Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/dE9VxWSEUcG0W4y3WwsozuUQYp8.roa
File: dE9VxWSEUcG0W4y3WwsozuUQYp8.roa (raw, json)
Hash identifier: 4/7ou75BVfZHwJ75mR9qZdyscKCFuaYtC6upstCGC1U=
Subject key identifier: 74:4F:55:C5:64:84:51:C1:B4:5B:8C:B7:5B:0B:28:CE:E5:10:62:9F
Certificate issuer: /CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Certificate serial: 01856F1D8E453E3B3C7ED2FA8355FA3ADC32
Authority key identifier: EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/dE9VxWSEUcG0W4y3WwsozuUQYp8.roa
Signing time: Sun 01 Jan 2023 20:54:45 +0000
ROA not before: Sun 01 Jan 2023 20:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209357
IP address blocks: 193.32.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jul 2023 10:28:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:8e:45:3e:3b:3c:7e:d2:fa:83:55:fa:3a:dc:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Validity
Not Before: Jan 1 20:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=744f55c5648451c1b45b8cb75b0b28cee510629f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:90:55:5e:4f:92:32:2d:77:cf:f5:1d:3d:
98:4d:79:0a:c8:5f:fb:01:a8:22:ba:82:cd:f7:72:
8c:12:88:58:9f:81:b0:c5:ef:25:cf:b5:3d:f5:6d:
7c:fb:b8:c9:46:24:9c:36:7c:4b:37:4a:1b:2b:d7:
47:4a:a4:eb:09:3c:8e:0c:e4:96:2f:77:41:b1:0c:
2a:82:0d:f9:3a:78:4a:87:09:72:d8:b4:dd:75:ab:
a0:14:8d:5b:29:00:2e:d7:a6:9d:9f:d0:66:17:2c:
8f:9b:a5:99:47:f3:be:e7:08:bd:d4:c9:bf:6b:4f:
61:09:0c:61:c9:67:45:90:96:16:ff:c5:be:60:f0:
fd:ba:f4:1d:cd:b2:3d:30:3d:9f:61:cb:8a:50:a0:
13:7e:4b:c1:9a:75:01:25:4e:a3:97:02:aa:9f:3a:
59:31:c8:d8:0c:e7:39:99:8e:e3:24:7e:12:d5:e7:
d1:d8:cf:ce:47:13:c0:3c:bc:a1:91:62:d4:ba:1c:
fd:f0:3f:c0:93:b6:f0:a6:e8:d1:aa:d8:ba:1d:1f:
12:df:ff:3f:6f:62:ab:34:2c:99:33:73:56:00:88:
05:19:8a:d2:17:36:b1:98:7c:a3:f8:b1:18:75:f3:
b0:81:98:13:94:4a:93:67:9f:27:04:71:05:a4:bc:
c4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4F:55:C5:64:84:51:C1:B4:5B:8C:B7:5B:0B:28:CE:E5:10:62:9F
X509v3 Authority Key Identifier:
keyid:EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/dE9VxWSEUcG0W4y3WwsozuUQYp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/7PfKn_r-cqMJZvfkPZK1jndM50E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.176.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ff:fe:be:4d:a3:bb:d7:fd:d3:20:a2:b6:c6:2e:f9:00:f0:
b5:1f:cf:7e:31:0b:de:e3:e9:68:b6:3d:b3:1e:b7:92:c9:bc:
8d:e2:01:4b:ff:87:80:2d:04:78:de:71:80:8b:17:3d:39:81:
bd:f4:b4:f3:a9:94:82:a9:20:3e:d9:1d:c0:cd:a9:99:e2:a0:
09:f1:03:3c:c9:30:db:40:bb:12:0d:e5:53:eb:8b:07:23:f4:
ec:b0:64:b3:4a:27:01:9f:c8:68:12:3f:0e:46:16:36:c3:66:
16:99:12:69:94:61:28:a6:d7:d5:9d:92:64:50:7a:72:a2:37:
27:4b:3d:0d:97:18:80:1a:a4:f5:27:37:a0:6b:1c:17:54:a5:
f8:33:de:de:2c:ad:9e:e4:c1:8c:97:36:33:dc:64:ff:ff:dd:
17:f2:84:f8:46:9c:bf:f9:bd:fd:b5:95:cb:13:6f:24:d0:ef:
0f:2f:61:5d:3a:fc:94:e4:27:ae:c6:36:ef:27:2f:29:2c:6a:
32:bb:fa:61:07:03:d2:69:8c:cb:40:22:11:1d:41:6e:f2:11:
71:2d:07:e6:8a:ae:e9:d7:6e:74:f4:78:99:4b:cd:9b:dd:d4:
8c:03:2c:83:d3:e7:25:7d:92:98:39:8c:f0:2c:5b:95:03:31:
3b:f3:07:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:18 2024 by rpki-client on console-ams.rpki-client.org