Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/to_30tvU7YzF0WM0OSvliIcDFmE.roa
File: to_30tvU7YzF0WM0OSvliIcDFmE.roa (raw, json)
Hash identifier: FwO5x4xE3JhK7aawExS/1MCALtqyDUSPEN8Pea5V2NE=
Subject key identifier: B6:8F:F7:D2:DB:D4:ED:8C:C5:D1:63:34:39:2B:E5:88:87:03:16:61
Certificate issuer: /CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Certificate serial: 01857246ED72B0F3C31A61B37B9D1C024512
Authority key identifier: A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/to_30tvU7YzF0WM0OSvliIcDFmE.roa
Signing time: Mon 02 Jan 2023 11:38:49 +0000
ROA not before: Mon 02 Jan 2023 11:38:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198221
IP address blocks: 193.168.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ed:72:b0:f3:c3:1a:61:b3:7b:9d:1c:02:45:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Validity
Not Before: Jan 2 11:38:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b68ff7d2dbd4ed8cc5d16334392be58887031661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1e:c0:08:8a:1b:f0:99:e1:35:b8:97:7d:33:
0f:27:98:5b:e7:39:54:54:82:46:48:d3:01:98:50:
80:82:d7:93:e9:9b:39:4a:ad:f7:60:64:6d:62:46:
b7:9f:5d:67:21:ff:2a:af:43:bd:07:95:18:fc:2a:
8b:91:11:f1:55:a9:4d:f1:92:90:f9:e1:ee:b2:a8:
43:c3:f5:d1:f3:9f:82:5c:d7:9e:9d:55:d8:af:45:
56:60:06:d3:c3:96:4d:f6:e6:2b:01:a9:11:8f:6a:
39:32:5e:04:eb:6e:4c:3a:21:53:e3:a8:20:81:4e:
fb:be:3a:d7:88:29:7e:12:8c:89:79:00:34:44:a2:
25:e3:98:70:d5:38:0e:e8:ce:02:f3:e8:5a:6b:e3:
a2:ce:ce:c9:5f:f1:dd:54:f1:19:4a:b8:db:14:6f:
4b:63:ee:c9:e8:a0:fd:fb:b6:c5:31:2c:dd:47:10:
19:e9:8d:c2:c9:e2:e5:98:e7:42:01:6c:f0:e5:0f:
59:5b:be:49:a9:2a:11:97:78:f2:a4:6e:3a:0d:c7:
5e:24:e4:00:df:d0:18:73:58:a7:aa:ee:75:53:e9:
ea:19:2e:a6:cd:f3:1a:47:ff:46:be:5d:d9:aa:e2:
b7:cf:97:ed:a6:98:20:46:07:e6:00:e9:d7:d0:05:
7b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:8F:F7:D2:DB:D4:ED:8C:C5:D1:63:34:39:2B:E5:88:87:03:16:61
X509v3 Authority Key Identifier:
keyid:A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/to_30tvU7YzF0WM0OSvliIcDFmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.54.0/24
Signature Algorithm: sha256WithRSAEncryption
29:14:71:07:1b:5a:c6:11:b6:88:8e:ce:6d:9f:2b:28:90:fc:
24:1b:07:c9:41:7a:bf:47:e3:4e:ba:35:43:cd:99:4d:94:02:
fc:f3:44:a9:6d:f1:be:97:2b:0a:9f:b0:2e:08:c1:5b:b2:45:
69:c1:e1:4e:d0:9c:c8:2b:f0:d3:99:e1:49:61:6a:62:1d:65:
0b:14:e4:3a:8f:47:24:ab:76:e9:5c:c2:9a:03:aa:a9:14:30:
67:66:79:a7:a3:5c:5d:5a:a4:dd:14:9d:f9:fa:60:b3:b5:d1:
5c:cf:17:b0:4d:0f:45:3c:a0:04:95:27:20:d0:36:4b:88:3a:
a7:71:c9:52:81:38:ff:c3:46:d9:f1:32:12:40:c5:08:df:a5:
71:92:16:97:5a:0d:69:dc:65:aa:a2:f6:be:fc:58:53:0c:f4:
b0:65:70:fb:d4:5b:91:c7:04:16:23:03:ec:24:ca:56:e2:2b:
cc:cf:92:cc:77:d6:ef:c4:6b:78:3b:8f:3b:c2:6e:ef:60:5d:
9a:fb:7f:da:ce:fd:4a:11:5d:c3:98:be:84:e6:0c:5b:11:ad:
bb:de:99:ff:71:70:49:7f:3a:2e:39:01:02:03:da:de:d8:c2:
1d:47:5d:98:3e:50:c5:4b:c0:f7:df:aa:28:42:6b:7d:4f:98:
5c:06:6d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:07 2024 by rpki-client on console-fra.rpki-client.org