Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/ffc448-8e19-47aa-9665-a1e01c63343a/1/s0M7av3z7ig-j-bqhMU0kYPhvYo.roa
File: s0M7av3z7ig-j-bqhMU0kYPhvYo.roa (raw, json)
Hash identifier: j/eIBK2FiAwvKQuPMB6jhXitbIy6IN9WPMV/3YZKxV8=
Subject key identifier: B3:43:3B:6A:FD:F3:EE:28:3E:8F:E6:EA:84:C5:34:91:83:E1:BD:8A
Certificate issuer: /CN=8bce4281a994d52166ef3ff17728bae218855fc4
Certificate serial: 01857079675569D6513514B70C48A92FD0D5
Authority key identifier: 8B:CE:42:81:A9:94:D5:21:66:EF:3F:F1:77:28:BA:E2:18:85:5F:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i85CgamU1SFm7z_xdyi64hiFX8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/ffc448-8e19-47aa-9665-a1e01c63343a/1/s0M7av3z7ig-j-bqhMU0kYPhvYo.roa
Signing time: Mon 02 Jan 2023 03:14:42 +0000
ROA not before: Mon 02 Jan 2023 03:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15600
IP address blocks: 193.8.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:67:55:69:d6:51:35:14:b7:0c:48:a9:2f:d0:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bce4281a994d52166ef3ff17728bae218855fc4
Validity
Not Before: Jan 2 03:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3433b6afdf3ee283e8fe6ea84c5349183e1bd8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:15:53:fc:04:c0:42:4a:0e:e7:c7:1b:b0:4b:
55:d8:7e:69:c0:7f:7a:7a:4e:22:02:47:e2:de:dc:
f4:81:7b:73:88:28:f6:21:28:f4:4d:ff:a1:f0:41:
63:d6:e1:dc:21:53:cf:2c:8e:67:9a:1a:72:9d:32:
bf:36:27:0b:f8:aa:16:b1:23:0d:72:8b:a4:4c:7b:
0f:f2:fc:03:53:68:c0:44:6b:a6:09:24:73:fc:58:
41:6b:77:95:fd:32:0f:63:f1:9f:a7:85:b3:e3:01:
87:57:75:d2:8f:43:f0:7a:39:00:cb:c8:b2:4b:01:
93:7d:3d:24:a9:da:1f:ba:29:89:98:87:50:8d:2a:
55:02:8b:bd:df:a4:ed:c1:23:c6:51:7a:c5:1c:bf:
cf:b2:8e:63:63:23:2a:23:69:13:91:5e:be:59:89:
ac:99:98:92:c2:73:ed:f7:8c:96:78:31:9b:b2:24:
a7:dc:ad:03:93:fa:df:db:3e:31:5c:64:6a:42:8a:
91:53:ac:ef:ca:12:71:65:1f:4d:06:b4:71:5e:a4:
09:35:71:20:d4:be:ba:ae:ec:52:38:62:5f:8a:e2:
f1:db:07:1b:ca:d0:5b:85:b2:4b:f9:d1:76:3f:df:
99:28:c0:48:cb:78:ee:d4:30:07:e9:72:b5:f4:69:
d5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:43:3B:6A:FD:F3:EE:28:3E:8F:E6:EA:84:C5:34:91:83:E1:BD:8A
X509v3 Authority Key Identifier:
keyid:8B:CE:42:81:A9:94:D5:21:66:EF:3F:F1:77:28:BA:E2:18:85:5F:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i85CgamU1SFm7z_xdyi64hiFX8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ffc448-8e19-47aa-9665-a1e01c63343a/1/s0M7av3z7ig-j-bqhMU0kYPhvYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/ffc448-8e19-47aa-9665-a1e01c63343a/1/i85CgamU1SFm7z_xdyi64hiFX8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.165.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:32:a2:79:ab:e6:6b:dd:a2:7b:0c:10:4b:4e:fe:b8:37:39:
6d:a1:f2:b1:7c:05:2f:38:08:25:3a:6f:12:dd:e8:90:50:1e:
a3:4f:bc:d4:cd:45:62:ef:6d:6a:f7:19:75:10:ff:2c:1f:d0:
ce:2d:58:e8:71:dd:2f:79:87:47:a1:c2:35:c5:75:23:e4:25:
fc:d1:19:77:46:11:d0:1a:0c:e3:84:4c:6e:df:4b:88:4c:c1:
d1:2f:50:53:22:ee:ad:f5:7a:16:65:c7:7f:eb:a0:0a:b1:cd:
47:7f:26:53:14:5b:58:22:ad:bc:85:64:7c:00:65:5d:ec:5a:
aa:8a:a2:a8:0b:42:14:a3:ce:36:23:5b:0a:df:5a:da:0b:b4:
ce:87:64:70:b4:28:89:5a:70:10:51:3a:14:1a:52:b1:70:50:
4f:c3:0b:8d:b0:f5:f2:b1:1f:7a:41:c0:93:f2:f4:0f:fc:4a:
b5:79:4e:d3:a0:d4:a5:a4:48:63:3b:eb:b2:68:d9:7e:ef:1f:
c4:c1:fa:6b:2d:76:e0:87:3d:ef:d3:7e:44:f7:31:3d:99:85:
79:fe:b3:58:ee:db:45:fb:ad:f0:44:1d:1d:19:6e:5a:bc:31:
60:74:15:af:dc:ad:2d:70:a1:a8:f3:79:83:72:85:b3:1a:53:
75:dc:6c:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:37 2024 by rpki-client on console-fra.rpki-client.org