Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/508321-2dfa-4253-a3cb-2f926510ffbf/1/OU_nYgR_rUVyp6oPXJ4ktIqIpUQ.roa
File: OU_nYgR_rUVyp6oPXJ4ktIqIpUQ.roa (raw, json)
Hash identifier: tDLzFOGj6QBeoxSUSzu6/nJpO840RgApKuk7feiR0dM=
Subject key identifier: 39:4F:E7:62:04:7F:AD:45:72:A7:AA:0F:5C:9E:24:B4:8A:88:A5:44
Certificate issuer: /CN=e6015f1e2004359cae7656b968adb2a54a434f1e
Certificate serial: 01856EC1F845309A39EBB74F9B47616CAC6C
Authority key identifier: E6:01:5F:1E:20:04:35:9C:AE:76:56:B9:68:AD:B2:A5:4A:43:4F:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5gFfHiAENZyudla5aK2ypUpDTx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/508321-2dfa-4253-a3cb-2f926510ffbf/1/OU_nYgR_rUVyp6oPXJ4ktIqIpUQ.roa
Signing time: Sun 01 Jan 2023 19:14:43 +0000
ROA not before: Sun 01 Jan 2023 19:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47866
IP address blocks: 193.134.212.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c1:f8:45:30:9a:39:eb:b7:4f:9b:47:61:6c:ac:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6015f1e2004359cae7656b968adb2a54a434f1e
Validity
Not Before: Jan 1 19:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=394fe762047fad4572a7aa0f5c9e24b48a88a544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:89:ae:40:b8:5a:49:fa:e5:18:3f:e4:bf:2c:
16:57:30:93:d8:94:fe:23:9e:4a:84:0d:bc:3b:45:
f6:64:a8:20:a4:a0:9b:92:db:35:87:84:eb:f7:2f:
ed:ec:68:78:55:9d:27:b5:66:6a:d4:52:53:95:09:
9d:e1:f3:7a:43:07:87:7c:b0:88:2f:13:5f:29:fc:
aa:3e:ca:80:e0:4c:9e:dd:ea:d6:bd:f9:16:67:e8:
4e:37:1b:83:e9:24:8e:25:c3:4b:34:8c:83:35:67:
a8:5f:80:bf:d7:f4:81:c7:39:59:a8:49:ab:02:f4:
d1:eb:93:e7:44:fe:b5:44:1f:87:3a:e1:7f:57:56:
ee:1f:db:34:35:d5:13:bf:49:82:d1:0f:c7:ff:3c:
7e:e2:2b:c5:c0:5c:36:d9:57:c2:1d:20:ff:8b:c2:
8c:2c:0a:c6:c9:04:6e:e9:3d:7f:68:40:17:13:b6:
89:eb:30:63:61:ba:77:33:3b:fb:7a:5d:73:66:0e:
82:f7:11:e6:39:9b:fd:cf:b1:e6:c8:81:dd:fc:05:
f9:c8:98:2c:df:ce:83:b2:79:13:9e:a2:1e:a7:1f:
c2:ab:ef:fe:ee:61:8d:fa:c7:81:53:29:fd:59:af:
0f:c5:ea:c5:19:fb:19:6e:3b:c9:f8:d3:d8:43:1b:
34:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:4F:E7:62:04:7F:AD:45:72:A7:AA:0F:5C:9E:24:B4:8A:88:A5:44
X509v3 Authority Key Identifier:
keyid:E6:01:5F:1E:20:04:35:9C:AE:76:56:B9:68:AD:B2:A5:4A:43:4F:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5gFfHiAENZyudla5aK2ypUpDTx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/508321-2dfa-4253-a3cb-2f926510ffbf/1/OU_nYgR_rUVyp6oPXJ4ktIqIpUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/508321-2dfa-4253-a3cb-2f926510ffbf/1/5gFfHiAENZyudla5aK2ypUpDTx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.212.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:c9:0c:08:71:30:02:b9:b9:ce:8f:b0:a5:5d:01:c8:25:fa:
b0:f2:40:33:37:c1:c7:ef:54:34:a0:8d:2f:e6:ad:8c:7b:ca:
40:08:3d:6e:86:cb:8f:3a:9a:f6:d8:9e:3a:0e:da:12:98:17:
2b:09:9d:24:c0:1f:01:b5:bd:6a:9d:e8:62:b0:32:9b:5f:a6:
7c:8f:4d:aa:b5:ee:5f:54:58:60:ac:f7:19:ca:ee:7e:e0:98:
9d:b1:07:2d:77:b4:75:ae:57:44:56:29:0d:5b:b8:ac:2c:37:
47:cb:7d:0b:36:0b:4a:11:f8:de:54:1a:a8:59:a9:5c:5e:54:
8e:7b:59:f7:75:9e:ef:ae:30:39:09:2f:f3:df:4a:fa:36:3a:
8c:35:87:33:7e:dd:fb:c3:50:92:b1:bc:e4:ed:68:dc:5e:de:
65:be:22:dd:5f:60:c0:70:85:29:53:4c:f8:6a:13:bb:0d:bb:
32:4e:4c:6f:2e:74:74:d7:4f:95:64:1a:74:cb:bd:af:f9:30:
f1:3a:be:96:43:ca:4e:96:ae:cd:27:07:ae:8b:a0:03:0b:1e:
55:eb:79:2d:cc:aa:70:be:7c:d6:04:6f:19:c6:a8:96:40:dd:
d0:c7:21:9c:c5:14:46:29:97:00:4e:cd:8c:42:4e:1d:75:41:
ef:43:90:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:05 2024 by rpki-client on console-ams.rpki-client.org