Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LUZwmJcvISD0c_yoQ4xqXtEXYww.roa
File: LUZwmJcvISD0c_yoQ4xqXtEXYww.roa (raw, json)
Hash identifier: RUanL/UbgZGwQRyxHvTQmlM8Kdkyf9ZcljaQIaDH8ns=
Subject key identifier: 2D:46:70:98:97:2F:21:20:F4:73:FC:A8:43:8C:6A:5E:D1:17:63:0C
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018E1773627D786A675DD75529A119C503F7
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LUZwmJcvISD0c_yoQ4xqXtEXYww.roa
Signing time: Thu 07 Mar 2024 05:47:01 +0000
ROA not before: Thu 07 Mar 2024 05:47:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 193.37.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 14:34:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:17:73:62:7d:78:6a:67:5d:d7:55:29:a1:19:c5:03:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 7 05:47:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d467098972f2120f473fca8438c6a5ed117630c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:65:c8:af:1a:a0:f5:db:a5:e5:14:54:e7:cb:
49:fc:dc:df:ee:e4:ea:23:dc:48:7e:dc:e2:a2:b5:
d2:dd:63:5c:9c:80:42:f2:09:de:c2:31:12:03:58:
2c:c7:5c:1c:55:21:cc:e1:c0:4d:8d:a7:43:1e:5e:
cf:d1:52:cd:7d:ff:60:30:1b:b0:d0:72:72:44:15:
64:e6:c5:52:f4:a1:58:81:d4:d4:d8:4c:72:17:eb:
9b:01:59:4b:3c:5f:1d:0d:31:18:f1:3d:b4:d5:e3:
2c:0c:b2:69:6e:aa:a0:c7:ed:c2:02:c2:d7:68:66:
12:ea:82:a3:e5:4c:5a:c8:d8:f6:ae:a6:0c:45:8b:
5a:92:70:48:d7:6c:61:27:6a:8a:67:c2:00:22:34:
4a:cd:9d:c0:85:88:be:31:b2:8c:7d:f8:fc:a8:89:
c4:fe:43:63:03:eb:4f:07:af:33:ee:cd:ce:20:c9:
21:46:36:ad:6a:85:f5:a9:34:1b:aa:19:1c:03:f9:
2a:54:c9:3e:32:19:15:2d:52:73:ea:44:b6:26:b8:
c5:5a:92:6e:73:da:99:46:23:b9:8e:a8:16:ea:ca:
69:9e:ab:58:c0:b0:9f:f5:2a:21:fa:eb:07:e7:33:
b5:46:ce:04:8f:5a:f0:75:36:f7:ff:21:4d:44:e7:
e5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:46:70:98:97:2F:21:20:F4:73:FC:A8:43:8C:6A:5E:D1:17:63:0C
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LUZwmJcvISD0c_yoQ4xqXtEXYww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.41.0/24
Signature Algorithm: sha256WithRSAEncryption
63:d1:c6:0e:78:08:5e:1e:13:ae:45:16:ae:6e:ad:39:ed:b7:
81:73:b3:9f:4b:7b:f7:1e:d2:31:b8:9c:5f:6b:df:59:85:d5:
f1:a7:b2:33:3c:32:7a:d3:c7:a2:ae:a2:0a:05:a3:11:f1:7f:
71:e7:25:01:33:94:0b:ff:a2:5f:7a:0e:bd:12:69:db:81:3b:
f2:e2:1b:06:a1:10:b2:08:ca:8f:b2:6f:bc:f8:b8:83:1e:51:
7d:33:75:ac:7c:59:74:e5:52:55:2f:7d:56:a0:45:9f:fe:41:
b3:52:33:b6:41:09:dd:d0:d0:6e:d7:4b:e2:23:e0:94:4a:68:
24:54:02:6a:66:e6:28:b7:03:ba:08:9e:e5:81:29:b3:b3:e4:
99:9a:73:57:66:b9:d9:a4:6b:87:cf:65:aa:0c:09:df:49:5c:
6a:fb:52:ad:35:e5:2a:18:6e:7e:7c:3e:8e:16:82:bf:cf:6d:
ec:5f:5a:0f:dd:6f:34:f1:27:ec:dd:dc:58:b3:a3:d8:b9:f7:
41:b0:65:7e:e5:01:4a:cb:ab:88:3a:e5:dc:9c:75:d6:1f:26:
a0:37:ae:ce:5e:59:9c:04:89:62:aa:27:4a:48:30:03:cb:2f:
05:9b:09:3e:46:33:22:62:3c:f1:2d:14:82:0a:d9:ca:55:e8:
61:33:c1:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:05 2024 by rpki-client on console-fra.rpki-client.org