Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/I7hTwearDPG9TNN45YQ4hp68-0I.roa
File: I7hTwearDPG9TNN45YQ4hp68-0I.roa (raw, json)
Hash identifier: rfHxwVv9RpEN5tDz9wscQwz7jEj1XO+zhczeEYrptwc=
Subject key identifier: 23:B8:53:C1:E6:AB:0C:F1:BD:4C:D3:78:E5:84:38:86:9E:BC:FB:42
Certificate issuer: /CN=c2e24a6e3b375e827ebd6e288d9e5532b3a1b684
Certificate serial: 0185728CA60EB1C838DBD5B1CA8837B6F134
Authority key identifier: C2:E2:4A:6E:3B:37:5E:82:7E:BD:6E:28:8D:9E:55:32:B3:A1:B6:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wuJKbjs3XoJ-vW4ojZ5VMrOhtoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/I7hTwearDPG9TNN45YQ4hp68-0I.roa
Signing time: Mon 02 Jan 2023 12:54:58 +0000
ROA not before: Mon 02 Jan 2023 12:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33915
IP address blocks: 193.176.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:a6:0e:b1:c8:38:db:d5:b1:ca:88:37:b6:f1:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2e24a6e3b375e827ebd6e288d9e5532b3a1b684
Validity
Not Before: Jan 2 12:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23b853c1e6ab0cf1bd4cd378e58438869ebcfb42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:ac:00:d0:95:cb:05:5d:23:0e:d5:ee:1c:3c:
b8:da:3c:ac:b1:77:41:c6:ce:cb:e5:7d:70:e1:49:
81:c9:62:f5:1e:4a:f6:e3:aa:22:12:7d:ea:14:9e:
e6:25:57:13:ce:8d:52:7d:9f:68:2a:84:92:cf:13:
cd:fc:bd:db:b3:af:e4:c0:cd:37:49:14:42:70:5b:
93:2b:d2:29:ec:96:48:d6:d3:63:94:0b:3c:12:dc:
f3:10:da:78:5d:91:36:d6:84:da:28:d1:97:17:47:
a0:9e:2d:d3:55:fe:ce:51:c9:33:c5:ca:0e:ee:8f:
07:99:83:24:d8:cf:89:0c:43:b3:96:75:2f:5d:07:
a3:71:66:6f:13:ac:97:f5:65:d6:e4:cf:12:f1:4b:
f3:62:66:95:db:50:cc:65:5c:76:00:bb:05:a8:81:
b4:4d:92:49:39:5d:a5:0f:e9:68:6f:98:de:cc:3b:
d7:10:1f:38:77:28:0b:ba:42:43:f3:ae:0f:bc:ee:
e3:4a:dd:7c:d3:79:c3:45:e5:b0:3c:45:95:33:f2:
e3:3f:4a:4d:ff:41:87:0c:09:55:e3:c7:2a:83:06:
a1:7f:09:72:a6:06:6f:62:33:38:ce:1d:31:8d:37:
04:62:ae:ee:59:1b:0f:b6:c0:b5:47:c0:c7:85:46:
68:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B8:53:C1:E6:AB:0C:F1:BD:4C:D3:78:E5:84:38:86:9E:BC:FB:42
X509v3 Authority Key Identifier:
keyid:C2:E2:4A:6E:3B:37:5E:82:7E:BD:6E:28:8D:9E:55:32:B3:A1:B6:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wuJKbjs3XoJ-vW4ojZ5VMrOhtoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/I7hTwearDPG9TNN45YQ4hp68-0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/f916bc-29b1-4f09-83de-d544ac062d1f/1/wuJKbjs3XoJ-vW4ojZ5VMrOhtoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.191.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:6a:1b:68:a7:44:4a:b5:c0:ba:b7:3f:ed:a2:11:b3:89:fb:
dc:04:c9:30:c4:67:f3:4a:20:89:7e:85:e5:e7:bd:47:7d:fc:
02:d1:94:02:ed:ee:eb:c8:3e:44:f8:92:63:6d:7d:af:d1:a3:
9b:0d:bf:7f:43:f5:63:54:14:07:d7:7b:60:90:ed:89:21:87:
39:a1:70:5b:03:30:e0:14:9b:9e:68:59:6c:d2:30:48:34:5e:
4e:6e:58:97:b7:f3:58:97:b4:cb:b7:07:4e:1c:e2:c9:6d:15:
0c:85:96:77:09:ed:1a:7a:d7:fa:4d:3f:ba:e2:e3:d6:97:5f:
41:f7:e8:f2:e1:2e:3c:d3:35:78:a0:69:47:31:cc:96:81:15:
87:f0:bd:b5:cd:28:20:ef:f9:a3:9f:f2:06:1f:de:31:2a:e8:
3f:c9:18:03:7f:c7:72:fd:97:30:29:94:bb:6c:6c:aa:b6:7f:
7b:53:74:d3:d9:fd:e6:ea:5b:70:b6:e3:53:51:96:7d:c6:4d:
fd:05:0b:8f:98:c3:c5:c4:06:f0:42:1c:8a:8d:40:84:83:77:
08:30:04:ba:d0:47:cd:75:86:d4:52:cb:92:c2:1c:c9:f4:a5:
86:be:8b:2c:f2:69:04:19:e5:ed:18:38:4b:69:86:11:66:de:
22:9e:81:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:16 2024 by rpki-client on console-ams.rpki-client.org