Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/oJFUHj_CU-RzZYkISgq-0XUocdk.roa
File: oJFUHj_CU-RzZYkISgq-0XUocdk.roa (raw, json)
Hash identifier: XvAoBtX6ihAIYACM8paDlf8Q/A0oNnJwGZepxcKzf88=
Subject key identifier: A0:91:54:1E:3F:C2:53:E4:73:65:89:08:4A:0A:BE:D1:75:28:71:D9
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 018B15B21B87CACCAB8AD483BEB9293A6510
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/oJFUHj_CU-RzZYkISgq-0XUocdk.roa
Signing time: Mon 09 Oct 2023 18:27:55 +0000
ROA not before: Mon 09 Oct 2023 18:27:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58274
IP address blocks: 193.26.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:15:b2:1b:87:ca:cc:ab:8a:d4:83:be:b9:29:3a:65:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Oct 9 18:27:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a091541e3fc253e4736589084a0abed1752871d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e7:ed:f3:f2:a9:fc:db:a1:ac:0e:65:a1:6a:
2e:41:40:d0:bb:17:6c:49:1d:1e:98:d6:50:0f:dd:
b3:44:f2:2e:d5:89:2e:32:21:8b:5a:d8:99:e3:26:
d8:7e:5c:98:28:98:7f:af:92:a9:8d:55:45:c8:31:
c3:3d:17:eb:80:c7:4e:40:c2:51:36:ed:1d:b0:38:
09:87:a8:2d:3d:39:4c:f1:5c:36:1a:13:16:be:95:
28:af:bb:b6:41:e9:7d:a4:3d:5a:ad:6c:53:3b:70:
b4:26:b8:44:a5:95:99:c0:b7:86:28:13:82:89:69:
9d:e2:1e:71:83:f0:2d:c3:77:ed:f2:74:0d:35:09:
5c:b0:66:94:ac:dd:d2:34:da:de:36:ff:fa:b4:b4:
db:0d:14:c5:27:a2:c1:d2:da:2b:37:31:d8:e5:13:
40:38:8e:98:9b:75:c0:60:77:34:41:9c:6c:b0:3f:
49:10:37:ee:b8:1d:06:95:13:3a:30:3a:3e:ce:cd:
2c:be:eb:07:37:cc:7d:74:61:2a:f8:42:e6:9d:1e:
9e:1c:2c:6b:48:92:52:92:a8:da:8b:16:a2:98:07:
62:67:db:2a:0d:c5:a3:36:41:32:ba:42:66:95:70:
71:4e:96:e5:7f:90:95:2a:2f:6a:39:60:bc:8a:91:
a1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:91:54:1E:3F:C2:53:E4:73:65:89:08:4A:0A:BE:D1:75:28:71:D9
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/oJFUHj_CU-RzZYkISgq-0XUocdk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.3.0/24
Signature Algorithm: sha256WithRSAEncryption
71:48:a1:57:14:dc:dd:a9:14:54:6a:67:22:63:b3:a3:ef:64:
fc:b2:34:39:c8:00:cc:bc:48:5b:e6:04:bd:47:60:8b:9e:fe:
6e:35:fd:fc:57:cd:4d:5a:51:de:79:d2:43:6b:80:b9:ba:c3:
03:f1:be:a6:b0:19:bc:d5:24:82:9b:48:b2:1e:e1:c6:84:92:
f9:c3:8b:a7:48:f8:d5:04:b9:1f:31:64:62:6b:bf:62:ca:6c:
0c:ca:cc:03:ba:91:1b:59:67:6d:56:7c:66:fa:b6:26:65:bc:
d2:ba:5e:d8:0f:3b:ff:69:8f:dc:eb:56:96:0b:10:9b:76:20:
83:c8:2c:a7:72:0e:56:0f:61:74:4c:a5:59:a1:83:1d:c2:dc:
cf:1e:29:b7:92:64:26:73:7e:e8:ab:ff:de:fd:14:f5:db:92:
ed:57:6c:8f:75:b8:07:b0:ad:da:fb:70:8b:35:fb:15:35:15:
2e:01:1d:d2:1a:55:23:0d:81:97:c5:72:32:10:a1:3e:7a:1d:
37:d5:5a:3d:a0:85:df:52:1f:fd:a8:85:30:a1:06:77:a9:8f:
09:53:2f:6c:74:11:28:46:cd:82:7e:19:a4:6b:90:5d:18:fb:
b7:bf:26:d7:d0:f6:6a:ee:16:6a:60:f9:89:e8:0b:d1:01:92:
ac:17:38:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org