Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/70yOLGh2Btrd_A4k5fphOfGpFRA.roa
File: 70yOLGh2Btrd_A4k5fphOfGpFRA.roa (raw, json)
Hash identifier: 6pHvc8SuL3oGm+Mizl7p6lJZoKZIspfWq0hZZ50+2zo=
Subject key identifier: EF:4C:8E:2C:68:76:06:DA:DD:FC:0E:24:E5:FA:61:39:F1:A9:15:10
Certificate issuer: /CN=4813b9c5fe8315807d7856cd230003aa16741c0d
Certificate serial: 01856E8B2C4E151D19D4DAFDDC96FC2CE5E8
Authority key identifier: 48:13:B9:C5:FE:83:15:80:7D:78:56:CD:23:00:03:AA:16:74:1C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SBO5xf6DFYB9eFbNIwADqhZ0HA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/70yOLGh2Btrd_A4k5fphOfGpFRA.roa
Signing time: Sun 01 Jan 2023 18:14:52 +0000
ROA not before: Sun 01 Jan 2023 18:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49244
IP address blocks: 193.203.104.0/24 maxlen: 32
2a12:c080::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:2c:4e:15:1d:19:d4:da:fd:dc:96:fc:2c:e5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4813b9c5fe8315807d7856cd230003aa16741c0d
Validity
Not Before: Jan 1 18:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef4c8e2c687606daddfc0e24e5fa6139f1a91510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e8:7d:ee:50:a4:12:75:90:34:73:2d:97:e8:
2e:52:44:c2:cf:d3:4d:7e:52:54:53:9c:61:7d:e3:
80:3d:ee:ac:dd:2f:7c:f2:d0:78:f9:a0:bb:60:17:
da:c4:a1:c4:a9:79:71:19:57:d7:fb:89:60:46:dc:
ef:37:28:4a:89:f3:62:db:72:f7:67:2a:af:37:01:
a6:05:f4:72:44:d3:69:e8:54:d8:22:59:18:32:e6:
8f:52:89:78:fa:68:63:ef:02:8c:28:8d:69:32:22:
f5:49:b6:25:0e:18:69:25:f9:6b:60:21:5b:c6:2f:
b0:a9:76:0d:ed:fc:47:77:1e:dc:86:83:a6:b9:c6:
08:2a:7b:46:a9:cc:5e:6f:6d:94:19:11:f7:96:46:
27:85:7b:af:a1:64:6e:eb:47:c1:0d:e5:33:7d:f7:
d4:db:dd:0b:9d:bc:08:eb:b4:4d:99:f1:98:52:f6:
ad:4b:12:b1:cc:a5:c2:05:bc:b8:82:7d:c8:49:0e:
c8:ae:37:fb:f4:e0:0e:cb:d9:08:04:a6:b8:82:9d:
c9:ac:dd:c1:54:49:4a:fd:9c:e8:aa:8a:cf:ee:75:
aa:4e:85:01:62:aa:bc:95:70:31:20:55:fa:6d:0d:
ef:6c:36:35:b6:9f:78:2e:84:2c:49:4d:ff:23:78:
80:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4C:8E:2C:68:76:06:DA:DD:FC:0E:24:E5:FA:61:39:F1:A9:15:10
X509v3 Authority Key Identifier:
keyid:48:13:B9:C5:FE:83:15:80:7D:78:56:CD:23:00:03:AA:16:74:1C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SBO5xf6DFYB9eFbNIwADqhZ0HA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/70yOLGh2Btrd_A4k5fphOfGpFRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/8f41a4-e140-4f65-80e6-28170ac02b32/1/SBO5xf6DFYB9eFbNIwADqhZ0HA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.104.0/24
IPv6:
2a12:c080::/29
Signature Algorithm: sha256WithRSAEncryption
85:e6:f1:37:01:24:f5:4f:a5:9c:bc:ce:0f:18:9d:20:39:4f:
a0:e7:5c:77:25:8e:a6:bd:e8:ec:e6:22:a4:6a:dd:40:31:2a:
48:9d:5d:68:54:34:cb:aa:dc:06:f3:c6:16:09:36:a5:0d:55:
6f:04:c1:13:e5:fd:5e:a5:37:49:51:a2:15:ce:c1:c6:06:c9:
a3:93:30:ab:da:43:bd:38:b1:85:a9:82:24:a4:7c:ae:a4:10:
e3:b0:ad:89:a3:b0:3a:bd:35:01:06:33:83:05:34:67:14:a3:
ea:f7:4b:3e:c9:fe:b5:95:be:34:56:4c:2b:5a:61:23:a2:d2:
f6:77:2f:fc:a2:b5:dc:08:0f:56:f4:a8:f7:cb:35:b3:d4:d1:
5f:1b:9c:ef:02:1a:39:47:36:8d:a6:ad:2e:f9:90:aa:0a:b5:
bc:15:78:b1:4c:96:d6:ce:c1:7c:c1:b1:aa:3e:5b:77:3d:5f:
eb:85:ea:36:c6:82:ab:06:9c:08:41:c0:28:41:95:b8:76:9a:
8c:50:ca:6d:3b:1b:45:80:6b:ae:e8:e8:b3:40:b9:5f:37:b4:
1e:c2:7e:b2:f1:cc:f8:80:1f:f0:4a:20:1f:a3:7a:b6:35:1d:
79:43:23:20:98:cf:eb:51:c2:c4:8c:32:fa:06:65:a2:9d:28:
6b:31:ad:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:35 2024 by rpki-client on console-fra.rpki-client.org