Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/1-4iwBc_lnozunru2EVa1OBgNkkM.roa
File: 1-4iwBc_lnozunru2EVa1OBgNkkM.roa (raw, json)
Hash identifier: HUbD75VmH91bQOQ8gJBN2HjrDxPfBAzXMpt/fuJOOaE=
Subject key identifier: FB:88:B0:05:CF:E5:9E:8C:EE:9E:BB:B6:11:56:B5:38:18:0D:92:43
Certificate issuer: /CN=a29d9751f3675f51332734da68ea960260045b12
Certificate serial: 0185C951DE33B177EA5574AF6F2E0DA4BD1F
Authority key identifier: A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/1-4iwBc_lnozunru2EVa1OBgNkkM.roa
Signing time: Thu 19 Jan 2023 09:17:43 +0000
ROA not before: Thu 19 Jan 2023 09:17:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 93.185.152.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:51:de:33:b1:77:ea:55:74:af:6f:2e:0d:a4:bd:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a29d9751f3675f51332734da68ea960260045b12
Validity
Not Before: Jan 19 09:17:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb88b005cfe59e8cee9ebbb61156b538180d9243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:a4:5d:47:0f:8a:a9:a9:26:fc:7f:5f:dd:a2:
bd:0e:7f:77:be:84:71:31:d0:d0:c9:06:42:8a:ec:
b3:75:17:bb:47:46:4f:bb:5e:26:ae:7f:e6:1f:99:
2a:26:06:80:bc:8f:a3:1e:86:a5:94:b6:97:d9:88:
78:33:7c:19:fa:a4:ed:ba:a9:7d:37:56:20:c4:61:
2a:49:66:d6:e4:31:38:71:c3:6a:a2:68:f9:f3:e1:
8c:82:74:25:ab:fd:7d:71:1a:69:fe:d0:e6:75:a2:
03:de:5b:1c:97:97:b1:b8:84:f5:c9:50:84:7e:b3:
96:87:5f:8e:a9:a4:9d:50:be:66:d8:34:09:78:41:
ed:8b:8a:1e:c6:0a:32:70:2b:c4:e2:c6:85:57:6f:
b3:be:1a:c6:2c:b3:c6:f3:68:09:76:57:bb:34:b2:
64:a7:2e:04:1e:33:d3:f0:75:32:69:5a:7c:c3:90:
d5:95:c2:ed:3b:eb:a1:66:ef:1f:d5:58:fa:7e:8a:
71:f7:6d:a3:bc:37:1f:f9:91:0b:b3:ed:0e:7c:3f:
74:75:e4:a2:0a:07:b9:c7:4b:40:f6:90:63:93:dd:
fc:c0:46:58:d1:24:c8:95:07:5f:1a:85:3f:bf:da:
53:b7:13:d5:9d:c2:69:e2:29:7a:a3:12:19:28:d4:
de:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:88:B0:05:CF:E5:9E:8C:EE:9E:BB:B6:11:56:B5:38:18:0D:92:43
X509v3 Authority Key Identifier:
keyid:A2:9D:97:51:F3:67:5F:51:33:27:34:DA:68:EA:96:02:60:04:5B:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/op2XUfNnX1EzJzTaaOqWAmAEWxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/1-4iwBc_lnozunru2EVa1OBgNkkM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e64398-9601-4b7c-b783-079ba0570f75/1/op2XUfNnX1EzJzTaaOqWAmAEWxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.152.0/22
Signature Algorithm: sha256WithRSAEncryption
58:eb:6e:c1:63:a3:9e:72:7e:1a:5e:a0:ad:a7:26:02:d1:46:
e4:e3:ee:80:27:36:d7:94:6c:8c:f1:3e:44:4f:6c:d1:a4:b5:
d7:a7:46:c0:20:66:65:fe:27:73:70:3d:5d:55:5b:24:1b:87:
ed:bf:d1:61:a2:64:36:05:fc:e7:62:9c:ca:e1:18:2e:5a:cb:
5a:44:07:08:d6:69:f2:3b:ae:4c:6b:ad:08:53:6a:cc:13:f6:
10:e6:9c:22:48:96:d6:f7:44:27:29:46:69:1a:b4:b0:83:59:
e4:94:85:53:a9:9e:8a:a7:31:5d:8b:82:35:9d:a9:2e:d0:e1:
2f:e3:03:6a:14:29:ad:93:c0:95:8c:de:7a:5b:a9:93:3c:d1:
61:aa:ff:de:d1:e4:11:40:bb:6e:bb:7b:02:03:5a:b5:b0:86:
99:09:d0:06:30:13:94:64:02:69:22:55:d9:8e:50:e7:b6:c7:
55:1b:71:68:51:2d:ad:aa:a0:5a:14:fa:9a:28:5f:8c:5d:ea:
3c:77:3c:8b:b4:f4:63:fc:a0:9b:4b:ca:e0:a8:86:2d:32:33:
7a:4e:4e:b1:0e:29:cb:a4:c1:3b:22:28:02:fa:b2:20:4e:68:
57:18:3c:be:89:b9:ea:d3:a7:6f:2d:c8:46:eb:fe:01:76:89:
bb:ae:1a:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:05 2024 by rpki-client on console-fra.rpki-client.org