Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/392ea5-9ca8-4b0f-9388-093961d38c86/1/XyIOYzlTO31VNSGKZZ2UGUVQV3Q.roa
File: XyIOYzlTO31VNSGKZZ2UGUVQV3Q.roa (raw, json)
Hash identifier: ZT7MMsEBq6lt6TgbeEws2V3g2SQGo9nA0euUiX5Pxm0=
Subject key identifier: 5F:22:0E:63:39:53:3B:7D:55:35:21:8A:65:9D:94:19:45:50:57:74
Certificate issuer: /CN=046ca7b604ec08f6f54b0e748906547dd375674d
Certificate serial: 018899E8D20071808D8F8726A5A5E73C6100
Authority key identifier: 04:6C:A7:B6:04:EC:08:F6:F5:4B:0E:74:89:06:54:7D:D3:75:67:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGyntgTsCPb1Sw50iQZUfdN1Z00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/392ea5-9ca8-4b0f-9388-093961d38c86/1/XyIOYzlTO31VNSGKZZ2UGUVQV3Q.roa
Signing time: Thu 08 Jun 2023 07:29:12 +0000
ROA not before: Thu 08 Jun 2023 07:29:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39686
IP address blocks: 193.202.96.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:99:e8:d2:00:71:80:8d:8f:87:26:a5:a5:e7:3c:61:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=046ca7b604ec08f6f54b0e748906547dd375674d
Validity
Not Before: Jun 8 07:29:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f220e6339533b7d5535218a659d941945505774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ed:21:60:08:75:af:2d:51:0f:ee:a4:47:a1:
ff:86:8e:e5:72:e8:47:be:9f:bc:ae:3e:d1:d4:b2:
93:05:76:0b:07:26:e3:04:84:9a:d0:68:23:57:13:
79:58:4e:90:9d:69:59:65:6e:e6:3d:60:f9:c2:42:
a1:d8:87:93:f0:e6:64:43:0b:8e:28:b2:94:84:ca:
6f:a1:50:a9:f4:0f:cd:dd:22:b6:62:d1:f2:cb:97:
96:54:0d:bb:0d:d2:dc:ec:65:88:cf:3a:64:ad:e5:
06:60:96:f0:cd:ba:d6:79:7a:ca:aa:91:73:38:7e:
a3:33:ac:f9:a3:71:9f:51:05:42:82:69:b8:18:16:
63:67:4c:f3:c2:73:fc:6a:dd:e5:f5:c8:c6:b4:49:
5f:16:2f:25:05:3b:f7:58:cd:07:cf:70:44:f3:41:
64:63:33:8c:f9:a1:c1:d6:62:28:c1:6d:44:8d:df:
9b:80:75:2c:e0:ad:23:15:95:a7:de:c4:7e:b6:72:
fc:31:ce:ad:4f:74:80:82:4b:7b:7c:39:4c:7c:cc:
4f:7d:8d:05:49:68:71:87:f4:04:e5:2d:06:59:0d:
bb:6d:55:52:a0:51:d1:90:be:93:1f:24:32:1c:a3:
23:3f:00:c4:8c:b3:7e:31:60:a7:60:61:ef:ea:3b:
a0:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:22:0E:63:39:53:3B:7D:55:35:21:8A:65:9D:94:19:45:50:57:74
X509v3 Authority Key Identifier:
keyid:04:6C:A7:B6:04:EC:08:F6:F5:4B:0E:74:89:06:54:7D:D3:75:67:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGyntgTsCPb1Sw50iQZUfdN1Z00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/392ea5-9ca8-4b0f-9388-093961d38c86/1/XyIOYzlTO31VNSGKZZ2UGUVQV3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/392ea5-9ca8-4b0f-9388-093961d38c86/1/BGyntgTsCPb1Sw50iQZUfdN1Z00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.202.96.0/21
Signature Algorithm: sha256WithRSAEncryption
70:30:dc:bf:3e:93:49:97:84:9a:3c:46:de:27:c8:f0:ce:88:
25:0e:fd:3a:01:78:63:34:d0:76:ed:33:ae:3a:a1:bf:1d:e1:
99:62:79:ee:17:01:c4:09:78:a0:ef:8c:2b:02:ce:13:04:28:
a7:e1:64:bc:30:3c:29:27:5b:48:15:24:60:1f:f0:35:8e:19:
ea:a9:95:a2:d1:31:51:05:2a:94:d3:86:ae:dc:88:da:d6:ed:
d8:ff:1b:51:8d:40:a2:d7:0f:65:23:78:d1:1e:40:13:0b:fd:
f3:31:a1:02:7d:8e:ed:09:ef:01:98:d2:c7:01:c4:0b:a7:fa:
b0:8c:40:b3:35:06:6c:37:21:55:ea:73:62:f2:a3:c8:ab:7e:
13:ce:2c:aa:e8:15:0d:f8:9f:fb:ce:a2:21:7c:cc:bf:7f:2f:
60:f5:1d:c3:c9:99:96:cb:d0:c1:0c:30:54:9a:e9:02:9a:7f:
62:44:2a:4e:63:19:21:e4:35:4c:44:86:d9:ad:05:f1:a1:a3:
8a:61:f3:f3:d0:ba:d1:c7:e5:ad:2c:0f:f0:f9:de:b7:fa:52:
a5:92:56:86:9a:07:4a:11:26:99:61:ab:d2:7f:93:bb:09:e8:
22:d9:67:83:c2:81:2f:26:e7:92:fd:3e:05:fc:6d:37:37:18:
2b:eb:f2:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:11 2024 by rpki-client on console-ams.rpki-client.org