Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/12d07e-57a1-4530-bb02-2fe29782d47d/1/ih6NgBybSjzUdYjNkol3XbF-Gvc.roa
File: ih6NgBybSjzUdYjNkol3XbF-Gvc.roa (raw, json)
Hash identifier: NTeICJFs5u7zeJdvFTYCw/MQb80/0PkkhQL+7GVfu4U=
Subject key identifier: 8A:1E:8D:80:1C:9B:4A:3C:D4:75:88:CD:92:89:77:5D:B1:7E:1A:F7
Certificate issuer: /CN=4de43a56cbf6afe4356896e0dff529c1796944b4
Certificate serial: 01891FD3A29055D1A39BE42E8E04BD7E08C5
Authority key identifier: 4D:E4:3A:56:CB:F6:AF:E4:35:68:96:E0:DF:F5:29:C1:79:69:44:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TeQ6Vsv2r-Q1aJbg3_UpwXlpRLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/12d07e-57a1-4530-bb02-2fe29782d47d/1/ih6NgBybSjzUdYjNkol3XbF-Gvc.roa
Signing time: Tue 04 Jul 2023 07:35:10 +0000
ROA not before: Tue 04 Jul 2023 07:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213241
IP address blocks: 193.109.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1f:d3:a2:90:55:d1:a3:9b:e4:2e:8e:04:bd:7e:08:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4de43a56cbf6afe4356896e0dff529c1796944b4
Validity
Not Before: Jul 4 07:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a1e8d801c9b4a3cd47588cd9289775db17e1af7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5c:59:62:f2:8d:39:39:b0:72:05:03:9c:94:
10:ef:19:b3:b8:6a:6d:5b:17:3b:8e:63:1b:db:a3:
5a:f6:ea:b8:31:2c:c5:7f:fd:01:5e:60:eb:06:c4:
61:06:fe:9b:53:61:ba:51:be:7f:e6:8d:5d:9a:c5:
de:77:3b:a9:ca:99:d5:90:18:64:79:14:44:49:8d:
0f:d1:ae:1d:7c:93:2e:10:c2:b9:5f:2a:f5:37:e9:
88:41:70:50:de:9a:f2:d2:ad:c9:1d:eb:26:fb:8c:
62:65:21:c0:f1:cf:48:cd:e0:43:e7:3e:14:68:f5:
a4:c5:e3:2f:b6:0c:96:fa:4b:2d:0d:75:3f:59:29:
02:31:f8:b2:6d:e3:14:16:47:29:d8:da:52:9b:fa:
dc:e0:2e:24:60:65:33:c3:08:10:7e:e7:b6:b7:7f:
c1:25:d3:5c:57:83:aa:ad:52:f6:ea:a9:c8:1a:87:
87:95:24:26:a6:ea:0a:e4:15:6b:eb:86:ef:f1:20:
37:20:09:d6:8a:5c:84:81:3d:81:d8:8f:53:a0:e6:
da:ca:bd:d4:41:ca:83:c6:1b:59:34:76:e2:ca:fc:
91:4a:67:52:43:16:fa:99:a2:6c:fb:86:3a:b8:5c:
19:8b:a0:0d:9d:f7:c0:f3:60:e7:c8:e5:9e:8f:51:
ff:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:1E:8D:80:1C:9B:4A:3C:D4:75:88:CD:92:89:77:5D:B1:7E:1A:F7
X509v3 Authority Key Identifier:
keyid:4D:E4:3A:56:CB:F6:AF:E4:35:68:96:E0:DF:F5:29:C1:79:69:44:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TeQ6Vsv2r-Q1aJbg3_UpwXlpRLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/12d07e-57a1-4530-bb02-2fe29782d47d/1/ih6NgBybSjzUdYjNkol3XbF-Gvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/12d07e-57a1-4530-bb02-2fe29782d47d/1/TeQ6Vsv2r-Q1aJbg3_UpwXlpRLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.62.0/24
Signature Algorithm: sha256WithRSAEncryption
77:8a:79:5e:90:68:19:0d:16:9c:2a:77:93:39:95:c5:3c:95:
85:41:c8:f1:e7:92:65:97:82:73:f3:e3:68:1c:aa:36:8f:a6:
16:92:14:c5:5d:b4:3f:c6:40:f1:85:db:ef:de:ab:9f:d6:88:
05:37:0e:43:c1:40:08:2c:41:81:d4:1d:fe:25:5b:00:7a:2b:
6e:09:ad:0b:ae:16:7f:36:4b:7a:26:35:75:d3:8f:11:6c:c5:
7b:5f:6e:fe:01:87:bf:01:96:b4:20:37:52:d9:de:12:d4:6a:
c9:fa:d3:31:7c:7a:2e:ca:fa:46:82:93:9c:e9:ad:1f:bf:99:
7b:da:98:d5:80:69:26:f2:e6:2a:88:95:de:54:e9:d5:6c:29:
aa:19:47:91:76:10:7b:93:9e:af:e1:e4:a2:d8:f5:da:1d:50:
65:7c:4d:62:84:1c:49:e8:60:c6:20:1a:fe:4f:da:ae:04:ba:
2c:70:31:4d:ab:e6:c4:52:1d:7d:e9:2d:f5:75:ad:f9:f5:1d:
bf:50:bc:1e:94:83:6f:25:cd:2b:c1:84:9c:7b:10:de:03:e6:
59:ea:e0:34:be:11:b0:6c:a2:f1:8d:6e:05:1a:af:06:6d:f0:
db:52:27:ba:3b:44:31:be:1d:63:ba:3a:cb:a7:87:27:c2:e7:
df:2e:c4:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:51 2024 by rpki-client on console-fra.rpki-client.org