Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/M8uQZjfKQfiJq8pckzmYSPbQZqs.roa
File: M8uQZjfKQfiJq8pckzmYSPbQZqs.roa (raw, json)
Hash identifier: jn8DQ0cTRVTC0s3a2JUbarl/BbqsvdFjL/x7immld1Y=
Subject key identifier: 33:CB:90:66:37:CA:41:F8:89:AB:CA:5C:93:39:98:48:F6:D0:66:AB
Certificate issuer: /CN=1f46f57735a4e63dbef848ee0d9d199e215f8304
Certificate serial: 0188A00749C043D44DE1B948417AE25F1FCF
Authority key identifier: 1F:46:F5:77:35:A4:E6:3D:BE:F8:48:EE:0D:9D:19:9E:21:5F:83:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/M8uQZjfKQfiJq8pckzmYSPbQZqs.roa
Signing time: Fri 09 Jun 2023 12:00:12 +0000
ROA not before: Fri 09 Jun 2023 12:00:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12337
IP address blocks: 193.47.99.0/24 maxlen: 24
2001:67c:192c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:07:49:c0:43:d4:4d:e1:b9:48:41:7a:e2:5f:1f:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f46f57735a4e63dbef848ee0d9d199e215f8304
Validity
Not Before: Jun 9 12:00:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33cb906637ca41f889abca5c93399848f6d066ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c8:f3:04:2b:90:49:b1:23:ba:05:17:6e:69:
b5:33:88:2a:28:b7:3b:ba:d1:10:aa:c7:29:34:54:
15:66:7b:82:2f:aa:af:56:43:2a:51:6f:fc:a5:f4:
cd:6a:5e:5c:9b:51:f7:e2:dc:e6:10:43:95:d1:ae:
c7:42:ee:fc:1a:20:58:fc:d0:66:50:e9:ef:c6:42:
66:6e:2e:0c:58:f6:84:6b:7c:1d:b3:74:69:87:77:
c4:83:23:9a:af:02:cd:bf:b0:f2:7c:f4:d0:1e:ba:
fb:86:fb:86:67:b4:39:12:4f:d6:15:1f:4d:99:fb:
da:10:05:4b:b2:ec:bf:c3:0e:68:d9:25:20:6c:5c:
91:bd:a5:75:47:c6:eb:8b:5a:8d:0c:93:32:68:c5:
64:cf:53:8b:d5:d9:3c:73:13:79:79:45:40:e4:13:
39:51:3a:74:ea:93:af:d3:5d:d5:5a:4f:7a:5d:a9:
ef:c6:be:bd:4e:6f:93:61:0c:ef:4b:b3:6b:9e:78:
50:df:60:e2:81:d0:aa:9d:af:5a:7e:16:d8:be:09:
20:fa:c2:92:78:79:43:c6:82:ee:15:51:48:98:b4:
18:ba:87:c6:5f:9c:4d:52:02:69:63:fe:5a:f6:2d:
bb:c0:c8:18:19:3f:b4:fe:8a:33:bb:8d:0e:ae:84:
7a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CB:90:66:37:CA:41:F8:89:AB:CA:5C:93:39:98:48:F6:D0:66:AB
X509v3 Authority Key Identifier:
keyid:1F:46:F5:77:35:A4:E6:3D:BE:F8:48:EE:0D:9D:19:9E:21:5F:83:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/M8uQZjfKQfiJq8pckzmYSPbQZqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.99.0/24
IPv6:
2001:67c:192c::/48
Signature Algorithm: sha256WithRSAEncryption
7d:f2:ca:2d:fb:98:37:22:9a:a5:a8:58:93:a2:7f:d1:be:4e:
5b:66:92:fe:e2:7e:45:63:64:17:ac:a0:a6:7a:45:fd:61:49:
c9:02:fa:68:df:a6:f9:22:7e:e3:8d:f8:a2:53:93:02:a4:b1:
e8:cb:bd:ce:75:09:98:ea:46:2c:04:69:c9:6b:b1:ea:2f:bd:
4d:af:8d:19:0c:ef:35:98:67:c1:11:bd:54:80:be:75:e3:fa:
6c:c0:53:0a:f6:0a:ac:29:57:47:88:a5:66:54:8a:61:54:df:
83:06:61:84:ff:63:47:c8:58:3a:97:91:ba:19:d1:f6:b0:30:
ad:30:70:7e:fb:37:39:34:9c:38:25:06:c5:c7:8d:4e:16:a6:
5e:19:fb:2f:9c:f9:c6:b5:ba:c7:f6:0c:b4:29:12:ec:15:40:
ec:65:7b:7f:df:24:0c:2d:d9:e9:4e:f4:63:f6:b8:e7:6a:0b:
e2:1a:0b:20:9a:d8:3d:2c:b5:1b:de:57:09:03:a2:1e:de:02:
e0:8c:ce:0b:bd:2b:1c:15:16:df:f1:e5:00:ae:a1:11:3f:28:
16:39:0c:9b:a5:df:de:a2:de:86:bd:6b:aa:59:0d:21:b6:b2:
64:16:a2:b8:ba:f0:d5:9a:80:77:92:62:63:9c:6d:49:dd:f0:
cc:d3:d6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:56 2024 by rpki-client on console-fra.rpki-client.org