Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/3sS3M17uvbm3K2mIF7lKYqiRqOo.roa
File: 3sS3M17uvbm3K2mIF7lKYqiRqOo.roa (raw, json)
Hash identifier: ZpQ+9pPA5NH58Mu5m7gCZ6yMx4JursJnRzv1egnXB8k=
Subject key identifier: DE:C4:B7:33:5E:EE:BD:B9:B7:2B:69:88:17:B9:4A:62:A8:91:A8:EA
Certificate issuer: /CN=0765f6f5f7936db8351a0a393cf069a518e57445
Certificate serial: 018A1CAA8243CD29CD14FFDCDCB3C67284DC
Authority key identifier: 07:65:F6:F5:F7:93:6D:B8:35:1A:0A:39:3C:F0:69:A5:18:E5:74:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2X29feTbbg1Ggo5PPBppRjldEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/3sS3M17uvbm3K2mIF7lKYqiRqOo.roa
Signing time: Tue 22 Aug 2023 09:54:11 +0000
ROA not before: Tue 22 Aug 2023 09:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28878
IP address blocks: 193.33.180.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:aa:82:43:cd:29:cd:14:ff:dc:dc:b3:c6:72:84:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0765f6f5f7936db8351a0a393cf069a518e57445
Validity
Not Before: Aug 22 09:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dec4b7335eeebdb9b72b698817b94a62a891a8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:1f:9d:fa:d7:f3:8b:83:48:6b:aa:83:5b:35:
c4:f8:ad:72:04:65:31:5f:ad:d3:34:b4:97:e5:e5:
bc:94:c2:a0:b2:0b:94:4b:10:33:a0:67:97:1c:82:
e0:8f:51:4c:c0:03:3e:3d:d5:c8:2d:a6:32:71:97:
e2:7a:42:4c:63:a1:fd:53:7b:d1:8e:f5:57:5c:c5:
39:32:61:f8:fb:e6:11:5b:f9:ad:3a:48:42:f0:15:
37:6e:4d:34:28:c5:90:22:df:69:58:37:b6:cb:8f:
3f:fb:da:4c:db:35:f8:42:74:b7:5a:13:58:0f:8f:
82:01:b9:f1:8d:94:96:57:78:00:7d:48:57:a5:11:
f9:4a:9d:53:ca:d2:d0:e9:d8:ae:81:6d:6a:ba:76:
87:7a:99:71:ee:e3:22:67:a1:32:25:b3:ea:a4:4c:
3f:2d:c1:c6:ab:f9:c2:a3:fb:ff:1a:b9:bd:d8:9b:
ca:80:ff:f6:8e:68:ba:20:b7:41:05:9f:05:10:68:
e3:5f:68:fc:cb:69:c1:cb:58:bc:1f:99:17:dc:ec:
22:8f:56:43:44:2d:e3:fe:0e:d0:b2:37:2c:63:ce:
96:c1:cf:0a:c1:24:a3:32:ea:a4:03:6e:4c:53:19:
05:15:ed:5e:2a:98:13:d2:ca:ed:a7:1a:77:5e:6f:
58:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C4:B7:33:5E:EE:BD:B9:B7:2B:69:88:17:B9:4A:62:A8:91:A8:EA
X509v3 Authority Key Identifier:
keyid:07:65:F6:F5:F7:93:6D:B8:35:1A:0A:39:3C:F0:69:A5:18:E5:74:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2X29feTbbg1Ggo5PPBppRjldEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/3sS3M17uvbm3K2mIF7lKYqiRqOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/B2X29feTbbg1Ggo5PPBppRjldEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.180.0/23
Signature Algorithm: sha256WithRSAEncryption
25:15:b6:25:a2:8f:30:65:a2:bf:7b:6c:e6:ef:53:42:ae:e9:
a1:80:bf:37:64:24:12:1b:9a:6c:5d:f9:2b:67:25:3e:64:e0:
d5:1b:87:98:42:68:dd:13:11:87:bb:b7:1d:96:2c:64:5d:e3:
d5:24:db:55:dd:8b:eb:80:2f:46:4e:0d:34:dc:4a:85:dd:42:
ef:f0:c6:0f:03:43:a9:d6:c9:a6:91:85:89:14:bd:5d:af:83:
c9:3e:3b:bb:ce:e2:08:71:f2:1c:cc:dd:52:e4:e6:bb:f7:66:
1f:fe:41:d5:2f:08:31:f1:dd:cf:79:39:bd:fc:8a:22:d0:e3:
e3:a3:db:cd:71:32:46:34:e2:46:44:4b:66:8d:a3:ef:9c:f9:
50:ce:d0:ad:69:92:3e:75:24:fe:0a:12:90:d7:8b:d3:ab:4c:
27:df:e9:f2:b7:1e:ad:4e:89:ed:c3:ba:04:e8:52:49:42:29:
90:b1:06:51:68:79:0c:56:ce:11:47:f1:d2:41:bc:d4:e8:2f:
16:7a:a7:2b:89:d9:62:53:a5:3a:90:d3:77:dc:c2:64:e9:a3:
ea:69:59:a8:82:0e:2b:e2:8c:a7:56:34:91:c3:8a:84:0e:6a:
af:3d:1b:61:be:4f:12:03:9a:4d:7c:6f:70:ca:16:4b:b8:06:
78:8e:ef:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:09 2024 by rpki-client on console-ams.rpki-client.org