Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/A2PSiiDl7TsdYUwQ1nDvlyzB_DY.roa
File: A2PSiiDl7TsdYUwQ1nDvlyzB_DY.roa (raw, json)
Hash identifier: soQimK8vdfnTDjI0Qw50PkpGe7xuYY5+wug0Cx+hpsU=
Subject key identifier: 03:63:D2:8A:20:E5:ED:3B:1D:61:4C:10:D6:70:EF:97:2C:C1:FC:36
Certificate issuer: /CN=4b5d45a2abb960d2bce758ece733b126dca7e71b
Certificate serial: 018572CC90FDBF27096E886E356993D472CD
Authority key identifier: 4B:5D:45:A2:AB:B9:60:D2:BC:E7:58:EC:E7:33:B1:26:DC:A7:E7:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S11Foqu5YNK851js5zOxJtyn5xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/A2PSiiDl7TsdYUwQ1nDvlyzB_DY.roa
Signing time: Mon 02 Jan 2023 14:04:47 +0000
ROA not before: Mon 02 Jan 2023 14:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50405
IP address blocks: 193.8.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:90:fd:bf:27:09:6e:88:6e:35:69:93:d4:72:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b5d45a2abb960d2bce758ece733b126dca7e71b
Validity
Not Before: Jan 2 14:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0363d28a20e5ed3b1d614c10d670ef972cc1fc36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:07:56:5a:45:44:e2:6a:b7:1e:a3:9c:08:38:
ad:8a:a0:9d:88:83:c5:72:6e:b5:94:d1:0a:91:08:
2c:f0:f7:23:44:ec:5c:64:fb:18:55:e0:9e:94:ec:
ec:04:0c:ec:fd:97:7d:f6:48:4d:79:62:11:03:5e:
bf:b2:ac:50:f0:81:cd:dc:7a:d3:1d:22:8a:99:b9:
18:58:e4:de:f0:8f:18:a7:5a:1f:20:a3:24:e7:b5:
c9:fa:3a:2b:e0:db:a0:cc:c3:f9:8e:27:35:4f:96:
72:00:bd:f4:07:2e:4e:19:53:61:46:6e:63:04:1e:
df:ba:97:69:ac:dd:fd:89:bb:61:b2:9c:82:4e:27:
47:f5:5e:72:fe:41:10:6e:b8:89:b8:b8:8f:c6:ba:
30:55:14:14:83:45:12:1d:be:e5:7d:10:96:0f:28:
02:f5:a9:41:bc:fb:0e:1f:bc:8a:dd:26:22:d0:23:
e5:49:24:00:2a:67:6a:1d:44:d2:54:e0:f2:bb:cc:
4d:1a:9a:82:42:bf:73:b1:3a:8b:19:cc:6e:b7:ca:
86:a2:4f:60:2b:77:27:c6:40:55:9f:bf:01:7c:0e:
f4:89:89:a6:be:2b:57:ae:7c:b8:bf:63:43:dd:4b:
28:3e:01:72:8c:28:65:da:63:db:4e:31:81:a8:fe:
80:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:63:D2:8A:20:E5:ED:3B:1D:61:4C:10:D6:70:EF:97:2C:C1:FC:36
X509v3 Authority Key Identifier:
keyid:4B:5D:45:A2:AB:B9:60:D2:BC:E7:58:EC:E7:33:B1:26:DC:A7:E7:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S11Foqu5YNK851js5zOxJtyn5xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/A2PSiiDl7TsdYUwQ1nDvlyzB_DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/a905e9-f93b-4d60-8108-810b9f5cc415/1/S11Foqu5YNK851js5zOxJtyn5xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.252.0/24
Signature Algorithm: sha256WithRSAEncryption
85:82:cc:92:bf:da:5f:75:a1:9e:40:3d:67:cd:e5:94:50:1f:
55:17:28:c1:4a:12:00:23:98:7e:2f:b3:4f:74:28:b3:9e:23:
45:0a:79:1c:85:51:4a:02:17:7f:51:05:81:63:9f:f4:a8:d9:
a6:25:de:82:77:1c:ae:5c:92:fa:79:03:9c:54:92:ea:7f:e5:
b8:fd:2a:ee:f7:04:8e:7d:65:d6:b4:aa:88:a2:7c:0a:3c:bb:
dc:e6:f2:ec:e3:01:f9:a8:76:84:01:ce:00:65:4e:e4:2e:ce:
2d:6d:a5:d0:d7:32:16:26:92:60:6d:ac:9b:1a:56:d2:96:a0:
e9:7d:47:0b:a4:e0:d1:13:38:53:49:99:61:51:9c:32:46:7f:
94:ab:1f:df:06:bc:50:74:c8:0b:f4:9d:7f:2d:71:75:ea:a9:
3b:f5:45:43:a1:6b:62:7d:dc:57:6d:3a:42:de:0d:38:87:57:
b2:38:04:48:a8:dc:72:08:25:6f:4d:7e:b7:4f:33:cb:ad:4a:
55:37:84:4d:0a:25:9e:80:f3:16:ce:6d:a3:4d:29:70:f0:47:
57:ae:82:c9:c2:c7:c4:f1:76:35:4c:bb:a4:79:78:d3:b2:7d:
4f:e9:70:99:61:2d:87:49:39:8e:6e:a8:d5:f1:90:5d:61:71:
c0:ce:ba:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:14 2024 by rpki-client on console-fra.rpki-client.org