Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/527Xcf1G_DwvpL4SiPWjgVE-TNY.roa
File: 527Xcf1G_DwvpL4SiPWjgVE-TNY.roa (raw, json)
Hash identifier: Ssl8CgoNBbo1PVp35Kmm3mdkwu40WP4oZ25bWSWTrok=
Subject key identifier: E7:6E:D7:71:FD:46:FC:3C:2F:A4:BE:12:88:F5:A3:81:51:3E:4C:D6
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018B94F489EA0E5D2F5C3054568D712C3A56
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/527Xcf1G_DwvpL4SiPWjgVE-TNY.roa
Signing time: Fri 03 Nov 2023 11:32:15 +0000
ROA not before: Fri 03 Nov 2023 11:32:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205733
IP address blocks: 193.57.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 05:41:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:f4:89:ea:0e:5d:2f:5c:30:54:56:8d:71:2c:3a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 3 11:32:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e76ed771fd46fc3c2fa4be1288f5a381513e4cd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:71:f0:6e:8a:26:de:7e:4a:89:5e:f7:6e:fa:
a7:75:91:4c:e5:37:cc:0b:e6:a9:18:68:a9:8c:53:
ff:27:65:37:72:e8:03:d9:d0:ae:e6:5b:ca:b7:81:
75:ef:d2:81:cc:be:fe:e4:51:e1:2c:95:ad:67:d5:
75:93:ff:f9:c9:c9:d1:a5:74:7a:bd:11:63:e6:12:
bc:10:a5:f1:a3:2e:ca:26:69:b3:e5:e4:d3:a2:2e:
e9:7a:70:e5:1f:ac:fc:77:33:b0:76:31:39:df:9a:
95:1c:e6:d7:bb:de:d7:7a:0a:81:47:68:02:5c:bc:
75:c5:da:04:8f:b4:50:c3:14:40:22:5e:c6:cb:37:
a0:c1:59:8b:c3:5b:b2:16:a5:46:01:45:94:7a:a3:
a7:c7:18:75:ad:7c:fd:aa:35:81:3d:0c:f8:06:88:
a2:71:85:15:86:7d:e1:13:b3:2f:51:de:38:60:d5:
df:d2:25:6e:cb:ec:11:a9:45:7f:be:59:2a:3d:d1:
3f:70:13:ff:70:ae:63:1d:5a:0d:00:cb:ee:5e:0a:
e0:b3:8e:49:20:d6:e7:22:6f:b2:5c:99:e1:b2:bc:
3c:83:ff:a9:c4:b8:c3:80:58:66:67:b6:d7:13:3d:
8f:a6:bd:9f:21:4b:5e:77:bb:3b:37:68:c5:67:f1:
09:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6E:D7:71:FD:46:FC:3C:2F:A4:BE:12:88:F5:A3:81:51:3E:4C:D6
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/527Xcf1G_DwvpL4SiPWjgVE-TNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.41.0/24
Signature Algorithm: sha256WithRSAEncryption
87:51:8b:3d:8e:38:13:2c:73:11:7e:fd:ea:68:2c:05:46:dc:
89:f2:a9:3f:31:8e:c9:cb:f3:aa:ed:f9:d9:c8:92:a1:9c:cb:
a3:af:4b:bb:02:f2:68:31:e9:4e:8d:55:5e:51:84:13:55:d9:
97:a2:89:f8:b9:c5:d4:ea:26:da:61:36:e7:87:af:44:8c:80:
ba:b2:f8:99:1d:f8:c2:be:34:9d:c8:ca:d4:8d:1f:7e:5d:32:
c2:ae:83:90:77:e5:cf:66:62:44:e5:07:a3:9f:ac:c2:92:74:
af:18:a9:77:1e:31:63:50:7f:88:92:23:6b:74:8b:af:c7:c3:
8a:bf:48:19:68:6f:c3:55:bb:d8:cc:5f:da:84:c5:28:97:88:
14:60:3d:b1:93:1a:3e:84:d8:d0:1c:5c:af:bf:19:f8:42:a6:
20:c0:59:75:cd:38:02:6c:91:93:63:d0:c0:b8:14:9d:38:ee:
e1:bf:63:da:89:30:35:10:4e:03:95:ae:aa:d2:b1:cc:22:af:
ff:a4:c6:5f:46:07:4a:4c:0f:11:f1:c7:81:bc:ed:9f:6d:12:
ee:ae:fb:2a:3e:9d:67:c9:cb:b0:00:0b:18:65:22:01:f1:c2:
c4:0d:9d:5f:21:3d:e2:2e:4f:f2:97:6e:82:3e:28:ac:de:5c:
eb:d1:a1:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:17 2024 by rpki-client on console-ams.rpki-client.org