Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/9565goyaN9gE5Z2EzpEgc1XOh_Y.roa
File: 9565goyaN9gE5Z2EzpEgc1XOh_Y.roa (raw, json)
Hash identifier: u5umkjM8ayS2KfpGqLTlvhD/9djssPqZR8UmphHQcLA=
Subject key identifier: F7:9E:B9:82:8C:9A:37:D8:04:E5:9D:84:CE:91:20:73:55:CE:87:F6
Certificate issuer: /CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Certificate serial: 01856D5D1DE062BEAA230E8B599ABDA06965
Authority key identifier: B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/9565goyaN9gE5Z2EzpEgc1XOh_Y.roa
Signing time: Sun 01 Jan 2023 12:44:56 +0000
ROA not before: Sun 01 Jan 2023 12:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15375
IP address blocks: 193.108.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:1d:e0:62:be:aa:23:0e:8b:59:9a:bd:a0:69:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Validity
Not Before: Jan 1 12:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f79eb9828c9a37d804e59d84ce91207355ce87f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:d3:41:8c:36:9e:94:c3:25:08:75:41:d7:
58:44:a0:5d:71:69:df:b4:03:d0:81:4e:fd:d0:f3:
d4:5c:92:ae:ba:36:e8:95:3a:6d:1d:b7:84:77:e0:
92:41:a6:eb:e9:31:da:66:95:0d:31:2a:92:41:29:
d1:ac:7a:03:37:7b:ae:6a:61:6a:8d:63:4d:40:80:
b9:52:4a:ba:57:d6:c9:35:ec:4c:4d:7f:35:ae:1d:
17:04:6d:5a:37:0d:0b:1e:8d:31:84:2d:d4:29:2d:
52:28:01:60:f4:31:05:24:d7:48:2f:26:a3:87:7b:
8f:32:0e:43:e6:85:d8:13:9e:7b:c4:2d:d2:4b:43:
9c:3f:d7:56:d7:c2:64:12:c3:4d:a2:b0:92:fb:70:
ea:99:ae:56:59:74:8b:76:f4:60:e3:6c:22:24:88:
ae:7c:76:30:48:5b:71:8f:55:e5:d1:e3:61:28:ef:
02:e3:6d:d7:6e:72:90:f9:d0:3b:93:2f:89:75:6f:
72:9a:31:84:08:96:d1:3e:72:5c:08:80:dc:18:ce:
fa:2a:f5:f3:0d:d4:53:c9:e0:41:a5:34:58:d4:c7:
0f:c8:77:3c:4c:ea:a8:03:ae:d9:18:bc:0e:e1:31:
7b:d9:92:ac:1e:c3:23:a9:5a:56:46:e1:46:3c:51:
b9:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:9E:B9:82:8C:9A:37:D8:04:E5:9D:84:CE:91:20:73:55:CE:87:F6
X509v3 Authority Key Identifier:
keyid:B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/9565goyaN9gE5Z2EzpEgc1XOh_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/tTuhjVzrjnlMgTnOAqeRuFAYJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.159.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:30:63:68:0d:0b:b8:04:81:54:6f:e1:d9:f6:28:7f:6f:ca:
9a:a0:18:3c:d8:b6:9f:f9:c0:70:bf:0b:5b:75:36:40:a2:ff:
b5:e8:c4:b3:de:ff:a6:15:d3:80:fa:fe:6e:41:f1:21:94:98:
a6:28:ba:39:0f:cb:ae:d7:6f:a0:2c:32:11:fa:27:00:95:65:
8e:70:6c:5f:60:b9:bf:6d:27:35:e3:ec:ad:3c:5c:31:b0:aa:
11:18:fe:fb:0f:fc:15:c4:a8:82:72:4f:5a:af:11:f1:70:c0:
aa:88:f7:af:16:f3:cd:bb:a1:2c:91:f5:80:c9:58:5b:d3:b3:
f4:39:64:31:2d:a4:93:90:79:de:57:2f:93:d8:bd:76:4d:28:
5e:2b:24:8f:62:8d:e1:14:da:41:5d:27:1a:ba:a4:69:fa:ac:
5e:4f:c5:03:ce:91:3a:38:f3:7e:9a:d0:aa:16:89:d0:df:71:
2c:ba:ee:71:ef:b9:17:14:4a:33:22:a6:f7:da:90:77:ea:2c:
38:6c:52:1e:1f:be:24:b4:5d:8d:fc:3b:1e:be:47:a9:c3:53:
e3:70:16:30:ba:75:97:27:91:f4:d8:73:c6:7b:6c:d6:2e:03:
c0:bf:40:7b:be:6a:f6:a2:da:be:15:60:90:91:80:60:57:72:
c0:dd:cd:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:31 2024 by rpki-client on console-ams.rpki-client.org