Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/z7IJqXtqUFdjJeolITeEeFUrC0U.roa
File: z7IJqXtqUFdjJeolITeEeFUrC0U.roa (raw, json)
Hash identifier: tIn5IkpD1nPjf7JuCx/Jnjr6sPVJvhDvNU9g/hnTFIg=
Subject key identifier: CF:B2:09:A9:7B:6A:50:57:63:25:EA:25:21:37:84:78:55:2B:0B:45
Certificate issuer: /CN=c50e0801823f19d51b962ab6d4ebbbc27dd4ed96
Certificate serial: 018C020E9D687B33D3E9E49A2B212EEAD9E6
Authority key identifier: C5:0E:08:01:82:3F:19:D5:1B:96:2A:B6:D4:EB:BB:C2:7D:D4:ED:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/z7IJqXtqUFdjJeolITeEeFUrC0U.roa
Signing time: Fri 24 Nov 2023 15:59:21 +0000
ROA not before: Fri 24 Nov 2023 15:59:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210917
IP address blocks: 193.30.116.0/24 maxlen: 24
2a13:4b00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 24 Nov 2023 16:21:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:02:0e:9d:68:7b:33:d3:e9:e4:9a:2b:21:2e:ea:d9:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c50e0801823f19d51b962ab6d4ebbbc27dd4ed96
Validity
Not Before: Nov 24 15:59:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfb209a97b6a50576325ea2521378478552b0b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:7d:77:ed:a1:f0:fc:ef:69:d1:d0:06:12:2a:
2e:7e:20:66:1b:f9:b3:75:92:00:92:bd:b4:28:db:
9e:b1:9f:6b:7d:c9:2a:fd:5c:c0:30:de:54:db:58:
5e:1b:a9:4c:78:7b:f2:16:77:15:74:9d:26:0f:69:
63:36:5b:28:48:db:dd:b5:50:e9:6a:7d:0d:dd:bf:
00:6d:ed:c8:c1:8f:18:ab:96:2d:36:70:c4:99:3b:
8d:ac:c0:a2:c7:10:d8:2f:fc:c2:14:25:12:80:18:
e0:7d:0e:0c:a2:3b:b3:cf:8d:af:b6:96:57:09:47:
e2:ab:f5:fe:4b:6e:45:95:9d:07:7b:3e:7e:5b:ff:
f7:d8:66:98:26:f6:e8:68:64:c7:7d:2d:a0:e8:98:
e4:35:f9:49:50:92:f1:f7:d4:11:9b:41:ed:e7:7c:
60:15:95:ba:15:69:76:4e:31:a8:55:f6:5c:08:b5:
7e:c0:73:bf:31:29:da:09:29:07:69:a5:b6:8f:24:
b9:94:67:b9:84:1a:29:6c:e0:5e:80:9d:18:d0:db:
69:6e:a5:42:d2:f1:c5:63:b6:72:d1:17:46:71:f2:
c0:78:32:24:81:72:de:e4:46:d8:bd:49:d6:20:be:
77:5e:09:ab:b1:ff:09:89:22:a6:e3:9e:72:68:4a:
b7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B2:09:A9:7B:6A:50:57:63:25:EA:25:21:37:84:78:55:2B:0B:45
X509v3 Authority Key Identifier:
keyid:C5:0E:08:01:82:3F:19:D5:1B:96:2A:B6:D4:EB:BB:C2:7D:D4:ED:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/z7IJqXtqUFdjJeolITeEeFUrC0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/474f65-fe29-4822-ba14-ce8214cef6b5/1/xQ4IAYI_GdUbliq21Ou7wn3U7ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.116.0/24
IPv6:
2a13:4b00::/29
Signature Algorithm: sha256WithRSAEncryption
08:2c:22:97:9d:2f:d3:4c:1d:04:27:1e:98:b0:dc:bb:58:e8:
82:c4:67:d3:be:44:ef:95:5e:dc:7d:10:e6:25:07:28:ce:be:
5e:c3:ee:87:9f:d4:82:da:7d:21:73:6e:94:ab:5c:4d:6b:d6:
d0:f7:a4:15:ce:4e:cd:b8:aa:d0:f4:43:0d:1b:dc:66:1d:6a:
48:4f:22:5d:8a:27:dd:c9:cb:54:e7:29:b7:0a:67:79:97:ff:
61:1d:83:5c:e6:b5:2a:7d:e1:71:57:76:91:5e:8e:ab:fd:19:
e4:00:3d:68:bb:2a:e2:cb:d5:6f:27:26:72:d1:6e:84:a0:15:
1b:95:0c:85:6b:09:4c:61:5f:ef:5a:24:d1:12:cf:e5:4e:b9:
0a:72:5b:ec:d2:b9:82:40:92:14:a2:ff:f6:42:be:a9:b1:e9:
78:e5:69:12:71:1d:2c:87:b5:2f:5f:e2:60:68:7f:5c:21:f6:
44:e0:4a:6d:fc:e2:bb:84:24:00:a3:c5:e3:6b:36:18:41:8f:
10:1f:59:01:68:07:92:0c:91:2b:81:0a:3d:d6:71:ce:56:fd:
e2:e0:58:e9:a4:52:05:e6:03:3e:b5:b9:24:75:de:ce:c0:a3:
ca:43:2c:67:31:db:40:4f:1b:2e:03:7b:29:f2:2b:fe:9d:f1:
35:03:5a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:53 2024 by rpki-client on console-fra.rpki-client.org