Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/snIlBBM8GHWZEqb4WrSQz86_wEs.roa
File: snIlBBM8GHWZEqb4WrSQz86_wEs.roa (raw, json)
Hash identifier: P3L0DNC74rsz6Fqeqhp++iQFdq+Qf+PIVlqFvhf0CKc=
Subject key identifier: B2:72:25:04:13:3C:18:75:99:12:A6:F8:5A:B4:90:CF:CE:BF:C0:4B
Certificate issuer: /CN=ae664b924e4ea027c1c3a0770df1ff80b1d568fa
Certificate serial: 018CC86EF5E1A681372EB34E106941F2741A
Authority key identifier: AE:66:4B:92:4E:4E:A0:27:C1:C3:A0:77:0D:F1:FF:80:B1:D5:68:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rmZLkk5OoCfBw6B3DfH_gLHVaPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/snIlBBM8GHWZEqb4WrSQz86_wEs.roa
Signing time: Tue 02 Jan 2024 04:29:24 +0000
ROA not before: Tue 02 Jan 2024 04:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26937
IP address blocks: 193.103.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 14:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6e:f5:e1:a6:81:37:2e:b3:4e:10:69:41:f2:74:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae664b924e4ea027c1c3a0770df1ff80b1d568fa
Validity
Not Before: Jan 2 04:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2722504133c18759912a6f85ab490cfcebfc04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7d:a2:95:2d:36:d2:db:01:ca:49:34:50:81:
29:07:29:fb:92:9a:6b:6f:d5:70:88:93:96:f5:9d:
d7:1d:4c:e2:12:cb:b1:e0:44:ab:88:49:78:3d:cb:
bd:81:a9:42:6f:54:ec:52:50:90:d6:6f:9f:78:e5:
16:8c:af:08:43:f2:75:7a:2c:78:d8:29:92:ac:b5:
9c:7e:97:96:09:5a:d6:e3:51:53:65:14:98:5b:07:
7c:94:a2:ad:fe:cd:18:79:82:f1:35:58:15:d5:43:
20:9d:66:e5:61:42:6f:93:27:14:08:2e:41:30:60:
0e:b6:4a:ae:72:fa:68:e3:df:9b:80:97:12:e1:a1:
82:36:bd:6a:ba:ae:a6:d3:17:be:54:42:70:64:33:
b2:bd:51:66:03:06:3f:fc:50:db:cf:42:a5:46:e0:
ba:10:f4:56:06:8a:ed:ba:11:55:19:f8:39:ff:bd:
4c:c1:37:8e:f0:af:81:9f:45:13:0c:69:6e:be:85:
77:08:69:c4:84:5f:e6:b7:bb:76:29:52:21:67:a6:
aa:f7:5e:55:e0:72:31:69:ce:75:51:ae:76:db:a0:
5b:97:65:ee:a2:76:2c:61:45:77:20:eb:76:a6:6e:
9c:d9:6b:1c:44:91:fe:18:7a:32:6c:6c:98:e4:0e:
21:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:72:25:04:13:3C:18:75:99:12:A6:F8:5A:B4:90:CF:CE:BF:C0:4B
X509v3 Authority Key Identifier:
keyid:AE:66:4B:92:4E:4E:A0:27:C1:C3:A0:77:0D:F1:FF:80:B1:D5:68:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rmZLkk5OoCfBw6B3DfH_gLHVaPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/snIlBBM8GHWZEqb4WrSQz86_wEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/e2f846-8582-4093-ae93-04c5397fe5f8/1/rmZLkk5OoCfBw6B3DfH_gLHVaPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.103.194.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:5b:84:cf:36:9e:57:1b:e0:f3:b0:27:7e:61:bb:a5:6c:76:
66:a8:c4:38:bc:3e:89:c4:19:f9:cb:ad:f1:ad:d7:f3:c2:62:
c0:ea:bd:87:23:ba:f9:67:df:05:ed:9e:06:fa:4d:40:a0:40:
28:eb:cd:f3:ea:c9:9a:97:db:57:3e:83:21:72:0b:46:b7:b1:
02:b9:f2:fe:23:34:2e:61:c0:02:b4:c3:8a:24:c7:bc:a3:8e:
4d:8c:f1:2a:47:4c:62:8e:a0:b2:f2:84:f9:69:c3:f4:97:1c:
ef:b5:5c:60:07:b7:e9:ff:43:50:8f:ef:40:0f:f6:ae:ce:57:
f1:6c:ac:dd:38:9d:cd:dc:87:a9:7e:4a:85:23:ef:11:da:80:
04:a5:b4:ef:26:cd:b3:34:b1:ea:c1:99:27:30:68:74:3f:66:
2b:77:b3:4f:5d:e9:57:b9:d1:b7:f0:26:30:52:3b:ef:fd:f8:
b7:19:1f:eb:67:33:30:b5:1b:4a:62:60:f8:19:3e:49:35:98:
30:86:23:46:79:fa:a4:02:39:f0:f9:50:75:38:7d:29:59:84:
d8:23:3e:9c:eb:c4:a3:1f:d7:fd:fb:22:c2:1d:f8:47:1b:5d:
94:66:c4:8a:e3:4f:05:5c:23:0d:d1:08:f8:29:9a:4f:4b:e3:
ad:fc:c7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:27 2024 by rpki-client on console-ams.rpki-client.org