Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/z82qq5MgEPHIgxz1q5Abl9r6ljo.roa
File: z82qq5MgEPHIgxz1q5Abl9r6ljo.roa (raw, json)
Hash identifier: NlAM64cTpNmXAMOcVAcHc77+VXJvFUwZaUBEThdzkHo=
Subject key identifier: CF:CD:AA:AB:93:20:10:F1:C8:83:1C:F5:AB:90:1B:97:DA:FA:96:3A
Certificate issuer: /CN=0765f6f5f7936db8351a0a393cf069a518e57445
Certificate serial: 018A1CAA82804CF7B89926B09A61D42AC1B3
Authority key identifier: 07:65:F6:F5:F7:93:6D:B8:35:1A:0A:39:3C:F0:69:A5:18:E5:74:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B2X29feTbbg1Ggo5PPBppRjldEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/z82qq5MgEPHIgxz1q5Abl9r6ljo.roa
Signing time: Tue 22 Aug 2023 09:54:11 +0000
ROA not before: Tue 22 Aug 2023 09:54:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39700
IP address blocks: 193.33.180.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:aa:82:80:4c:f7:b8:99:26:b0:9a:61:d4:2a:c1:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0765f6f5f7936db8351a0a393cf069a518e57445
Validity
Not Before: Aug 22 09:54:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfcdaaab932010f1c8831cf5ab901b97dafa963a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:31:6d:b2:79:0e:2f:32:46:23:b2:2f:95:e8:
7a:e1:0e:f9:e6:e1:94:fb:7a:da:e3:41:9b:08:31:
24:e9:04:17:ea:e2:d0:9b:fd:f6:5e:7a:d5:b5:86:
82:12:c4:7d:4a:ae:73:c3:cd:c2:ec:bd:d8:51:56:
dd:28:88:a8:17:af:2e:83:71:ca:a7:39:c3:0b:28:
3b:da:f8:6a:b2:0a:dd:17:00:87:71:bd:00:58:8a:
f0:47:4e:17:ce:20:67:c9:5a:23:59:c0:8f:51:84:
fa:1c:9d:ed:2a:91:d7:50:bd:fd:6c:00:a8:b2:48:
cf:73:c4:ba:a7:d2:32:62:b7:55:d7:c5:aa:55:f4:
4c:50:54:c0:6b:46:99:e2:09:d7:fe:3e:1f:83:4f:
72:93:67:95:65:0a:73:0b:67:2f:6c:a7:c9:1f:ff:
54:fa:a0:e8:80:2e:ca:90:58:d0:27:84:d7:7c:29:
8c:03:2f:98:3a:16:9f:be:bb:61:c3:86:42:b4:fb:
b9:01:a3:5c:53:4c:ae:6b:fe:16:6d:70:6d:77:ed:
63:95:62:16:76:fc:b1:a4:0e:e5:cc:54:3a:e3:fd:
e6:f8:45:81:60:0e:e3:43:ec:83:c7:84:48:08:3b:
24:5b:bc:87:af:f1:06:4a:71:8b:92:74:f8:34:5f:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:CD:AA:AB:93:20:10:F1:C8:83:1C:F5:AB:90:1B:97:DA:FA:96:3A
X509v3 Authority Key Identifier:
keyid:07:65:F6:F5:F7:93:6D:B8:35:1A:0A:39:3C:F0:69:A5:18:E5:74:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B2X29feTbbg1Ggo5PPBppRjldEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/z82qq5MgEPHIgxz1q5Abl9r6ljo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/9a6655-1d2c-45cb-ada1-f46b46d53800/1/B2X29feTbbg1Ggo5PPBppRjldEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.180.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:0e:42:9b:95:c9:d7:38:c5:c4:99:6d:07:25:e9:4d:5d:41:
2c:58:8f:60:af:e1:61:80:3c:50:b0:a3:01:04:4f:86:c9:13:
f3:6a:6f:fa:a5:04:3d:b6:d7:24:57:28:cf:ef:76:c6:f4:10:
a7:d6:d7:78:5d:a1:3b:79:7c:6d:40:86:10:5d:43:7d:bb:d7:
ca:bd:d0:50:a6:5c:6c:24:71:99:4f:5a:55:37:87:82:cd:cb:
c4:02:81:e6:d3:80:b0:c4:11:88:44:69:f6:f9:c8:5b:57:a3:
6e:34:23:8c:66:4d:13:31:88:7e:61:60:9c:9e:59:17:4b:b9:
5e:86:47:8e:99:b6:9f:0b:c8:d6:ea:30:24:ca:39:95:a3:34:
58:55:83:6b:cb:56:24:5c:03:4a:41:1a:af:47:9d:ad:30:f1:
96:10:63:79:02:52:70:c9:b7:23:62:6e:d2:22:82:1b:7a:83:
87:1a:e8:67:bb:09:16:82:82:1c:4d:a8:91:2c:e5:25:ab:e7:
5f:a4:e0:29:e7:cc:2d:76:c0:0e:3f:69:25:66:8d:82:46:39:
6b:86:16:42:f0:7f:6e:0a:ef:e8:83:6d:96:17:11:70:e7:dc:
a1:5d:50:15:60:f0:6c:3b:e1:86:27:fc:e7:5a:cf:19:bd:29:
e7:98:48:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:09 2024 by rpki-client on console-ams.rpki-client.org