Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/o0p0V9GuXZHZLO5A56RS8-7mybg.roa
File: o0p0V9GuXZHZLO5A56RS8-7mybg.roa (raw, json)
Hash identifier: xoK6EloLFFtghbLGcqIADrpAMpCVaZf6eq2cmigoOxg=
Subject key identifier: A3:4A:74:57:D1:AE:5D:91:D9:2C:EE:40:E7:A4:52:F3:EE:E6:C9:B8
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 0188534DC1F0E1CB743EB3C3E34FBD5275AE
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/o0p0V9GuXZHZLO5A56RS8-7mybg.roa
Signing time: Thu 25 May 2023 14:26:24 +0000
ROA not before: Thu 25 May 2023 14:26:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207263
IP address blocks: 193.140.72.0/22 maxlen: 24
193.140.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 May 2023 08:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:53:4d:c1:f0:e1:cb:74:3e:b3:c3:e3:4f:bd:52:75:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: May 25 14:26:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a34a7457d1ae5d91d92cee40e7a452f3eee6c9b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:57:b1:d6:4f:94:f9:c3:d5:bc:09:e6:48:56:
c9:64:95:01:1d:24:d2:b4:60:4e:79:46:0e:2c:06:
3e:38:11:30:6a:da:63:30:f1:41:f0:65:18:ea:0f:
93:7a:70:ac:85:d0:9d:c8:3b:31:3f:f9:17:2f:ce:
15:cb:00:ac:25:65:46:bb:8e:61:e1:d5:85:c0:66:
29:bd:b1:7e:28:ae:53:82:ff:f1:f6:a5:10:1a:99:
9b:58:b2:53:f3:71:70:5d:73:8e:12:8d:ff:68:55:
74:6e:ed:ad:0d:5d:77:f8:f6:07:c3:0f:91:19:ab:
06:16:5b:0f:19:65:86:8d:87:e7:e9:d0:50:b0:28:
9b:24:46:14:11:d4:6a:65:34:b8:78:44:85:e4:41:
1f:e2:02:76:1a:6d:2b:b2:d0:83:5d:e0:3c:f5:a4:
d4:5c:76:e9:c9:77:1f:73:a4:82:2e:8b:92:39:d2:
3f:fd:64:0b:b3:7a:9d:86:ea:a0:7b:b0:9f:9c:12:
22:40:02:75:48:7b:af:ea:e0:5b:e5:91:8d:04:8a:
e3:da:64:d9:29:dd:66:44:e8:46:97:c2:f1:fa:f7:
de:03:c7:c9:52:ad:8a:32:14:00:7e:33:10:7e:35:
42:95:f9:1e:f6:c7:74:c8:f2:4c:67:95:d9:e3:b2:
77:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:4A:74:57:D1:AE:5D:91:D9:2C:EE:40:E7:A4:52:F3:EE:E6:C9:B8
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/o0p0V9GuXZHZLO5A56RS8-7mybg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.72.0/22
193.140.77.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:b2:f7:ad:08:1a:db:d4:45:51:0a:c5:e5:32:c0:a6:29:05:
95:42:5e:30:96:eb:88:f6:da:ba:1d:71:94:a0:1f:3f:e1:27:
82:e1:38:c4:67:ce:cb:a6:d7:d3:55:d4:2e:cd:61:a2:bd:1b:
03:d6:a5:8b:df:53:bb:b1:4a:d3:8e:aa:32:63:2f:56:a5:3f:
44:24:66:78:f6:6b:32:82:7c:41:32:7b:9a:ad:fc:0f:56:a2:
85:15:61:f1:de:d9:52:ca:4c:f7:51:ed:99:3e:d5:79:77:2e:
3f:68:e3:02:27:6c:77:41:a4:9b:d3:48:42:f0:82:7a:9d:06:
ab:75:3b:27:f2:a5:aa:c9:bd:ce:77:67:b0:fd:54:2a:67:16:
b7:0f:c4:55:62:6a:eb:19:21:10:45:a5:82:82:17:b3:9a:30:
b9:6e:50:6a:34:01:a2:23:f2:04:c3:4e:42:d9:5e:6b:0b:2e:
fd:01:ea:9f:36:91:5e:f9:bd:1a:b6:71:c5:bc:45:42:f8:8a:
41:2a:75:c1:c6:af:a7:3d:12:7a:4c:4d:47:c0:cd:1b:d7:46:
f2:58:c3:7b:bb:ac:04:68:4f:1e:73:7b:f0:d0:3a:ff:4a:dd:
1e:01:ed:6e:f6:49:86:b4:29:f1:af:9d:4f:9b:c2:24:12:e3:
ab:4b:85:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org