Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/0aS7IYyoyj5wHqTKU6MHQxd__kQ.roa
File: 0aS7IYyoyj5wHqTKU6MHQxd__kQ.roa (raw, json)
Hash identifier: Oi6n5dYpK9eGTFj2E8q3fgcPGxCIcdB3TQD8iHW7KG0=
Subject key identifier: D1:A4:BB:21:8C:A8:CA:3E:70:1E:A4:CA:53:A3:07:43:17:7F:FE:44
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0186840573DAE92E0400A85711EBA25F4430
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/0aS7IYyoyj5wHqTKU6MHQxd__kQ.roa
Signing time: Fri 24 Feb 2023 15:23:14 +0000
ROA not before: Fri 24 Feb 2023 15:23:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210135
IP address blocks: 193.32.189.0/24 maxlen: 24
92.63.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:84:05:73:da:e9:2e:04:00:a8:57:11:eb:a2:5f:44:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Feb 24 15:23:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1a4bb218ca8ca3e701ea4ca53a30743177ffe44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:22:18:bf:e1:f3:f5:18:da:a2:6f:cd:46:0a:
89:d9:13:77:05:5a:47:fd:3f:94:5e:9e:d2:4d:53:
20:22:73:78:4d:ab:8a:c5:04:a6:e7:b8:83:03:db:
80:ee:66:7c:95:87:e0:53:7a:de:21:ac:ee:50:b0:
7c:22:83:d9:c8:1f:c0:d5:1d:dd:00:84:f2:79:0a:
64:dc:63:c3:0a:8a:9a:23:17:c5:66:5a:1b:23:cf:
45:c4:98:2b:2c:25:01:1d:03:70:ce:fc:e5:ed:8c:
48:dc:9b:06:54:5a:65:7e:04:b7:84:29:cb:71:e0:
5a:94:71:03:50:77:a4:04:a9:35:7f:d5:24:2d:fd:
71:3d:4a:b7:41:9c:08:ae:93:59:f1:62:f7:7d:28:
3f:c6:4f:58:97:f1:94:38:7a:02:4a:f3:e3:75:c7:
eb:13:02:07:bb:87:f0:4e:cc:79:e6:e6:e6:70:76:
57:7c:75:12:6b:e6:e9:ca:d8:35:7c:1b:21:bf:3d:
c6:7e:55:2b:f7:f3:23:14:85:25:cc:55:89:79:82:
e4:ee:ef:ff:9e:33:7b:d2:25:f5:0b:a6:90:af:7e:
d4:b1:0a:0d:f5:e6:ef:a6:81:6b:f5:31:a0:57:9f:
19:08:f9:d3:e5:d5:e8:42:73:8c:86:e0:a8:ac:02:
c7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A4:BB:21:8C:A8:CA:3E:70:1E:A4:CA:53:A3:07:43:17:7F:FE:44
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/0aS7IYyoyj5wHqTKU6MHQxd__kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.63.188.0/24
193.32.189.0/24
Signature Algorithm: sha256WithRSAEncryption
21:58:55:28:0e:e9:d7:f6:2a:54:de:6e:f4:78:fe:b8:56:a8:
3c:02:e4:d8:e6:05:29:a1:94:f9:35:d5:35:33:be:f0:e0:37:
89:fe:61:39:77:3e:87:27:d1:53:b4:00:0a:3b:24:52:ad:c6:
f2:d4:ef:ee:0d:b1:89:ce:2c:2b:3e:d5:cd:d7:7b:b1:97:59:
aa:2d:be:52:c8:9d:01:65:35:7e:11:13:13:29:6f:23:05:8b:
a7:73:a1:0a:86:e0:c8:31:6d:80:bd:e1:e4:86:6c:b1:54:5e:
17:72:cc:60:d0:64:7f:4c:9f:1d:f8:d9:87:49:95:0f:1d:1f:
5b:15:a8:fc:77:bc:04:b1:89:4a:94:f5:ba:1b:93:75:55:05:
28:91:2a:46:b8:62:d0:f9:4d:3c:19:a7:18:e4:2b:7f:a3:82:
6f:43:36:9d:66:27:7e:9f:9c:1f:1d:b8:35:85:6a:bd:69:f6:
fc:44:26:c5:5f:1d:9b:05:1a:69:04:b0:57:92:47:80:1f:8e:
bd:56:f7:b6:62:aa:d1:86:66:6c:8e:48:73:81:53:69:f2:11:
1c:f8:03:4d:ad:00:56:87:db:28:dc:1f:d5:8d:21:ba:8c:67:
2b:dd:0c:9c:72:d2:aa:bf:d6:bc:bf:5d:62:bb:e8:20:9d:4a:
58:5d:97:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org