Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/sPxBrt3rXXaDUddaKa7V3wJ2tLs.roa
File: sPxBrt3rXXaDUddaKa7V3wJ2tLs.roa (raw, json)
Hash identifier: R66gmnWmvI5Phoxt0qrwEnZeq0+ORPj3z7TRHU0EEUU=
Subject key identifier: B0:FC:41:AE:DD:EB:5D:76:83:51:D7:5A:29:AE:D5:DF:02:76:B4:BB
Certificate issuer: /CN=51e39a677693bafb7924d6ea846978cf4c68b8c2
Certificate serial: 01856BD3731AFED97490E5C85F7A0711D041
Authority key identifier: 51:E3:9A:67:76:93:BA:FB:79:24:D6:EA:84:69:78:CF:4C:68:B8:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UeOaZ3aTuvt5JNbqhGl4z0xouMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/sPxBrt3rXXaDUddaKa7V3wJ2tLs.roa
Signing time: Sun 01 Jan 2023 05:34:57 +0000
ROA not before: Sun 01 Jan 2023 05:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15600
IP address blocks: 193.8.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:73:1a:fe:d9:74:90:e5:c8:5f:7a:07:11:d0:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51e39a677693bafb7924d6ea846978cf4c68b8c2
Validity
Not Before: Jan 1 05:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0fc41aeddeb5d768351d75a29aed5df0276b4bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:45:5c:cd:f4:a5:16:e0:20:f4:f8:6d:2a:1b:
32:d8:3d:97:fc:c7:42:d6:82:c4:c5:dc:56:56:43:
d5:d1:de:d0:64:ea:51:14:32:24:40:57:7b:13:0b:
f0:66:80:42:01:d8:4f:e1:2c:fa:64:00:8f:ef:41:
b5:8a:d8:08:2f:8b:0a:d0:c5:00:79:5c:45:27:93:
71:8c:8d:ab:31:9c:4e:a9:b9:3e:53:e5:fe:7c:a3:
21:ca:bc:f3:b2:3f:14:2b:60:d1:53:ac:b6:84:b1:
12:e6:18:3c:5f:f7:9f:f6:45:d8:a8:3d:00:f2:4a:
a7:93:c1:9f:33:90:38:3f:fc:b8:12:73:b3:bd:57:
64:04:5f:16:60:10:ff:84:ca:97:c7:f2:6e:9a:18:
63:a3:9a:53:29:56:68:07:00:53:e2:ca:85:8d:ef:
ba:4a:ff:e3:76:a8:0c:6e:a5:b5:ce:c5:ea:4c:97:
6e:4d:e7:89:d6:11:0c:95:26:af:36:f3:a6:23:96:
b5:1f:b2:96:20:8e:b8:f2:75:03:2c:fb:a7:18:57:
76:19:e9:c5:0f:d8:6f:df:80:63:51:1b:ab:9e:23:
c8:5b:10:81:b0:19:ad:98:2f:20:7c:ba:5f:c9:6f:
03:44:be:48:15:58:83:eb:40:dd:05:2e:de:81:61:
fe:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FC:41:AE:DD:EB:5D:76:83:51:D7:5A:29:AE:D5:DF:02:76:B4:BB
X509v3 Authority Key Identifier:
keyid:51:E3:9A:67:76:93:BA:FB:79:24:D6:EA:84:69:78:CF:4C:68:B8:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeOaZ3aTuvt5JNbqhGl4z0xouMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/sPxBrt3rXXaDUddaKa7V3wJ2tLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4791e2-df25-4c7c-89df-76ec4acbb726/1/UeOaZ3aTuvt5JNbqhGl4z0xouMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.166.0/24
Signature Algorithm: sha256WithRSAEncryption
66:7f:3b:06:56:ca:fc:44:03:f0:47:4b:d3:ad:c7:e2:08:02:
ac:65:43:d9:ea:50:07:38:07:0a:88:85:6d:ed:01:ae:89:9b:
9b:49:4f:b2:ee:a6:29:ef:32:22:72:a8:b7:6c:12:6e:44:c3:
91:3c:ea:7b:d4:62:c9:da:f8:53:b9:1c:26:5e:6d:43:4f:9e:
d2:d2:87:c4:a0:09:0d:d7:f7:7e:c1:e8:3a:8a:74:8e:f5:2b:
27:d9:04:be:c4:21:c3:6f:a6:9b:1d:cc:5e:55:7c:66:c0:7a:
72:7e:c3:85:de:78:f9:94:ee:8c:05:64:48:70:a9:55:0a:54:
d0:0e:83:dc:45:e0:fd:92:72:6b:4b:d8:48:0f:d6:42:fa:a7:
d1:0c:c6:eb:1e:1a:0d:40:ba:4c:84:1f:60:1c:03:ec:29:f5:
df:a1:9a:10:8c:70:30:8b:65:fa:df:9e:44:42:59:cb:a2:7c:
96:f2:04:5b:59:75:24:fa:72:59:ce:1e:c9:6e:97:db:69:73:
f7:fe:4d:6e:68:63:7d:da:35:44:ba:a3:4d:5a:d2:d0:ce:da:
45:64:06:74:c2:42:56:05:7d:33:25:cb:fa:9d:b5:a4:02:42:
c4:47:ac:7c:58:7b:5e:8e:9e:2e:fa:63:d3:b5:68:b2:ec:36:
35:03:a4:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:45 2024 by rpki-client on console-fra.rpki-client.org