Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/99CpSiGR6wTnTVnTJwm1RyGHJe4.roa
File: 99CpSiGR6wTnTVnTJwm1RyGHJe4.roa (raw, json)
Hash identifier: F7cgvMwshEx8OriXHgZ+rdcpbfUS4Rga526PaCFhT34=
Subject key identifier: F7:D0:A9:4A:21:91:EB:04:E7:4D:59:D3:27:09:B5:47:21:87:25:EE
Certificate issuer: /CN=82c78627794e87ff9718db1b0df7eee2edb33595
Certificate serial: 01856D4AD8AD33D7A8D0FE30FC0D32897425
Authority key identifier: 82:C7:86:27:79:4E:87:FF:97:18:DB:1B:0D:F7:EE:E2:ED:B3:35:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gseGJ3lOh_-XGNsbDffu4u2zNZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/99CpSiGR6wTnTVnTJwm1RyGHJe4.roa
Signing time: Sun 01 Jan 2023 12:24:59 +0000
ROA not before: Sun 01 Jan 2023 12:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 193.8.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d8:ad:33:d7:a8:d0:fe:30:fc:0d:32:89:74:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82c78627794e87ff9718db1b0df7eee2edb33595
Validity
Not Before: Jan 1 12:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7d0a94a2191eb04e74d59d32709b547218725ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:28:fe:da:16:c0:e1:c7:f3:97:8b:e2:b3:14:
5e:8b:eb:ae:e3:d3:6a:bf:6e:c5:c1:3b:82:e5:df:
07:94:a4:7d:b1:93:b9:27:51:b6:a3:f0:4d:55:a5:
cc:41:2b:5e:5b:6a:ba:2c:b7:48:65:21:e3:46:d0:
0c:c8:57:53:7e:5b:f7:fe:a1:1a:2b:75:df:11:c8:
37:38:7e:c2:10:ca:77:af:ad:a7:6b:62:b0:69:17:
fe:aa:a1:ff:d2:bc:ce:f3:74:ed:19:e4:84:cf:0b:
cc:1d:87:38:4f:ad:cf:f0:bd:6f:64:2c:4f:b5:7d:
6c:c3:31:21:f0:73:84:b4:57:63:e1:4a:46:a5:45:
4f:cb:99:a8:9e:8a:52:43:7f:b0:5a:26:85:f8:54:
91:15:05:11:3e:f2:6a:2b:9c:cf:84:8e:6f:9e:f9:
6e:b5:df:16:78:8a:e5:b8:19:f1:82:3f:fb:c7:cb:
3c:78:a1:53:fc:b3:a8:d4:c9:6a:bf:4a:ad:47:ca:
74:b1:60:4a:01:3e:94:13:5b:d2:4c:93:d0:ef:a3:
9c:2f:b9:8c:5b:f1:77:c3:d9:a6:95:21:6c:5b:a0:
51:3e:1e:36:61:04:ef:cb:9e:1c:51:34:b0:9b:72:
9d:ea:fa:8a:6f:df:85:5f:08:dc:05:f6:a2:42:4a:
11:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D0:A9:4A:21:91:EB:04:E7:4D:59:D3:27:09:B5:47:21:87:25:EE
X509v3 Authority Key Identifier:
keyid:82:C7:86:27:79:4E:87:FF:97:18:DB:1B:0D:F7:EE:E2:ED:B3:35:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gseGJ3lOh_-XGNsbDffu4u2zNZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/99CpSiGR6wTnTVnTJwm1RyGHJe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/gseGJ3lOh_-XGNsbDffu4u2zNZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.145.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:b3:f8:57:70:e8:5f:c3:2c:ad:08:0c:d1:2b:21:95:47:1a:
34:48:8f:6a:e9:dd:c4:e2:fd:89:62:ea:9c:e5:22:7c:e9:e4:
7c:05:06:6d:85:4d:d3:0f:4b:38:bd:f9:2f:b1:09:f3:74:71:
fb:d7:fb:f3:43:e0:6c:2c:7e:a3:96:0c:c2:93:9c:b7:74:0c:
83:9a:9e:34:af:2e:77:5e:f0:be:58:59:27:00:52:7c:f9:e4:
ed:31:e2:b8:2b:14:11:17:10:b2:50:e8:62:bc:c2:b0:c9:c0:
f6:ab:c4:ee:7b:12:c2:78:89:4f:bf:ee:19:91:dd:7b:5a:21:
d6:b7:01:c9:0d:36:12:64:b7:1f:07:33:c9:3d:64:09:3d:5f:
0d:3c:55:c3:22:90:07:3d:cd:01:2d:57:a3:29:bd:c4:2b:dc:
b1:b5:41:de:4a:5d:1a:47:e4:cb:65:1f:10:01:02:ad:6c:bb:
99:b8:f3:1f:ef:8e:cc:f7:fa:07:9d:52:21:a0:9d:4f:ae:51:
ad:c8:65:fa:9a:66:a1:e1:ac:6c:d9:43:cd:c0:39:3a:43:07:
d7:b1:a0:ad:8e:20:4b:47:70:1f:db:23:22:59:a8:9e:f1:74:
7b:a5:81:ca:c9:12:83:31:99:a5:74:1f:db:ab:fb:69:c8:d7:
3b:21:49:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:08 2024 by rpki-client on console-ams.rpki-client.org