Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f894a3-8ed7-4d6f-bb03-6ab05568ade2/1/AV7e2MMZ8uYrm7ETFvXnyUHo49Q.roa
File: AV7e2MMZ8uYrm7ETFvXnyUHo49Q.roa (raw, json)
Hash identifier: 8By0UGoNxgy60cz2kVLIJNdE249pNzs9BnEq9RrNtxQ=
Subject key identifier: 01:5E:DE:D8:C3:19:F2:E6:2B:9B:B1:13:16:F5:E7:C9:41:E8:E3:D4
Certificate issuer: /CN=0ff2bbcd1c2d8d7adf741d704d9dc64b9e614fda
Certificate serial: 018AB2C4817316DEF84F4240B6E106687F4E
Authority key identifier: 0F:F2:BB:CD:1C:2D:8D:7A:DF:74:1D:70:4D:9D:C6:4B:9E:61:4F:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_K7zRwtjXrfdB1wTZ3GS55hT9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f894a3-8ed7-4d6f-bb03-6ab05568ade2/1/AV7e2MMZ8uYrm7ETFvXnyUHo49Q.roa
Signing time: Wed 20 Sep 2023 13:25:37 +0000
ROA not before: Wed 20 Sep 2023 13:25:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57243
IP address blocks: 193.193.166.0/23 maxlen: 32
2001:67c:7e4::/48 maxlen: 56
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b2:c4:81:73:16:de:f8:4f:42:40:b6:e1:06:68:7f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff2bbcd1c2d8d7adf741d704d9dc64b9e614fda
Validity
Not Before: Sep 20 13:25:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=015eded8c319f2e62b9bb11316f5e7c941e8e3d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fe:ae:5b:df:cf:68:6f:b1:ca:57:49:92:79:
72:ab:5a:b9:9a:50:ba:ad:30:54:3f:78:fb:df:7c:
77:b2:2d:06:0c:30:5a:e8:92:61:cc:23:1a:34:bb:
64:43:45:df:de:63:86:46:ff:2c:8b:17:e6:a4:3d:
e0:79:55:cc:d9:11:06:d8:a7:14:b5:ca:6d:d1:3b:
4a:96:f7:67:fb:24:fe:45:6e:b9:13:45:78:51:7c:
31:18:76:c8:21:06:1e:5a:08:40:42:75:50:d4:a7:
c7:2c:2c:26:ac:1a:db:82:c1:27:22:89:43:d8:e0:
9d:1d:49:f5:f1:3f:cf:37:73:3a:14:cd:42:dd:86:
a0:41:23:be:dd:23:51:5a:13:69:e0:54:af:7e:6c:
79:11:8f:8a:c7:3e:df:fc:a0:38:35:d1:79:a7:88:
c4:c6:8a:8d:71:03:3e:29:00:98:11:f8:a8:22:57:
38:59:0d:4b:78:ff:92:c8:33:b1:53:55:1d:25:83:
33:d7:e9:80:70:61:f1:58:3a:94:71:3b:38:69:bb:
ab:84:00:03:93:3b:2e:72:fa:2e:0d:4d:07:75:28:
b6:30:91:e7:46:69:63:e0:54:06:5f:3a:5f:c4:89:
65:4c:be:13:c4:ec:b0:89:41:92:2f:a8:ba:58:62:
78:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5E:DE:D8:C3:19:F2:E6:2B:9B:B1:13:16:F5:E7:C9:41:E8:E3:D4
X509v3 Authority Key Identifier:
keyid:0F:F2:BB:CD:1C:2D:8D:7A:DF:74:1D:70:4D:9D:C6:4B:9E:61:4F:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_K7zRwtjXrfdB1wTZ3GS55hT9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f894a3-8ed7-4d6f-bb03-6ab05568ade2/1/AV7e2MMZ8uYrm7ETFvXnyUHo49Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f894a3-8ed7-4d6f-bb03-6ab05568ade2/1/D_K7zRwtjXrfdB1wTZ3GS55hT9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.193.166.0/23
IPv6:
2001:67c:7e4::/48
Signature Algorithm: sha256WithRSAEncryption
61:cc:a2:87:c1:59:3a:ab:21:16:c7:58:e4:1d:2f:3c:f5:6a:
6c:7b:9f:0e:44:75:5c:eb:4c:d7:4f:c3:72:2e:3d:09:3a:17:
49:bf:83:d9:6a:50:13:15:89:98:6d:f5:85:28:e2:59:12:70:
61:b3:7b:bc:6c:d1:1f:d3:a0:aa:63:54:a8:0b:8b:ec:dd:8f:
f1:fa:85:a9:1a:81:d6:91:00:b0:6b:67:14:76:1f:a1:da:5a:
8a:38:06:45:a0:7c:85:07:76:93:05:db:ee:c5:b9:17:5a:69:
75:86:fa:75:ed:a4:66:3b:bd:74:be:5d:bb:76:4c:bb:7c:22:
fa:cc:53:f0:11:07:d7:b8:6e:7d:df:80:fc:1b:e0:a7:56:3f:
33:2d:a5:14:96:e5:3f:0d:c2:ed:78:b6:cf:13:d8:7c:f8:0f:
72:b6:20:4c:c2:6f:ae:22:98:03:09:cd:48:0e:bf:86:de:c2:
f9:f9:0e:18:16:e8:17:30:04:84:04:d1:a9:5e:81:31:86:1b:
a9:49:77:d3:23:02:5a:da:ec:2b:e1:c9:fa:92:72:53:a6:c1:
58:0a:91:93:55:14:cf:60:cb:27:5f:19:5e:f8:89:6e:9a:6a:
d2:65:58:d8:ca:f6:0a:fc:3b:c3:0d:66:a8:55:30:2a:05:c8:
33:3a:bc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:23 2024 by rpki-client on console-fra.rpki-client.org