Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/wrxN8ABvGiulUO9BvmJ3bvJ0CYo.roa
File: wrxN8ABvGiulUO9BvmJ3bvJ0CYo.roa (raw, json)
Hash identifier: DwrwnmRqX0egPGSWEi10c2e+1PQXCjFXoqhnFEEck1k=
Subject key identifier: C2:BC:4D:F0:00:6F:1A:2B:A5:50:EF:41:BE:62:77:6E:F2:74:09:8A
Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Certificate serial: 018571B0AEA9735A2BB77F4F75014223AF69
Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/wrxN8ABvGiulUO9BvmJ3bvJ0CYo.roa
Signing time: Mon 02 Jan 2023 08:54:42 +0000
ROA not before: Mon 02 Jan 2023 08:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57707
IP address blocks: 193.34.80.0/24 maxlen: 24
2a10:d840::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ae:a9:73:5a:2b:b7:7f:4f:75:01:42:23:af:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb
Validity
Not Before: Jan 2 08:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2bc4df0006f1a2ba550ef41be62776ef274098a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f6:76:57:8c:96:2e:24:30:2b:3f:67:1e:a1:
af:c8:9e:86:61:73:33:9e:57:2e:d8:eb:d5:f1:6f:
8f:fa:ea:cf:7b:c3:40:06:eb:a3:1d:fc:77:9b:0b:
06:ba:f7:88:bc:fd:41:2d:e5:21:a3:ea:80:5b:a3:
1b:9c:9c:94:5a:ff:cf:db:4e:b7:9e:a7:69:2d:c5:
2c:ae:0b:82:a4:cf:60:15:75:cd:d3:00:5d:b0:ca:
72:80:02:e2:25:a1:8d:f7:3b:c5:92:2c:83:a5:b7:
70:c0:50:bb:76:ec:b4:91:a9:8c:59:00:ee:7d:5b:
b6:c6:15:32:6a:45:c3:22:c8:51:9d:1a:1d:37:c3:
e0:55:ea:da:ed:23:6e:b2:f2:07:9c:60:ed:0b:40:
55:50:e9:0b:af:e8:79:ad:e9:ac:4f:ad:02:96:14:
5d:ba:0e:da:cd:32:69:06:bb:15:13:7c:05:04:e9:
7e:32:62:80:96:f9:18:16:60:d6:67:03:2e:7a:37:
6e:49:f1:c0:2b:bc:04:c1:55:93:fa:88:33:c4:54:
af:20:6a:e8:e5:02:a9:8a:a6:dd:32:50:f8:54:b4:
b0:a4:7c:73:fa:40:1f:3b:d5:f8:c3:40:fd:8e:f6:
0b:72:17:21:a1:8b:25:8a:f9:2b:e0:d6:28:a0:b3:
0e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:BC:4D:F0:00:6F:1A:2B:A5:50:EF:41:BE:62:77:6E:F2:74:09:8A
X509v3 Authority Key Identifier:
keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/wrxN8ABvGiulUO9BvmJ3bvJ0CYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.80.0/24
IPv6:
2a10:d840::/29
Signature Algorithm: sha256WithRSAEncryption
20:be:3e:8d:e5:30:91:60:d1:9e:87:24:7d:89:2e:6d:ea:dc:
44:f4:cd:e3:0b:1b:c0:11:f7:8b:c9:58:49:1d:27:49:5d:19:
b2:ec:14:d0:09:5b:08:ac:7f:97:14:bc:cd:a3:ea:5d:23:34:
f7:1a:1e:2a:98:0e:cb:70:6b:19:74:6a:cc:a9:e1:1a:61:6d:
bf:d0:90:15:58:c7:62:bf:e0:62:ef:e6:45:04:cb:dc:fe:01:
0e:07:da:90:bf:73:f9:91:2e:68:c6:ec:62:16:4e:f8:ba:83:
29:d1:27:4f:ca:84:38:e5:cc:cc:c8:64:85:2c:09:04:8d:e3:
3c:ca:7c:5b:bb:23:11:1f:a9:0b:f6:df:f9:8e:45:57:78:6b:
03:35:07:41:5c:93:ed:89:86:78:ec:d2:5f:70:87:e7:21:d7:
13:41:9f:24:b5:26:76:31:d3:29:b3:80:84:38:80:0f:dd:72:
42:93:7a:b0:05:23:f3:ce:af:d9:35:59:3c:90:0e:d1:24:e8:
14:08:a8:8b:2c:3d:57:05:e5:e1:6b:7e:76:a8:21:46:8e:a0:
fc:40:dd:12:b9:a1:8e:29:18:22:38:f2:a0:a6:99:a0:ba:a5:
31:2c:63:7a:1e:6e:c9:76:fd:00:31:4c:71:aa:30:29:33:31:
36:ba:03:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:37 2024 by rpki-client on console-ams.rpki-client.org