Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RRsgstFTA1G40NgGoYx2ctNVeqU.roa
File: RRsgstFTA1G40NgGoYx2ctNVeqU.roa (raw, json)
Hash identifier: XtlCqLCDGggfVS+3N/bQ9Pm/FUrsqma2zJOnVYB/GI8=
Subject key identifier: 45:1B:20:B2:D1:53:03:51:B8:D0:D8:06:A1:8C:76:72:D3:55:7A:A5
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018A6A60CCD501DD58E8F869DDC0058EA7C6
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RRsgstFTA1G40NgGoYx2ctNVeqU.roa
Signing time: Wed 06 Sep 2023 12:04:03 +0000
ROA not before: Wed 06 Sep 2023 12:04:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55154
IP address blocks: 193.124.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 12:06:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:60:cc:d5:01:dd:58:e8:f8:69:dd:c0:05:8e:a7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 6 12:04:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=451b20b2d1530351b8d0d806a18c7672d3557aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:47:f0:9d:b3:bb:97:66:d3:fa:8b:1d:9d:d6:
8c:27:f4:f4:1e:72:b0:28:ed:dc:4b:8c:0e:2f:2e:
f0:e7:4b:a4:ae:6f:25:ce:e3:52:1c:84:47:78:28:
b7:34:0b:38:ed:04:62:d5:7f:0b:c2:7a:f4:60:59:
ff:08:5b:30:24:6d:a5:19:e6:40:99:49:77:ec:cb:
19:7a:43:1a:f2:65:69:e3:89:a1:b1:60:52:2e:1b:
17:7e:2f:c3:52:af:08:75:e2:74:20:c4:7d:8b:48:
00:12:07:76:ad:43:14:50:4d:23:b6:f7:93:d9:fb:
77:4d:b3:39:93:49:9b:df:a6:6a:d9:06:d1:cd:89:
19:6e:cb:42:c3:b5:7d:0d:37:db:03:a7:69:19:fe:
91:b2:d2:5a:38:cf:4a:51:4a:8a:95:e4:43:40:0b:
b2:0c:33:b8:26:1b:ff:09:19:a3:f1:40:0f:7f:69:
a8:18:9c:05:0b:35:c5:39:21:17:8b:a5:08:d9:1d:
c2:f0:dc:41:ae:bc:57:31:c0:50:9c:57:3b:3b:02:
17:4d:2d:df:52:19:fd:e7:3e:4a:3a:e5:50:17:86:
3e:c2:79:6d:d5:7b:70:e8:17:67:62:a7:47:3d:1a:
27:91:d2:e2:f1:c5:6a:7a:81:e8:fb:e3:25:b3:d4:
d0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:1B:20:B2:D1:53:03:51:B8:D0:D8:06:A1:8C:76:72:D3:55:7A:A5
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/RRsgstFTA1G40NgGoYx2ctNVeqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.203.0/24
Signature Algorithm: sha256WithRSAEncryption
39:16:b0:e2:d2:67:41:32:67:d3:ee:4b:5a:2a:ce:62:d8:b9:
57:34:ba:8c:ae:83:55:09:f8:43:a7:73:c3:30:a9:f9:a6:62:
a1:e0:d1:b3:e7:ce:73:94:b4:7c:45:23:3f:2e:f0:55:ec:41:
f4:c2:2a:2b:25:50:e1:01:9b:f5:d9:9a:c1:ff:92:ab:d6:9b:
62:ca:3d:42:60:20:96:54:0a:2b:a0:53:fd:0a:e8:b9:af:83:
2f:ad:6f:15:8b:8d:7d:93:c9:e8:53:8d:e7:6e:56:52:68:38:
68:3b:e8:c7:01:d1:e6:20:51:81:66:9f:da:2c:f1:2d:1c:34:
d7:0f:72:9b:99:de:27:95:89:bc:d5:27:65:6e:8d:54:eb:82:
a9:52:96:f9:cb:e9:3e:5d:af:d3:a3:29:84:e2:65:f7:6d:9a:
be:33:6c:bf:04:75:e7:39:b5:a7:0b:c4:d5:c4:60:93:7d:e6:
15:84:53:a9:d7:5d:ec:a1:53:92:8b:d7:b9:3f:07:72:91:2c:
de:2b:11:c1:74:19:de:5d:33:f3:ec:44:dd:c5:86:37:d1:4f:
9a:ab:c9:f6:59:e6:fb:c4:14:1b:13:d6:15:21:ab:a9:7e:66:
aa:ad:17:4a:8a:3f:74:b8:b5:f4:4e:92:70:51:b9:fa:f3:db:
17:36:c0:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:16 2024 by rpki-client on console-fra.rpki-client.org