Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/Vp91mUEe34ptqJ83pW5pHMG2aQY.roa
File: Vp91mUEe34ptqJ83pW5pHMG2aQY.roa (raw, json)
Hash identifier: pOdEPaBIjqdN+TFeMzs+96hrRfsQQYbj3NRph+SrRig=
Subject key identifier: 56:9F:75:99:41:1E:DF:8A:6D:A8:9F:37:A5:6E:69:1C:C1:B6:69:06
Certificate issuer: /CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Certificate serial: 018BCAF3F730403DFE9CD023A5B5A4570E89
Authority key identifier: 1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/Vp91mUEe34ptqJ83pW5pHMG2aQY.roa
Signing time: Mon 13 Nov 2023 23:11:08 +0000
ROA not before: Mon 13 Nov 2023 23:11:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42856
IP address blocks: 193.200.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ca:f3:f7:30:40:3d:fe:9c:d0:23:a5:b5:a4:57:0e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e63a47ecbfcfaa9f6cfece2614c70e8b5adb83e
Validity
Not Before: Nov 13 23:11:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=569f7599411edf8a6da89f37a56e691cc1b66906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b0:73:35:51:a3:3a:76:13:5b:ed:e4:36:7a:
9f:b8:ba:ce:65:01:0c:57:6f:a8:30:64:27:b0:a0:
64:f0:c2:2a:12:41:ba:9b:59:9c:10:ed:92:a3:a8:
89:b9:35:f5:3c:45:16:94:e0:df:19:43:23:09:0f:
96:13:71:77:d4:23:0a:05:e9:94:11:24:15:b4:b8:
14:9c:7f:d4:4b:79:0a:00:64:11:05:b3:42:0d:64:
d3:e4:27:ef:bf:69:28:e8:78:ee:74:29:89:ef:4e:
02:b7:66:77:01:c9:3f:23:29:6a:13:23:ab:04:00:
ca:dd:83:1c:9a:b6:6c:49:5d:77:4e:6d:14:6d:94:
c9:a4:8b:ea:cc:15:2f:d0:66:95:17:94:d4:03:3d:
08:21:08:0e:cf:c9:a9:0d:d3:b0:5b:2e:5b:9c:96:
2b:c1:1d:2e:54:2e:dc:bd:db:31:85:1d:48:e0:5a:
ac:dc:66:75:b1:fc:92:15:20:af:03:e2:d7:36:9b:
b9:2d:43:ec:b7:74:0d:27:78:07:8c:4f:c9:cd:04:
e1:23:a9:81:f1:6c:55:20:4a:c1:f7:38:e0:30:37:
0d:83:b8:a6:1a:b4:37:60:34:f3:a4:4b:47:68:73:
d2:98:7a:91:48:f8:88:07:cf:b7:0c:d3:05:64:71:
8f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:9F:75:99:41:1E:DF:8A:6D:A8:9F:37:A5:6E:69:1C:C1:B6:69:06
X509v3 Authority Key Identifier:
keyid:1E:63:A4:7E:CB:FC:FA:A9:F6:CF:EC:E2:61:4C:70:E8:B5:AD:B8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HmOkfsv8-qn2z-ziYUxw6LWtuD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/Vp91mUEe34ptqJ83pW5pHMG2aQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4a96be-fbeb-4580-8baa-355b5cd5d971/1/HmOkfsv8-qn2z-ziYUxw6LWtuD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.137.0/24
Signature Algorithm: sha256WithRSAEncryption
56:1a:58:72:17:59:78:2b:4d:51:ae:8f:1f:76:3f:02:85:b2:
75:56:38:07:fb:71:a1:a6:fa:31:02:64:ee:66:26:17:86:b6:
96:ee:ad:44:34:fe:8c:43:ab:f0:dd:57:d8:f4:7c:72:9e:65:
3f:d4:d7:d5:41:9f:25:47:72:f2:5d:f1:42:61:95:5e:c9:25:
24:6f:dc:23:3c:e9:02:6f:a8:30:4e:37:36:5c:4c:ff:84:1a:
c9:f2:78:69:e2:ad:60:bc:6b:34:a9:7a:38:6c:94:53:51:e7:
ca:5d:21:27:64:21:74:ce:10:f7:8c:52:0f:d7:fa:6d:b1:74:
d9:7f:29:3d:42:49:d4:5a:51:29:db:9a:67:12:5a:c1:04:ea:
88:4e:c3:e5:26:88:80:87:79:7d:34:9b:6c:52:37:d7:14:e2:
48:45:61:44:8e:b4:10:ff:30:fa:57:0d:b9:85:81:a7:c6:b0:
cb:9e:ed:33:20:ee:4e:89:1f:03:6b:14:96:64:ad:67:8a:97:
f6:43:45:b8:ea:d7:fc:88:ea:0d:ed:a1:f1:40:ee:70:5f:23:
88:11:13:ee:93:16:9d:1a:21:0b:85:05:70:f6:f5:cf:71:71:
ed:31:e4:5c:57:80:06:ae:e4:31:37:c0:ae:8a:55:b2:4c:53:
85:8b:05:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:29 2024 by rpki-client on console-fra.rpki-client.org