Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/5ddd92-41d6-469f-896c-e0c966c15d5f/1/lsBlyEig4tb_jYiLSI1f-7RRKXQ.roa
File: lsBlyEig4tb_jYiLSI1f-7RRKXQ.roa (raw, json)
Hash identifier: 3NSbsX95bEPSr0Dubrufd/TIUSeovjMNvbAGo6a98Sg=
Subject key identifier: 96:C0:65:C8:48:A0:E2:D6:FF:8D:88:8B:48:8D:5F:FB:B4:51:29:74
Certificate issuer: /CN=1be36fcfb047b8c653ffa327fc2ca51169e947a4
Certificate serial: 01856EAFDAD1A9C9327815DB871F23EE7714
Authority key identifier: 1B:E3:6F:CF:B0:47:B8:C6:53:FF:A3:27:FC:2C:A5:11:69:E9:47:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-Nvz7BHuMZT_6Mn_CylEWnpR6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/5ddd92-41d6-469f-896c-e0c966c15d5f/1/lsBlyEig4tb_jYiLSI1f-7RRKXQ.roa
Signing time: Sun 01 Jan 2023 18:54:56 +0000
ROA not before: Sun 01 Jan 2023 18:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201579
IP address blocks: 193.138.195.0/24 maxlen: 24
2a13:2480::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 03 Feb 2023 14:41:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:da:d1:a9:c9:32:78:15:db:87:1f:23:ee:77:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1be36fcfb047b8c653ffa327fc2ca51169e947a4
Validity
Not Before: Jan 1 18:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96c065c848a0e2d6ff8d888b488d5ffbb4512974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:12:d6:54:7c:a5:f7:6d:bb:a2:3e:e6:2f:32:
01:d3:70:35:a2:3c:00:7f:d6:30:0e:27:95:2a:59:
d9:2f:b7:e1:e3:f1:79:c2:96:97:9e:1c:3d:06:15:
1f:74:d7:19:83:8c:69:64:61:16:a3:30:56:bf:8a:
ee:32:84:7a:77:a9:5b:e1:3f:de:dd:a5:fd:19:76:
bc:2b:5c:11:a7:a1:f5:bc:19:53:a8:31:f5:f4:f9:
4d:45:e0:f4:aa:7e:b6:8b:d5:21:6e:e3:d3:3a:c7:
37:21:a3:c9:12:7c:f8:d9:14:41:85:14:8d:25:f5:
66:33:c5:66:74:56:e0:02:15:c8:d2:77:7f:32:90:
33:4d:66:7f:c6:9b:1e:fe:d6:9e:d7:7e:86:0c:fb:
5f:9f:a3:2c:e6:f6:fe:7d:99:b0:a8:a8:da:42:05:
80:11:8c:a0:53:84:a3:c1:bc:e6:22:d8:da:a7:90:
4a:e0:9c:15:6a:69:14:10:8a:4b:25:b6:ba:e2:d2:
1c:79:a2:8f:6e:64:e2:6a:80:84:bd:5f:47:30:92:
b2:63:40:9e:2e:9c:e4:94:cd:85:87:48:e9:9e:03:
89:38:80:41:fc:bc:6a:55:e8:33:d7:49:a7:7c:d7:
57:73:5a:d9:92:67:2d:63:6a:83:ef:63:33:24:25:
89:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C0:65:C8:48:A0:E2:D6:FF:8D:88:8B:48:8D:5F:FB:B4:51:29:74
X509v3 Authority Key Identifier:
keyid:1B:E3:6F:CF:B0:47:B8:C6:53:FF:A3:27:FC:2C:A5:11:69:E9:47:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-Nvz7BHuMZT_6Mn_CylEWnpR6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5ddd92-41d6-469f-896c-e0c966c15d5f/1/lsBlyEig4tb_jYiLSI1f-7RRKXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/5ddd92-41d6-469f-896c-e0c966c15d5f/1/G-Nvz7BHuMZT_6Mn_CylEWnpR6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.195.0/24
IPv6:
2a13:2480::/29
Signature Algorithm: sha256WithRSAEncryption
15:00:1b:2b:eb:d2:91:f2:59:b6:ec:b8:a0:72:67:1c:a1:6c:
67:be:b7:bf:95:97:c5:75:35:f8:95:13:2e:da:39:38:93:0e:
b2:65:10:b8:a6:69:20:3a:29:34:25:e6:cc:cb:32:27:91:35:
9c:6d:60:1c:37:80:02:80:54:ce:35:3d:d8:ae:b2:f8:77:c9:
93:42:5f:6e:65:11:01:45:ac:f2:31:12:50:aa:33:2c:b3:5f:
50:ac:fa:79:9e:d3:fd:44:ec:70:bd:ba:4b:0a:4b:8c:cc:5f:
78:72:d0:f7:02:90:a0:73:3e:e8:9a:3f:58:03:0c:4c:3e:87:
de:0b:14:d5:11:4d:58:2e:53:be:cb:39:83:47:79:48:47:ce:
1d:01:dc:9c:ff:19:32:b7:06:3c:60:35:87:42:83:2e:ce:d3:
a1:df:9d:ec:ee:e8:92:ab:a1:8a:46:c4:e2:7a:ba:33:9d:5a:
e6:f9:99:0b:87:29:14:e1:22:55:5c:61:15:9a:c2:5f:0b:11:
6c:8a:a0:d4:47:1e:c7:ae:bd:2a:95:79:33:7d:f5:67:ac:bf:
ac:c4:d6:26:36:e5:82:d6:c0:10:3a:b9:75:7c:af:71:a5:af:
72:02:51:4a:36:2e:da:d8:0a:02:df:cf:3e:a5:de:78:80:c0:
86:fd:a2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org