Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/9ZkBWNx4cdIlj-C89D138u2RCT0.roa
File: 9ZkBWNx4cdIlj-C89D138u2RCT0.roa (raw, json)
Hash identifier: YN5cHuDCFygSKXn8Rc3vhCLGMp7a80/tjPlVwwTPRgI=
Subject key identifier: F5:99:01:58:DC:78:71:D2:25:8F:E0:BC:F4:3D:77:F2:ED:91:09:3D
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018A5FA46860B11922D83CE5401FC60D2550
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/9ZkBWNx4cdIlj-C89D138u2RCT0.roa
Signing time: Mon 04 Sep 2023 10:02:04 +0000
ROA not before: Mon 04 Sep 2023 10:02:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47728
IP address blocks: 193.238.132.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 04 Sep 2023 17:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5f:a4:68:60:b1:19:22:d8:3c:e5:40:1f:c6:0d:25:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Sep 4 10:02:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5990158dc7871d2258fe0bcf43d77f2ed91093d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6d:fa:fb:5e:60:cc:a1:73:03:ef:1d:1c:8a:
b9:8e:90:a7:31:46:36:51:3f:26:e0:12:a3:a4:a1:
f9:9e:76:c8:1a:6d:48:1e:3e:d1:ae:c9:f4:e8:6f:
5a:23:01:b6:f3:98:e6:cf:99:cc:20:90:43:fb:0f:
36:db:60:07:87:22:6f:84:f5:7d:c4:c0:47:ab:e3:
bc:58:f4:7b:4f:df:5c:52:8c:ac:8b:d1:bb:bb:39:
d5:14:4d:21:c3:87:55:b8:0f:a9:ba:05:6a:62:86:
1b:09:e6:14:b9:eb:31:79:8f:6c:af:bc:c1:80:03:
a4:09:0b:1c:ba:d3:51:9a:22:d8:29:72:dd:7b:d2:
e9:e9:cf:63:b8:46:1d:6f:9c:5e:28:b8:b3:f1:bf:
55:7e:8b:0b:9e:c9:c5:1b:ed:d0:55:80:15:8e:d0:
5b:23:9f:41:c9:64:81:7f:29:53:c2:d5:0d:d5:59:
8a:ce:a8:1e:fe:8d:a3:22:18:d4:ec:7b:ed:c0:eb:
a0:50:94:3f:30:3b:77:ee:51:89:d9:ff:24:7b:d3:
99:00:4e:48:83:ab:53:cb:32:5c:f9:7d:7f:60:33:
37:e0:8b:15:bb:8b:55:cf:55:0c:a0:b7:f8:c4:12:
65:05:b0:1e:34:e1:2a:91:35:60:c5:79:c3:b8:39:
0f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:99:01:58:DC:78:71:D2:25:8F:E0:BC:F4:3D:77:F2:ED:91:09:3D
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/9ZkBWNx4cdIlj-C89D138u2RCT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.132.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:f8:5a:87:0a:46:30:ae:1a:92:28:d1:e0:b3:f6:1b:64:cf:
c4:c9:bf:7f:25:0a:d6:63:7e:b6:82:32:c9:7c:c1:26:37:1c:
a5:0a:e5:b6:b2:9d:09:4d:52:3a:79:80:1c:8f:54:5f:54:ea:
d8:d0:bc:90:5a:4e:97:e6:8d:ef:01:78:eb:24:7d:a7:ba:04:
cc:69:b9:e7:61:51:0a:34:fc:77:f2:4f:0e:c8:58:fa:0f:03:
4a:bb:c5:52:46:50:58:9f:69:fc:61:df:dc:59:08:ee:94:4e:
32:ec:12:66:e7:59:78:20:6b:70:f3:a9:1d:06:f4:77:00:dc:
7e:ff:5d:d9:42:1a:fd:0a:7f:a0:48:df:f6:b0:6f:7a:61:00:
ed:fd:0f:3e:9a:2e:16:ce:05:30:36:fc:1d:c0:6f:0c:ae:2a:
a8:5b:42:26:85:b7:d0:bd:4b:98:34:ab:55:f0:0f:0a:27:4f:
56:e7:4f:fc:1d:f5:e1:ad:e9:50:2a:d8:68:23:93:c8:23:41:
8d:e6:51:07:b5:1b:dc:c2:86:5c:26:58:d1:e9:b9:de:6b:a0:
34:b9:f2:56:b8:70:74:48:2d:17:50:18:0b:89:c8:95:9b:e1:
f6:c1:3b:22:ad:11:2d:6d:e0:d5:5e:21:5b:7c:41:00:de:bd:
77:a0:31:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org