Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/l0llij0gLjpxaM39lXj-9HbK7ns.roa
File: l0llij0gLjpxaM39lXj-9HbK7ns.roa (raw, json)
Hash identifier: hfXcuuNAF3w6PHaPn4mNK8KeZEpJh4c0z1PLO8Icc4Q=
Subject key identifier: 97:49:65:8A:3D:20:2E:3A:71:68:CD:FD:95:78:FE:F4:76:CA:EE:7B
Certificate issuer: /CN=75af4e2c34780f3d9f51e80a53bac3be6f325943
Certificate serial: 018571F0EA15478C45CED6FED9D3A9F2D04D
Authority key identifier: 75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/l0llij0gLjpxaM39lXj-9HbK7ns.roa
Signing time: Mon 02 Jan 2023 10:04:52 +0000
ROA not before: Mon 02 Jan 2023 10:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210553
IP address blocks: 193.3.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f0:ea:15:47:8c:45:ce:d6:fe:d9:d3:a9:f2:d0:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75af4e2c34780f3d9f51e80a53bac3be6f325943
Validity
Not Before: Jan 2 10:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9749658a3d202e3a7168cdfd9578fef476caee7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e3:90:dd:7f:06:67:c7:ec:e0:f7:e3:67:24:
92:83:71:09:df:5b:8f:48:ed:b2:23:05:f9:26:93:
dd:24:b4:14:9b:c4:ad:29:69:c6:8a:c1:36:e5:19:
40:73:5f:b4:e0:54:3e:55:8b:1f:66:52:3a:ed:78:
f1:a0:14:48:6f:59:98:9a:9d:dc:b8:5a:e7:7f:f1:
8c:5d:75:fc:aa:3e:56:0b:44:53:8f:f8:ce:75:7f:
52:8c:b5:82:6e:97:0b:07:eb:0d:86:11:80:0d:f1:
e3:dd:49:95:9c:b3:34:b0:f4:27:40:7c:4d:18:9c:
e6:78:db:24:be:0d:c3:11:1c:8f:67:6f:e7:b7:5e:
57:17:45:08:f8:48:51:39:e1:4a:91:bd:ce:9e:9f:
7d:65:46:53:74:ce:cc:48:b4:4f:a0:32:d5:44:7f:
96:e7:81:e4:4d:24:c4:17:5b:9b:b9:76:32:2f:ec:
f9:96:09:8a:83:9f:2e:ca:ca:2d:07:2c:40:bd:ca:
af:bf:21:eb:dd:47:5e:40:ff:9c:13:fe:d3:86:f4:
42:9c:b4:e6:2d:74:66:cc:09:1d:94:79:6b:0f:82:
44:36:de:e1:6c:b8:01:bd:94:37:ad:51:e0:20:6c:
70:8f:2c:a5:b4:29:14:15:d8:77:0e:53:71:a6:bd:
5e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:49:65:8A:3D:20:2E:3A:71:68:CD:FD:95:78:FE:F4:76:CA:EE:7B
X509v3 Authority Key Identifier:
keyid:75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/l0llij0gLjpxaM39lXj-9HbK7ns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.185.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:6c:7f:8d:0f:c1:2a:a8:2f:52:32:fb:73:f9:e1:5b:ad:4c:
77:aa:09:fb:61:02:ab:f2:06:49:85:bb:76:a6:cf:7e:06:53:
c8:fc:2b:10:96:42:df:81:4d:a4:12:1f:e7:40:95:c0:54:77:
f8:6b:00:48:46:c8:4f:0c:1e:78:00:4f:5b:e9:40:9b:22:d6:
ad:d6:05:49:20:bc:b6:47:c0:c0:cf:ec:70:69:8c:eb:41:4e:
f8:76:cc:31:a8:07:56:ed:e8:51:98:f2:3a:e4:e1:f2:10:ac:
59:cd:7b:66:1d:9d:9c:01:b7:d6:46:df:1b:da:eb:0f:25:9c:
95:a9:db:4f:8f:be:0a:95:3a:ef:47:7a:c4:ce:10:41:c5:6d:
94:a8:65:ff:d4:49:8b:a8:43:dc:dc:fb:ea:0c:cc:ef:06:28:
cc:b6:b4:b1:94:8f:ef:8a:96:89:31:61:93:5a:09:de:4f:60:
27:12:03:5f:20:49:a9:83:de:d6:97:62:0e:e6:fd:24:3f:4f:
04:05:5f:fc:e6:63:39:dd:d2:df:e0:fd:18:3f:49:2c:6b:db:
96:fa:3e:d8:d4:6b:74:3d:dc:41:a9:e1:cd:1b:4c:6c:c8:b7:
7c:27:34:fc:6a:f0:1c:47:92:5c:4f:f1:d7:6a:86:e2:32:90:
e2:4d:90:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:17 2024 by rpki-client on console-ams.rpki-client.org