Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7494cf-3bdb-4fc7-9093-4e4abedc809f/1/l5nCu_zsXQXxltqFsqeEV48TB9M.roa
File: l5nCu_zsXQXxltqFsqeEV48TB9M.roa (raw, json)
Hash identifier: LIkTJPAqIZ+xBsxylVXiampltJYY8JFgDE6Ik24SYRw=
Subject key identifier: 97:99:C2:BB:FC:EC:5D:05:F1:96:DA:85:B2:A7:84:57:8F:13:07:D3
Certificate issuer: /CN=cc7e90c9e536c53a08eacc0817bef63fb7068fee
Certificate serial: 018964C05E8BB4A51C745756997B8C4483E0
Authority key identifier: CC:7E:90:C9:E5:36:C5:3A:08:EA:CC:08:17:BE:F6:3F:B7:06:8F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zH6QyeU2xToI6swIF772P7cGj-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7494cf-3bdb-4fc7-9093-4e4abedc809f/1/l5nCu_zsXQXxltqFsqeEV48TB9M.roa
Signing time: Mon 17 Jul 2023 16:47:55 +0000
ROA not before: Mon 17 Jul 2023 16:47:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 193.33.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:5e:8b:b4:a5:1c:74:57:56:99:7b:8c:44:83:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc7e90c9e536c53a08eacc0817bef63fb7068fee
Validity
Not Before: Jul 17 16:47:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9799c2bbfcec5d05f196da85b2a784578f1307d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:90:96:d6:08:7d:75:ee:b3:60:d2:a9:3d:21:
83:30:7f:1e:85:64:ca:4c:8c:76:ba:19:0e:d5:72:
08:c2:1f:25:c8:fc:08:73:4e:fc:30:57:f7:03:87:
fe:5f:1f:81:82:83:b1:34:86:df:ee:14:2e:9c:8e:
a9:b1:7b:76:e9:8d:ca:22:b4:3d:bb:a5:8a:d8:1d:
31:5d:3b:46:df:e4:f0:36:dd:48:66:00:bd:5c:43:
e5:4b:1e:c5:2e:eb:78:23:42:39:8f:c8:40:ba:09:
9e:c3:6e:72:94:47:f7:ce:e7:5e:1b:51:61:da:fb:
8c:54:ac:35:85:aa:eb:8d:e7:d1:42:74:62:51:29:
42:3e:f5:a2:e4:d1:f5:78:0f:ad:8e:f2:a6:24:38:
23:76:5d:14:62:21:7e:1b:bb:23:d7:23:0b:93:c0:
13:f4:46:32:6f:64:ee:cc:9c:a7:2e:c2:02:ee:f4:
87:c1:ac:97:ba:fa:27:26:54:cf:19:47:5e:71:20:
2b:cf:4f:4a:52:ba:2b:f6:7d:23:d9:ac:9d:fd:9b:
19:bd:d4:3a:93:62:0b:4f:7c:45:39:d1:a1:d5:03:
08:19:28:3a:7c:19:99:b9:d5:f5:ce:8a:7b:d2:53:
93:35:6b:af:74:8a:2b:2e:f1:23:33:6b:68:63:59:
9f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:99:C2:BB:FC:EC:5D:05:F1:96:DA:85:B2:A7:84:57:8F:13:07:D3
X509v3 Authority Key Identifier:
keyid:CC:7E:90:C9:E5:36:C5:3A:08:EA:CC:08:17:BE:F6:3F:B7:06:8F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zH6QyeU2xToI6swIF772P7cGj-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7494cf-3bdb-4fc7-9093-4e4abedc809f/1/l5nCu_zsXQXxltqFsqeEV48TB9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7494cf-3bdb-4fc7-9093-4e4abedc809f/1/zH6QyeU2xToI6swIF772P7cGj-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.188.0/24
Signature Algorithm: sha256WithRSAEncryption
26:62:dd:bd:21:d0:8a:d7:e3:94:9e:cf:58:95:88:3e:b7:bb:
73:c2:39:44:30:9f:16:14:4d:f4:94:c0:ae:69:2c:2e:40:41:
ef:8c:b0:a9:d2:8d:a6:67:42:4f:7f:31:b0:de:2e:e0:7e:37:
8b:a2:74:62:59:3d:b7:4e:c9:c2:04:93:7a:a1:d1:01:0e:9b:
4c:ed:b6:8a:72:25:d5:16:28:56:0b:34:30:91:90:fc:78:ec:
e0:5c:c3:3d:2b:65:8f:b3:a5:54:b2:c2:fe:f7:8c:77:4a:5f:
9f:59:c6:bf:ee:1a:62:45:22:c1:1e:d8:1f:af:5b:30:14:ab:
10:b5:c0:68:3e:56:ce:df:07:6e:ea:21:17:8a:7e:87:6d:68:
f4:8f:79:01:6d:5b:7d:c7:33:df:2a:2d:eb:9a:6b:3b:1f:a1:
76:28:61:ed:b6:37:e1:af:e9:8d:72:57:7b:c2:99:ec:e1:24:
87:27:12:ca:07:88:2d:5e:77:90:04:5b:c0:b9:c6:43:fb:ae:
ca:97:69:6a:df:86:c1:44:c1:f7:7b:a8:63:6d:a5:02:c2:55:
b0:32:38:23:89:ce:03:a1:00:16:4d:72:ae:96:22:37:d5:c3:
05:a9:df:2f:9f:4e:0d:e0:6e:63:06:ca:36:a2:06:e7:84:29:
84:b9:91:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:49 2024 by rpki-client on console-ams.rpki-client.org