Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/7NHKvI1sKhQtTjA_ceA5ICIZR0w.roa
File: 7NHKvI1sKhQtTjA_ceA5ICIZR0w.roa (raw, json)
Hash identifier: LiyW5BKkOnq/9IBrqAvngRzpoykHR/hGWH2HJ5K1wlA=
Subject key identifier: EC:D1:CA:BC:8D:6C:2A:14:2D:4E:30:3F:71:E0:39:20:22:19:47:4C
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018F1FB157199A1EC6A51608903F540DBFF9
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/7NHKvI1sKhQtTjA_ceA5ICIZR0w.roa
Signing time: Sat 27 Apr 2024 13:14:26 +0000
ROA not before: Sat 27 Apr 2024 13:14:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199740
IP address blocks: 193.37.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 28 Apr 2024 05:28:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:1f:b1:57:19:9a:1e:c6:a5:16:08:90:3f:54:0d:bf:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Apr 27 13:14:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecd1cabc8d6c2a142d4e303f71e039202219474c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4f:e6:ac:32:f4:c0:28:36:1f:b2:d0:70:ac:
e2:93:1a:e4:d7:67:18:59:01:db:f3:65:f0:51:52:
d0:a4:f5:42:ee:57:68:02:c1:a4:fa:73:66:90:29:
96:51:a3:e7:b7:c4:99:bf:fa:70:19:fb:0b:21:cb:
2b:4b:ea:75:3b:c3:94:9b:4d:4a:44:a2:e6:16:1c:
c2:c5:e9:54:11:cd:05:56:91:fd:67:9d:1d:c2:82:
e5:ec:0a:f5:25:61:c5:e5:3b:dc:5f:9f:26:71:9e:
50:fc:bf:fe:5e:6e:b6:cf:62:50:82:05:4a:62:9d:
9e:0e:8a:96:aa:d2:0d:51:b3:63:cf:f8:3e:7e:c2:
eb:0e:06:c6:bc:54:59:df:e5:55:39:b4:91:b7:2f:
fa:44:e2:99:b3:22:0e:89:a9:84:dc:38:3f:69:c3:
30:c3:43:7d:d1:a0:4c:4c:1f:79:19:d5:6a:f7:92:
50:ee:ad:be:9b:57:e9:cb:b7:97:2b:b7:67:37:07:
bb:14:99:c9:ac:0f:d1:ca:c0:9c:39:c6:6a:a4:79:
ee:68:59:36:7e:02:96:0d:27:e6:3a:a8:00:84:fa:
87:8a:07:dd:db:09:7c:03:b0:a7:59:3a:7c:38:28:
d4:7b:67:9b:96:11:c9:9b:2f:f4:e5:6b:20:ab:b1:
99:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D1:CA:BC:8D:6C:2A:14:2D:4E:30:3F:71:E0:39:20:22:19:47:4C
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/7NHKvI1sKhQtTjA_ceA5ICIZR0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:3b:24:72:52:a0:9e:ae:fe:39:3c:31:8b:e0:f3:0a:75:42:
bd:cf:a1:6d:7f:56:2a:27:c7:87:8d:7e:53:5e:11:2b:d8:d1:
21:47:fd:1c:3c:fb:6a:ab:5e:3c:25:b5:2c:5b:d9:e3:62:50:
be:7c:00:fd:a1:b1:89:82:ae:31:f2:de:58:5d:3b:02:5a:0f:
a9:75:60:f3:b7:bf:03:2f:a9:74:ae:20:49:3b:86:0b:ff:7a:
ab:f9:c0:bf:33:e8:13:b4:17:20:84:bf:ba:f3:9e:1a:44:3a:
d3:35:b4:9b:13:e7:8c:e6:5f:76:84:24:c8:87:05:1e:0f:5c:
0f:1f:ae:63:13:ab:96:89:52:43:6d:ab:1b:69:c1:38:5c:e4:
a9:bc:59:be:d7:2d:d8:e6:8e:35:af:6c:b8:bd:60:d9:8a:18:
df:d3:4d:ca:7f:11:a7:1c:98:40:f2:bb:ca:c8:ef:f1:e0:35:
47:ea:6d:b3:30:d4:a6:74:1c:e7:c2:30:19:21:81:12:75:12:
b2:68:b0:fa:50:fc:25:d2:34:33:7a:d2:a3:d9:00:13:fb:34:
0a:ab:3a:3c:32:59:82:72:3f:68:37:a5:e8:a0:5d:75:bb:47:
bf:cd:93:1e:8f:ca:30:d2:23:6c:09:d8:95:55:0f:85:d4:78:
a2:f3:fe:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 28 06:39:47 2024 by rpki-client on console-ams.rpki-client.org