Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7a0423-9a95-42c1-81e5-14da79d6c3aa/1/rf4Zt93mESmoZyq3CCDMJEYZ5Mk.roa
File: rf4Zt93mESmoZyq3CCDMJEYZ5Mk.roa (raw, json)
Hash identifier: rNSwcopQTkkHh+3aZKjnkUqqjSRo7xoMvggXAmWj6sA=
Subject key identifier: AD:FE:19:B7:DD:E6:11:29:A8:67:2A:B7:08:20:CC:24:46:19:E4:C9
Certificate issuer: /CN=ed95533ef47fd94b8c554df3d228eedcd4ca0384
Certificate serial: 018571F1188295479BD74B118B23F018F2A5
Authority key identifier: ED:95:53:3E:F4:7F:D9:4B:8C:55:4D:F3:D2:28:EE:DC:D4:CA:03:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7ZVTPvR_2UuMVU3z0iju3NTKA4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7a0423-9a95-42c1-81e5-14da79d6c3aa/1/rf4Zt93mESmoZyq3CCDMJEYZ5Mk.roa
Signing time: Mon 02 Jan 2023 10:05:03 +0000
ROA not before: Mon 02 Jan 2023 10:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 193.17.185.0/24 maxlen: 24
193.17.186.0/24 maxlen: 24
195.234.152.0/24 maxlen: 24
2001:67c:1514::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f1:18:82:95:47:9b:d7:4b:11:8b:23:f0:18:f2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed95533ef47fd94b8c554df3d228eedcd4ca0384
Validity
Not Before: Jan 2 10:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adfe19b7dde61129a8672ab70820cc244619e4c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:39:01:44:97:c0:be:d3:2a:d3:5c:d1:c3:d2:
7e:69:df:a5:65:13:bd:95:af:cc:26:77:9b:62:51:
ec:13:3d:d4:bb:62:59:73:23:88:aa:ab:a4:b2:23:
af:79:d0:40:4e:cb:dc:bc:f7:ef:82:28:d7:1e:00:
04:a1:08:15:87:6c:dd:d0:92:e5:21:62:cf:80:07:
34:fb:1a:7b:e2:8d:00:ac:91:f3:84:74:4a:d5:ab:
70:49:18:1b:ef:83:04:c4:2c:86:56:4e:8c:aa:d6:
07:ca:4d:5f:1b:58:05:6e:61:28:c2:c8:34:b9:91:
ce:ca:4d:95:3c:96:f4:f4:15:a6:e4:88:59:08:e4:
1a:14:38:c7:87:27:31:95:d5:d2:de:47:9f:eb:30:
f2:e9:d1:8d:a3:e0:0a:1e:d2:a5:e2:0b:e6:8e:11:
cb:a7:9f:a5:26:79:ce:cf:06:0e:7b:20:16:31:c0:
25:cd:22:62:37:f1:4b:ef:02:56:a4:55:e0:d8:dc:
d7:b0:ab:8c:64:94:a1:da:ad:6e:07:f4:1c:9b:aa:
8b:f6:7b:f2:06:6c:16:eb:47:a7:6b:1d:66:5c:9e:
05:5d:7c:0e:18:81:95:97:e9:b4:53:e8:39:07:27:
73:e3:07:c8:03:b2:36:2b:17:36:9c:00:c5:fe:ce:
f9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FE:19:B7:DD:E6:11:29:A8:67:2A:B7:08:20:CC:24:46:19:E4:C9
X509v3 Authority Key Identifier:
keyid:ED:95:53:3E:F4:7F:D9:4B:8C:55:4D:F3:D2:28:EE:DC:D4:CA:03:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ZVTPvR_2UuMVU3z0iju3NTKA4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7a0423-9a95-42c1-81e5-14da79d6c3aa/1/rf4Zt93mESmoZyq3CCDMJEYZ5Mk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7a0423-9a95-42c1-81e5-14da79d6c3aa/1/7ZVTPvR_2UuMVU3z0iju3NTKA4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.185.0-193.17.186.255
195.234.152.0/24
IPv6:
2001:67c:1514::/48
Signature Algorithm: sha256WithRSAEncryption
73:24:68:92:b7:90:f3:5d:7f:a4:42:7e:44:4a:82:67:7a:3b:
2c:79:43:be:00:f5:12:3f:d2:cb:9b:3d:46:f7:8a:f9:b2:b6:
78:6c:4c:8b:f7:0b:d3:d5:c6:b4:c9:f7:df:15:8f:84:32:ee:
ca:ee:61:42:86:59:7c:d8:26:6c:fe:97:68:3c:73:b3:cb:68:
ed:a5:7e:17:7f:b6:c2:89:fa:09:f0:cb:6c:58:20:15:87:fd:
bc:b0:88:83:a3:86:c5:5d:4b:56:33:0d:73:3f:46:28:1c:3b:
e1:4a:c2:d4:e2:6a:71:4f:90:cc:66:ab:f6:da:2a:22:5d:bf:
e9:13:1e:e9:94:fa:12:21:a1:6f:ec:b8:d4:58:0b:75:e3:60:
d1:7f:65:8c:49:3d:ab:aa:cf:8c:2a:cf:89:f2:ab:e1:a4:ac:
c4:0c:ad:4c:87:1f:bc:b7:77:d3:d3:4d:28:7d:e7:91:c9:0a:
c9:9f:06:73:24:97:46:78:91:69:fd:6f:ae:58:47:60:4f:e3:
35:f5:32:e7:e6:55:84:15:52:04:a3:18:d1:c5:09:a2:92:a2:
4e:26:74:11:6b:3a:b3:de:c2:b0:11:21:91:2b:0a:14:d9:01:
b2:0a:ae:3f:9a:3c:5b:01:f4:0e:a4:2d:c7:5d:2a:fe:d3:a5:
85:9c:23:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:41 2024 by rpki-client on console-ams.rpki-client.org