Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/s33zZZORp94rWxKt-U4Ke_NyCpI.roa
File: s33zZZORp94rWxKt-U4Ke_NyCpI.roa (raw, json)
Hash identifier: HBWgg4aC8lOgvucg6WE31uUJT7ySIXwLbS0Skh1c2Rs=
Subject key identifier: B3:7D:F3:65:93:91:A7:DE:2B:5B:12:AD:F9:4E:0A:7B:F3:72:0A:92
Certificate issuer: /CN=174737d8a484d12534ca40f8dd818a588c3b3de2
Certificate serial: 018572C383B80DA7F17045A373E7BEF66385
Authority key identifier: 17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/s33zZZORp94rWxKt-U4Ke_NyCpI.roa
Signing time: Mon 02 Jan 2023 13:54:53 +0000
ROA not before: Mon 02 Jan 2023 13:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43201
IP address blocks: 193.228.160.0/23 maxlen: 23
193.228.160.0/22 maxlen: 22
2a0c:e1c0:2b4::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 26 Jan 2023 08:39:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:83:b8:0d:a7:f1:70:45:a3:73:e7:be:f6:63:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174737d8a484d12534ca40f8dd818a588c3b3de2
Validity
Not Before: Jan 2 13:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b37df3659391a7de2b5b12adf94e0a7bf3720a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:25:c7:27:69:67:67:b4:5d:50:3a:80:5c:32:
87:84:65:5a:c3:a7:c7:ce:9e:6e:7c:6c:67:cb:62:
a1:56:f2:8b:0d:44:72:86:4f:e3:bb:bf:bd:b9:28:
4b:03:dd:a6:5b:84:b7:34:52:31:7b:9a:5c:43:47:
26:88:4a:5e:58:03:91:ea:ea:e7:ce:11:b0:21:42:
bf:f3:79:f9:9e:f4:fa:23:cd:a2:79:6a:32:18:4c:
4e:d3:d1:30:31:9a:0b:9c:d2:1e:0f:d8:a4:84:c8:
44:b8:96:6f:62:69:cf:6b:65:e8:d6:f2:cb:01:51:
79:2d:6e:ad:53:40:73:46:fe:09:79:70:0d:5e:a3:
d0:01:fe:23:69:01:03:1d:51:87:ad:20:48:88:ea:
19:6f:00:e4:f5:0a:32:38:5b:83:ab:96:6e:60:62:
db:96:67:ad:10:5d:99:e0:55:2d:88:75:c3:80:c7:
37:e1:6c:57:9f:6e:13:f9:ef:19:e8:cf:a9:32:82:
1d:18:a2:7a:c8:3a:c1:26:8d:86:70:c5:ff:b5:f4:
f5:05:08:5b:0c:73:cc:2a:fb:67:a8:29:72:c7:6d:
35:e7:77:8c:1d:3a:96:31:77:db:63:32:f2:46:c0:
b6:10:78:63:e1:27:d0:e2:c7:22:6d:7b:6a:3c:76:
72:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7D:F3:65:93:91:A7:DE:2B:5B:12:AD:F9:4E:0A:7B:F3:72:0A:92
X509v3 Authority Key Identifier:
keyid:17:47:37:D8:A4:84:D1:25:34:CA:40:F8:DD:81:8A:58:8C:3B:3D:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F0c32KSE0SU0ykD43YGKWIw7PeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/s33zZZORp94rWxKt-U4Ke_NyCpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/19324a-0616-45d4-9b53-7b746ea1ab82/1/F0c32KSE0SU0ykD43YGKWIw7PeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.160.0/22
IPv6:
2a0c:e1c0:2b4::/48
Signature Algorithm: sha256WithRSAEncryption
7d:ea:ca:b2:b4:1b:ca:d4:f9:a6:15:04:85:c9:60:65:75:7e:
b2:0b:7c:7e:ef:4e:bf:76:7f:25:66:f1:ce:27:b1:6a:dc:8b:
b9:16:a8:1b:8b:ae:58:cb:db:31:1f:3a:aa:d9:9e:67:e3:88:
34:6e:a3:0e:d8:a8:e3:e9:50:aa:a7:64:c0:e6:9f:ad:d3:5e:
78:07:ce:da:28:7b:4c:ff:a1:4c:de:cf:9c:06:5d:99:fc:0e:
99:3f:ff:52:f0:7f:c1:fd:01:a7:b6:c3:e4:25:85:2a:27:4c:
f8:b6:58:83:0d:7c:a9:01:24:e0:00:67:69:55:73:f8:2c:25:
38:06:3c:4f:57:2b:29:0e:f0:57:93:92:ad:80:b0:3f:17:ab:
25:48:ba:23:51:c9:ac:da:d0:88:f1:87:6f:d6:b0:de:78:05:
98:ca:0d:4d:72:79:2f:8e:1e:bb:df:05:91:76:53:9c:3f:b8:
12:d4:b5:56:fe:d6:d5:d1:8a:01:f6:46:d8:89:a6:40:d9:bf:
7c:dd:c6:a2:16:1b:31:4c:96:18:53:75:95:3e:3e:0e:5b:db:
78:b8:bf:a1:1c:95:df:ad:5b:a0:2e:cc:14:60:b3:d7:f2:45:
30:69:b9:7f:b3:8a:aa:66:f9:c4:ad:c9:10:1c:f4:eb:83:cb:
ba:73:c1:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:45 2024 by rpki-client on console-ams.rpki-client.org