Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/9viJZUnTbxlhg0vZbbyzOl7h_lo.roa
File: 9viJZUnTbxlhg0vZbbyzOl7h_lo.roa (raw, json)
Hash identifier: Sz+2AEf5ETJkewkonO6nSeiHj+tPaCeKZF7NnusM/kA=
Subject key identifier: F6:F8:89:65:49:D3:6F:19:61:83:4B:D9:6D:BC:B3:3A:5E:E1:FE:5A
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 01856B77B4E087B8EDD67DE8C3E25BC2AAD8
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/9viJZUnTbxlhg0vZbbyzOl7h_lo.roa
Signing time: Sun 01 Jan 2023 03:54:45 +0000
ROA not before: Sun 01 Jan 2023 03:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49369
IP address blocks: 193.169.34.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:b4:e0:87:b8:ed:d6:7d:e8:c3:e2:5b:c2:aa:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Jan 1 03:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6f8896549d36f1961834bd96dbcb33a5ee1fe5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:50:ca:1e:41:10:71:2b:f3:53:b0:4a:4a:ca:
bd:ae:c6:72:f4:7a:10:82:4b:d7:c3:c1:3e:c6:90:
a9:62:69:e6:c0:75:de:95:1a:01:fe:e2:0d:7b:a1:
c6:8a:4a:9d:02:c4:5d:ec:fe:18:0e:50:ed:ba:9d:
2e:23:03:bf:e4:a2:2c:e8:e5:57:56:e1:e1:c3:07:
3c:6d:c1:e2:f7:2d:ec:7d:36:b2:1e:0d:4c:3f:a7:
94:a8:5a:70:a0:09:3f:d9:46:11:64:fd:42:10:82:
91:58:e6:3a:bd:0a:82:f0:e4:5a:b9:c9:ec:30:a7:
72:52:be:e9:13:fa:8b:d8:37:64:f8:12:a9:d9:7e:
94:1e:e0:b7:19:74:47:ee:7d:64:70:28:f0:12:e8:
24:0e:31:40:7f:fe:ae:d5:97:38:aa:ad:af:ec:dd:
e3:4f:1e:7c:00:28:65:0c:56:60:3d:de:0e:10:97:
09:16:ce:c9:24:66:bb:1e:24:65:c6:e8:ba:72:56:
3e:af:dc:c4:8c:f4:f1:e1:07:4e:97:c4:dd:88:76:
1c:61:54:02:01:bb:15:90:fd:cd:09:80:c8:fb:d1:
0d:3b:af:a6:db:d2:ec:f5:be:c1:dc:03:55:f9:7f:
07:08:d5:00:41:8b:a4:b5:22:52:1f:35:5c:aa:33:
58:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:F8:89:65:49:D3:6F:19:61:83:4B:D9:6D:BC:B3:3A:5E:E1:FE:5A
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/9viJZUnTbxlhg0vZbbyzOl7h_lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.34.0/23
Signature Algorithm: sha256WithRSAEncryption
84:fe:1e:35:fa:c5:82:dc:10:a0:a7:e0:ee:fc:41:a1:f6:f0:
99:60:19:25:89:26:90:f1:40:3f:3d:32:f0:80:af:95:5b:11:
a0:fa:f1:2f:a3:7e:17:fe:81:70:22:8b:25:52:2b:3f:53:22:
1f:56:4c:cb:0d:34:0c:cd:d5:ac:73:04:dc:eb:11:42:31:f7:
3f:e4:da:02:2e:b0:18:f0:61:0f:0b:bb:dc:c5:b0:7a:29:8c:
81:b2:ac:72:3f:31:32:c6:a7:1f:6c:83:3f:ec:7e:14:17:43:
aa:53:30:a0:71:ce:98:d2:8d:b0:78:5b:76:13:0f:b7:eb:1b:
1c:58:ec:12:e1:ab:1a:8b:c4:1d:ed:31:c2:aa:37:74:99:fc:
d3:05:f9:32:01:4e:bb:c3:28:08:92:37:7e:8d:ab:06:f4:dc:
dc:28:fb:62:bf:a7:1f:db:c7:72:8f:50:9e:35:7f:d1:7c:17:
50:f5:e7:75:c3:29:b8:42:45:63:cb:84:c6:15:85:e7:cf:da:
ae:e0:43:dd:e7:78:fd:4c:4b:e9:b0:2a:6c:07:33:c7:e2:48:
7e:1a:14:02:aa:3a:0c:5d:63:48:a0:7b:47:cd:a7:e7:bd:53:
24:eb:8e:f4:f9:b2:26:7a:fc:3e:c9:ff:3b:6f:09:1c:ab:22:
66:e2:3b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:00 2024 by rpki-client on console-fra.rpki-client.org