Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/KhDZ202ysZIEx_OuHU29LyiMe5M.roa
File: KhDZ202ysZIEx_OuHU29LyiMe5M.roa (raw, json)
Hash identifier: Bu3AWzUDwN4zEH0akd2LnrFAqX01XcXUQzF9t8jCnLA=
Subject key identifier: 2A:10:D9:DB:4D:B2:B1:92:04:C7:F3:AE:1D:4D:BD:2F:28:8C:7B:93
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018A7BE30E5AD0AC3C6D02D5B3EEBD4C66A4
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/KhDZ202ysZIEx_OuHU29LyiMe5M.roa
Signing time: Sat 09 Sep 2023 21:39:52 +0000
ROA not before: Sat 09 Sep 2023 21:39:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198711
IP address blocks: 193.238.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 17:25:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7b:e3:0e:5a:d0:ac:3c:6d:02:d5:b3:ee:bd:4c:66:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Sep 9 21:39:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a10d9db4db2b19204c7f3ae1d4dbd2f288c7b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:19:07:9a:7a:1b:82:3c:4c:fa:b7:4a:c5:5c:
8e:0f:c3:73:52:c8:cc:13:b4:ab:20:d1:c4:83:10:
f0:e3:3e:55:e0:47:26:bb:69:2d:e2:cf:f4:0a:0c:
b6:ad:df:81:54:2a:02:12:f1:ec:52:40:4e:36:c7:
fa:c0:31:d0:81:cc:4c:5a:52:8f:4d:21:65:3a:ee:
f8:fe:1a:20:df:1b:0e:48:f0:50:81:2a:a0:58:b2:
3b:6c:90:79:55:c5:82:b2:2d:95:1c:c2:44:7f:c9:
d2:8d:9b:b8:ac:dc:26:8e:68:f7:90:16:fb:a7:2a:
46:e1:e8:02:c0:f0:61:a0:27:a6:eb:c4:95:c9:f8:
96:3e:0c:ca:df:2e:15:43:db:ea:75:95:7e:8c:e0:
7e:8e:3d:44:1f:53:e6:61:3e:c3:a5:70:4a:fc:ff:
30:b5:19:fa:3e:20:87:e0:6b:89:df:67:89:61:07:
68:d2:6b:be:fd:07:26:c4:2c:3b:6e:3f:9e:1d:d1:
0c:09:89:cc:cb:5e:28:8d:2f:94:79:8b:92:2e:62:
df:af:73:a5:3f:7b:32:5a:4d:bc:08:f0:d0:94:f3:
03:5b:5c:40:c7:24:89:87:83:ce:e6:d3:47:bc:82:
4b:fe:ce:f5:29:27:b6:3c:84:c3:a5:b8:60:4d:3b:
62:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:10:D9:DB:4D:B2:B1:92:04:C7:F3:AE:1D:4D:BD:2F:28:8C:7B:93
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/KhDZ202ysZIEx_OuHU29LyiMe5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.135.0/24
Signature Algorithm: sha256WithRSAEncryption
62:f6:8d:60:82:0c:af:5e:0b:b5:50:22:ac:b7:87:30:08:f9:
2d:71:97:9c:94:8e:46:a8:e6:8c:ff:36:64:df:8d:41:fd:9e:
62:5d:ca:ea:0a:e0:e4:a7:15:17:f7:63:6c:d4:25:85:7d:c3:
1e:01:6c:13:27:0a:b5:b5:24:28:c8:df:1f:73:c5:9f:69:1f:
7d:f5:6d:f7:bc:b6:55:8e:5a:4f:22:10:2e:1e:9b:58:d7:11:
e0:3a:d5:17:7a:e4:21:06:10:74:45:8c:27:ef:93:3c:3c:80:
6c:07:a2:37:db:ba:8e:b4:e9:1f:8c:b3:25:60:b2:0e:4b:3e:
a0:a4:f3:2d:9c:e7:dd:1a:65:14:b1:27:9b:90:f0:e3:64:37:
d8:8c:46:23:4b:bd:ba:ee:b0:56:a0:e3:a3:bc:01:f6:63:a8:
20:75:3d:b1:ee:ee:62:f1:1b:19:04:c0:66:66:de:3c:13:d5:
3a:e5:fb:fb:f7:45:53:39:da:03:41:9e:00:a7:ec:62:13:44:
20:30:53:0e:e6:4d:58:2f:75:8e:cb:16:8d:98:7a:99:2a:48:
8f:2a:9b:dd:88:24:f8:b1:2e:23:28:cd:ec:1a:98:62:07:09:
c7:56:d9:e0:15:01:6c:a2:e3:34:3a:ee:8f:ca:bc:ab:54:aa:
44:8a:db:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org