Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/I0qTx8NscTL3KOBV0-Nox6DGqrE.roa
File: I0qTx8NscTL3KOBV0-Nox6DGqrE.roa (raw, json)
Hash identifier: sZ77jWJOnw9loUAvdVwUrUM2VTHgv79Kul6A0thhJfg=
Subject key identifier: 23:4A:93:C7:C3:6C:71:32:F7:28:E0:55:D3:E3:68:C7:A0:C6:AA:B1
Certificate issuer: /CN=bebf09c2f8fff97ef8aec2f8173578d0a3a74c81
Certificate serial: 01857246FA7BF059D7893450A816446AA9BD
Authority key identifier: BE:BF:09:C2:F8:FF:F9:7E:F8:AE:C2:F8:17:35:78:D0:A3:A7:4C:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vr8Jwvj_-X74rsL4FzV40KOnTIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/I0qTx8NscTL3KOBV0-Nox6DGqrE.roa
Signing time: Mon 02 Jan 2023 11:38:52 +0000
ROA not before: Mon 02 Jan 2023 11:38:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43014
IP address blocks: 193.200.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:fa:7b:f0:59:d7:89:34:50:a8:16:44:6a:a9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bebf09c2f8fff97ef8aec2f8173578d0a3a74c81
Validity
Not Before: Jan 2 11:38:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=234a93c7c36c7132f728e055d3e368c7a0c6aab1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bb:fb:f2:5d:28:e3:c1:04:02:30:57:01:ee:
76:5a:da:1f:5e:6d:04:8d:53:c7:a3:13:a7:0b:84:
3f:0a:d2:3f:fd:f5:f0:8b:e2:4e:79:b8:1b:08:f1:
14:83:55:9c:d3:ad:68:7e:05:20:5c:4b:fe:66:0b:
21:81:5b:50:ff:8c:5f:da:0c:09:42:d3:d3:a0:af:
dd:8d:62:04:5a:0e:39:5e:32:73:cb:ae:b8:2c:41:
46:fe:1c:34:de:bc:57:a3:f2:74:e7:2a:ba:38:be:
bc:68:bd:ea:83:2e:e2:70:55:4e:6e:8a:07:08:de:
7b:bb:ce:11:4e:c1:d0:04:9c:ae:96:6d:86:c8:5d:
b2:42:82:f6:d0:6e:cc:71:f0:f3:b7:41:a9:26:93:
9d:b8:3a:4c:72:d0:dc:33:ad:25:05:6f:83:0e:df:
66:e2:3e:7d:0f:a1:28:61:9f:b4:f7:6d:0f:c5:1c:
0c:7b:03:10:42:c3:44:1f:33:4e:7a:11:ff:ea:81:
4c:c6:78:fb:b7:96:c7:28:bf:52:38:e3:f9:b4:21:
8e:62:e8:6d:46:87:fe:82:ed:19:65:b9:b2:0f:c8:
ef:e3:90:d3:56:7e:75:56:04:32:20:88:fa:89:49:
2a:c9:47:5a:67:53:4b:b1:ca:25:72:71:7e:b7:d6:
d6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:4A:93:C7:C3:6C:71:32:F7:28:E0:55:D3:E3:68:C7:A0:C6:AA:B1
X509v3 Authority Key Identifier:
keyid:BE:BF:09:C2:F8:FF:F9:7E:F8:AE:C2:F8:17:35:78:D0:A3:A7:4C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vr8Jwvj_-X74rsL4FzV40KOnTIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/I0qTx8NscTL3KOBV0-Nox6DGqrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/vr8Jwvj_-X74rsL4FzV40KOnTIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.177.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d5:08:f9:b2:e3:b2:d3:28:95:fe:40:a0:7d:25:3c:63:da:
b8:f6:77:de:7f:79:f8:1a:a4:c5:e1:c7:dd:a8:65:d2:81:f7:
a8:8f:f2:f1:50:7f:53:e6:2c:90:8c:1b:9d:8f:91:82:06:af:
e3:f4:f5:cf:7f:a6:a1:d2:8b:2f:13:34:70:50:32:f8:70:c4:
41:79:f5:32:26:db:c6:28:13:b6:d0:83:56:e5:2e:5f:e5:18:
18:be:de:1f:7c:97:9f:59:16:3c:be:7d:1f:1b:20:ce:d6:fb:
39:7a:d1:2b:33:37:c3:b9:00:b1:6f:46:6b:76:11:8f:5e:c4:
6d:96:93:94:72:6b:60:35:2f:1f:b2:8d:55:f1:1f:3d:a2:e8:
7b:d8:d4:87:85:5d:06:ca:8c:fc:7c:8e:da:aa:fd:96:95:79:
dc:58:54:ac:f7:ed:02:2e:39:53:e9:1e:f0:3d:65:82:56:49:
ff:93:81:b8:29:13:a7:9b:97:fc:9f:6a:2a:e5:0d:72:31:5d:
bf:19:16:ec:bd:f1:ad:11:d1:60:bb:24:9e:e0:c0:a3:93:25:
1b:5d:fa:2f:7d:44:28:b1:29:4b:43:a0:1e:ce:db:d9:5c:dc:
71:3f:0e:a9:fc:62:4e:70:75:f9:40:b3:f7:d0:2f:d1:d5:f5:
56:90:bf:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:54 2024 by rpki-client on console-fra.rpki-client.org