Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/f9a891-b818-499a-971c-bc5456962f2d/1/fDULlY7_Gzu66EDiQC4Vywjs9SY.roa
File: fDULlY7_Gzu66EDiQC4Vywjs9SY.roa (raw, json)
Hash identifier: HOdOOaLScOt9eUzUp/t13ykXaI7mFtLk2iW2B1AdYF0=
Subject key identifier: 7C:35:0B:95:8E:FF:1B:3B:BA:E8:40:E2:40:2E:15:CB:08:EC:F5:26
Certificate issuer: /CN=b4bb8aef8b0e6d9c6ff6320807f5a9007598eeb0
Certificate serial: 0187FAD2A8D274EA233BAE80542D966F4CEA
Authority key identifier: B4:BB:8A:EF:8B:0E:6D:9C:6F:F6:32:08:07:F5:A9:00:75:98:EE:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLuK74sObZxv9jIIB_WpAHWY7rA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/f9a891-b818-499a-971c-bc5456962f2d/1/fDULlY7_Gzu66EDiQC4Vywjs9SY.roa
Signing time: Mon 08 May 2023 10:05:22 +0000
ROA not before: Mon 08 May 2023 10:05:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60631
IP address blocks: 193.242.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fa:d2:a8:d2:74:ea:23:3b:ae:80:54:2d:96:6f:4c:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4bb8aef8b0e6d9c6ff6320807f5a9007598eeb0
Validity
Not Before: May 8 10:05:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c350b958eff1b3bbae840e2402e15cb08ecf526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:27:ce:5f:e4:26:61:73:02:58:f1:16:f4:77:
45:b6:79:09:79:15:ee:d3:b9:f6:96:10:9a:f5:8d:
70:94:f9:83:f5:39:5d:e6:7e:30:21:a8:98:82:26:
b1:08:4a:70:41:5b:7c:cd:97:10:98:a0:19:67:b3:
71:f2:20:4e:23:c0:71:71:ae:a4:1d:d3:82:7f:78:
d6:b3:c1:20:b1:4c:59:17:05:22:01:ff:5c:85:bc:
ec:ba:1f:2d:af:66:3e:91:4c:fa:cf:e9:8a:25:a2:
32:2a:0d:57:d0:f8:5b:7c:d9:c5:d7:aa:dd:9e:20:
1f:cc:4b:8b:c3:e7:b8:c5:dc:38:a2:70:1c:e7:ef:
08:5d:57:50:18:5f:e1:46:dc:e6:a7:0b:9e:33:b3:
b2:24:dc:cd:76:20:29:34:77:42:a5:0f:f0:7a:1e:
02:ae:98:62:8c:93:cf:8c:62:bf:05:3b:30:89:66:
62:b5:b4:27:2b:fd:4e:61:dc:1d:43:29:ba:2a:a8:
cd:62:f9:8d:23:d5:58:41:11:0a:b9:a0:9b:46:8b:
05:b8:5c:e5:0a:89:f8:d0:18:d3:16:76:63:78:91:
5a:0c:1e:01:18:1b:33:ff:b3:24:eb:05:48:71:d4:
9a:f9:47:b0:cf:ef:25:7f:86:a4:9a:14:0b:97:71:
3a:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:35:0B:95:8E:FF:1B:3B:BA:E8:40:E2:40:2E:15:CB:08:EC:F5:26
X509v3 Authority Key Identifier:
keyid:B4:BB:8A:EF:8B:0E:6D:9C:6F:F6:32:08:07:F5:A9:00:75:98:EE:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLuK74sObZxv9jIIB_WpAHWY7rA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f9a891-b818-499a-971c-bc5456962f2d/1/fDULlY7_Gzu66EDiQC4Vywjs9SY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/f9a891-b818-499a-971c-bc5456962f2d/1/tLuK74sObZxv9jIIB_WpAHWY7rA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.125.0/24
Signature Algorithm: sha256WithRSAEncryption
48:10:bd:fb:9a:26:01:70:ad:4e:78:9c:74:51:cc:41:98:f6:
23:f8:53:b5:1c:70:10:59:1a:6d:1a:54:a5:12:7f:d3:60:d8:
e1:54:e2:b1:60:92:33:05:9b:48:80:ae:41:e4:e0:3b:cc:62:
44:32:f0:28:5d:3a:20:7c:b3:e6:f9:23:65:6d:b7:30:ba:36:
a0:17:6c:23:46:d6:22:b1:4b:66:30:c4:c6:69:60:59:0c:3e:
b6:97:74:4e:12:ac:ff:1b:b4:f4:20:9c:e0:2f:45:6e:26:fa:
e8:fe:7d:4c:67:58:fb:32:d6:2e:4e:61:99:11:c8:56:c5:37:
ef:e7:4f:05:d3:12:a6:cc:92:55:35:3d:28:74:d8:ec:bb:6b:
df:33:10:07:71:cb:2c:0f:4f:96:e7:43:b0:7e:0d:8d:59:96:
f5:ec:5f:36:00:67:62:59:9b:fc:f3:15:71:d3:32:1a:98:6b:
60:20:f6:ad:ce:22:4a:99:67:00:e5:91:99:bb:85:00:1b:98:
42:90:85:ef:71:58:7a:51:e1:f2:24:20:ee:a1:3d:8a:a0:bf:
79:9e:95:96:39:cd:7a:08:61:7d:a2:bd:b8:19:9b:92:49:9b:
95:17:0c:7a:2a:a5:3c:ac:89:7b:32:96:bf:da:03:9d:e5:b9:
62:a6:44:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:47 2024 by rpki-client on console-fra.rpki-client.org