Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/92be6a-92c5-4537-ac32-139536952896/1/F3MnXHdT1N-C7FN81BBtCMnWBbE.roa
File: F3MnXHdT1N-C7FN81BBtCMnWBbE.roa (raw, json)
Hash identifier: vsF8DiOKQPyezb8d65ZYqj9RMNAKye3acRPDKTYnb/A=
Subject key identifier: 17:73:27:5C:77:53:D4:DF:82:EC:53:7C:D4:10:6D:08:C9:D6:05:B1
Certificate issuer: /CN=4c3f428fd9834cd5ec9bb160f8b6dcf446ef5d93
Certificate serial: 01856FF04E64F36F62FD21FEBF681F39E7CF
Authority key identifier: 4C:3F:42:8F:D9:83:4C:D5:EC:9B:B1:60:F8:B6:DC:F4:46:EF:5D:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TD9Cj9mDTNXsm7Fg-Lbc9EbvXZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/92be6a-92c5-4537-ac32-139536952896/1/F3MnXHdT1N-C7FN81BBtCMnWBbE.roa
Signing time: Mon 02 Jan 2023 00:44:57 +0000
ROA not before: Mon 02 Jan 2023 00:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31711
IP address blocks: 193.28.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:4e:64:f3:6f:62:fd:21:fe:bf:68:1f:39:e7:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c3f428fd9834cd5ec9bb160f8b6dcf446ef5d93
Validity
Not Before: Jan 2 00:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1773275c7753d4df82ec537cd4106d08c9d605b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f1:e6:31:99:ea:f9:a4:51:21:82:e3:cd:6d:
1f:f4:01:f4:80:5a:1b:47:1b:f8:93:dc:13:79:91:
30:b1:43:27:64:e2:37:4d:2a:cd:6d:89:d0:2f:bc:
e4:88:34:2e:c4:0d:c1:08:68:95:34:8b:47:8d:1d:
82:5f:15:c9:83:38:24:45:96:01:10:17:01:aa:7a:
66:ef:7f:a7:09:b2:1b:60:10:ff:61:6a:d0:7d:06:
a6:fe:c7:85:57:a2:1d:bb:8f:91:f0:b9:38:5d:e7:
06:34:ec:31:87:6a:8f:2a:18:bf:70:ac:f6:51:93:
07:8e:f5:86:fc:5b:47:1f:35:ad:0f:34:da:b2:d2:
18:02:36:dd:e9:8a:40:82:05:e1:37:42:42:6d:02:
04:c5:e5:2d:58:d0:42:04:b6:0e:fa:b5:20:65:74:
8f:ef:99:b1:1e:de:12:18:da:0d:a4:a3:cd:ec:5e:
4d:1d:fd:a5:87:a2:7d:86:7c:2e:6c:6b:0f:f3:c8:
fb:cf:f3:9d:e9:d1:a3:3d:b0:88:71:31:ee:ac:a3:
51:fc:52:a5:98:4c:e3:38:9e:90:01:10:e0:66:ea:
8c:0b:59:fb:28:06:7e:cb:3a:bc:56:b4:c2:6b:63:
21:e2:a9:8e:37:11:b7:2a:96:40:4f:d8:11:74:cb:
77:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:73:27:5C:77:53:D4:DF:82:EC:53:7C:D4:10:6D:08:C9:D6:05:B1
X509v3 Authority Key Identifier:
keyid:4C:3F:42:8F:D9:83:4C:D5:EC:9B:B1:60:F8:B6:DC:F4:46:EF:5D:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TD9Cj9mDTNXsm7Fg-Lbc9EbvXZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/92be6a-92c5-4537-ac32-139536952896/1/F3MnXHdT1N-C7FN81BBtCMnWBbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/92be6a-92c5-4537-ac32-139536952896/1/TD9Cj9mDTNXsm7Fg-Lbc9EbvXZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.146.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:ff:08:82:8f:b0:ea:98:56:f9:d9:60:f7:3e:26:5f:e3:f6:
4b:31:40:f7:fa:60:19:7f:ae:d6:29:4e:05:28:87:11:2e:28:
40:51:1f:47:24:76:ff:2c:e5:c6:f3:4f:2c:d9:4a:fc:64:8b:
94:59:e9:c7:bf:e2:c2:75:c1:e2:6d:39:45:0f:fd:fc:3b:98:
88:85:28:b3:92:0b:1d:58:dc:dd:27:1c:a2:bf:b8:90:8b:ab:
47:e1:3a:a3:cb:aa:86:bf:43:3b:43:57:a2:83:22:77:36:ec:
eb:42:31:8e:74:ae:b7:2a:f2:8f:f5:37:55:f8:85:3d:91:25:
ce:c6:10:ba:f9:d7:f8:95:9b:64:21:9b:5a:28:c7:29:41:80:
75:11:c9:30:97:90:64:ae:02:d9:7c:85:c3:bc:3d:64:0d:25:
68:ed:24:3a:90:de:7a:5a:64:8b:12:aa:68:03:93:34:d5:86:
b7:4f:3f:78:d9:36:19:7b:ab:ac:54:51:47:75:0e:a3:f3:d5:
06:de:69:cd:8b:ed:82:79:53:a5:a8:a2:f6:d2:7e:76:65:8b:
58:48:5b:61:71:a1:d1:15:fa:f5:8c:06:9c:c9:9d:e9:2f:f7:
a2:86:dc:9d:ba:c0:bb:4e:b2:0f:d0:1d:df:6f:9e:02:bd:a5:
a6:14:90:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:11 2024 by rpki-client on console-ams.rpki-client.org