Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/AnIA-NxpEOq52gLwEX8U_ObXDHc.roa
File: AnIA-NxpEOq52gLwEX8U_ObXDHc.roa (raw, json)
Hash identifier: 6qLNVMx20dQkb+JGY1loPMK3BZg9cKf+CKviKKd7Qhk=
Subject key identifier: 02:72:00:F8:DC:69:10:EA:B9:DA:02:F0:11:7F:14:FC:E6:D7:0C:77
Certificate issuer: /CN=81300300de5005ada2bb66c268998a40c33ad23b
Certificate serial: 01856F6FFE3FC173BB761DFFE2CE7BB71AEF
Authority key identifier: 81:30:03:00:DE:50:05:AD:A2:BB:66:C2:68:99:8A:40:C3:3A:D2:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTADAN5QBa2iu2bCaJmKQMM60js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/AnIA-NxpEOq52gLwEX8U_ObXDHc.roa
Signing time: Sun 01 Jan 2023 22:24:48 +0000
ROA not before: Sun 01 Jan 2023 22:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12941
IP address blocks: 193.141.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:fe:3f:c1:73:bb:76:1d:ff:e2:ce:7b:b7:1a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81300300de5005ada2bb66c268998a40c33ad23b
Validity
Not Before: Jan 1 22:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=027200f8dc6910eab9da02f0117f14fce6d70c77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:21:6c:7d:19:b4:1b:94:cc:40:be:25:2e:52:
29:28:d5:52:8d:75:5c:49:7b:1e:b5:44:7f:09:ad:
31:d7:47:f2:bf:e9:3d:e0:df:9c:cc:5b:58:5c:d1:
1f:40:28:77:3e:c7:66:f9:05:39:48:ce:65:7d:30:
b4:13:62:98:b3:38:32:0f:4a:01:58:8a:35:e3:93:
22:15:a8:48:d8:6e:e8:cb:9a:23:6f:44:20:0f:b9:
24:84:f5:ac:ab:a3:e5:1c:a7:f5:9b:a0:2a:1e:6e:
9e:a4:e7:fe:ab:99:b6:72:6d:64:a9:9c:b1:99:33:
e1:86:f7:41:d6:04:95:f9:c7:27:2d:e7:c1:01:85:
c9:74:85:02:82:c6:39:f5:7f:8f:0d:61:47:f3:20:
ca:45:3a:10:e2:80:fd:b5:d3:12:eb:a6:3c:b4:f7:
55:71:d1:8b:a5:7a:ab:be:7a:d4:27:02:90:24:df:
cb:e5:7c:27:7b:95:e7:40:e5:d4:7e:04:6b:a1:0a:
4b:c7:c7:3f:b5:61:d8:68:b2:c9:6e:a9:a1:81:c3:
24:02:ce:d7:fb:1e:50:89:1a:83:7a:21:7e:40:00:
69:d2:8c:fb:12:08:2a:16:fd:a1:f9:07:8a:f1:27:
c8:74:06:69:01:5d:61:f3:33:d3:69:00:62:97:7f:
fc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:72:00:F8:DC:69:10:EA:B9:DA:02:F0:11:7F:14:FC:E6:D7:0C:77
X509v3 Authority Key Identifier:
keyid:81:30:03:00:DE:50:05:AD:A2:BB:66:C2:68:99:8A:40:C3:3A:D2:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTADAN5QBa2iu2bCaJmKQMM60js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/AnIA-NxpEOq52gLwEX8U_ObXDHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/dbad88-f818-431e-87a6-dfee984037ac/1/gTADAN5QBa2iu2bCaJmKQMM60js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.176.0/24
Signature Algorithm: sha256WithRSAEncryption
47:08:a5:08:4a:36:7a:86:d7:f5:54:4f:51:01:70:f7:4a:98:
a3:aa:df:0c:44:33:18:b3:de:0c:f3:be:50:41:20:67:da:a7:
88:a9:f0:24:70:66:02:fd:ca:cf:55:20:5a:7a:46:3d:3d:08:
92:4e:8e:2b:16:19:5f:d6:b0:c7:4d:97:db:e1:8a:93:ce:31:
0d:cc:12:3c:7c:b4:24:c6:e9:62:0f:78:1a:2d:b2:69:48:01:
0a:8c:8c:02:53:7a:e4:73:46:be:c8:9c:09:59:a4:c8:29:ad:
73:80:c7:3d:58:c7:ef:aa:a4:c4:65:94:9e:6c:4c:e3:24:25:
cd:f6:12:57:f0:e0:cf:6a:30:31:a8:e6:87:ab:d3:78:78:b2:
37:cb:31:19:b1:9a:ab:ba:59:8f:5c:93:fc:1f:b4:ec:d0:59:
af:1e:c5:d8:1d:ff:23:16:c8:a5:f9:14:6f:f9:4c:f6:ed:d7:
07:b1:69:b3:0d:ba:20:35:c7:a0:3f:e4:58:b0:a9:94:ab:68:
4e:31:93:97:00:78:03:1c:dd:1c:24:9e:fc:88:68:55:af:0a:
24:83:89:a1:d0:4d:18:ed:c2:83:e9:3d:f3:5c:89:21:4a:ad:
0f:f5:68:cc:31:fa:d1:b1:54:90:b9:39:39:17:34:58:ca:96:
70:cf:2f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:19 2024 by rpki-client on console-fra.rpki-client.org