmvJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.46.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:a7:22:e1:5c:6d:3b:b7:bf:52:44:da:0c:df:4b:0d:32:95:
f2:2c:46:56:19:b2:e5:13:3a:6a:06:46:2f:b4:b0:9b:79:5c:
e3:fc:1c:b9:07:d2:62:be:19:54:e5:6c:3d:45:18:32:f3:93:
ee:a7:a4:ad:10:60:bf:ec:73:14:df:c7:60:e7:be:64:f7:af:
79:8c:11:08:a5:d4:39:73:d2:cd:38:66:81:f2:77:ca:05:ff:
ad:37:8d:8a:66:4b:82:08:a9:00:b7:39:e5:b8:d7:1d:f9:0e:
01:a6:31:ce:09:af:0b:c7:f3:a0:a5:52:ac:bd:30:1c:fe:8d:
a9:ed:9c:8d:78:fe:51:8f:1c:2e:92:25:9d:dd:81:dd:a7:f5:
57:79:d4:f0:2c:dd:d4:65:eb:6b:21:d7:d0:b4:1e:3d:25:25:
b8:7d:3c:df:ad:21:aa:1a:c4:19:96:32:04:55:0c:d2:55:52:
c6:a1:1c:50:19:bf:fc:38:d4:15:67:11:bd:bd:4e:49:0a:22:
25:a4:ff:7e:50:1e:17:7e:05:2c:5f:39:fc:ee:8e:ba:f6:af:
15:e4:54:a2:c3:ce:b3:8f:21:97:ee:fc:df:06:d1:e3:66:65:
d7:c8:b8:0b:eb:05:5d:e0:a0:48:11:e4:6d:44:26:19:df:41:
d6:8c:c3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 20:43:18 2024 by rpki-client on console-fra.rpki-client.org