Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/N3EzuPWOKeoj4-Bo0tQCM2S9rhY.roa
File: N3EzuPWOKeoj4-Bo0tQCM2S9rhY.roa (raw, json)
Hash identifier: YWRY2iQ/vS3eKRya7GOjy3joJOpdb/vIlyzJlevpIQ0=
Subject key identifier: 37:71:33:B8:F5:8E:29:EA:23:E3:E0:68:D2:D4:02:33:64:BD:AE:16
Certificate issuer: /CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Certificate serial: 018CC6B77C320268F6D465FA982E10C225FE
Authority key identifier: F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/N3EzuPWOKeoj4-Bo0tQCM2S9rhY.roa
Signing time: Mon 01 Jan 2024 20:29:22 +0000
ROA not before: Mon 01 Jan 2024 20:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.30.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 09:52:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:7c:32:02:68:f6:d4:65:fa:98:2e:10:c2:25:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f651dc9875e35ec580c571fd0416f4d5f5d4158a
Validity
Not Before: Jan 1 20:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=377133b8f58e29ea23e3e068d2d4023364bdae16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f3:e6:c0:36:1e:44:e2:7c:27:7d:13:59:78:
51:1a:7e:17:17:7c:8f:0d:bb:ff:f5:9e:31:a6:5d:
a5:b1:67:2d:9a:a1:fc:e9:50:62:31:a2:d0:f1:34:
b6:e1:d5:3d:70:66:fa:25:1c:3c:07:ec:2b:d8:7a:
97:47:ec:9e:c1:00:6a:92:9f:dd:63:f8:f3:45:cc:
f4:be:d4:42:bc:7c:93:05:e7:1f:53:3e:41:ba:77:
46:e3:19:f5:5b:54:a2:a9:e7:b6:d8:15:d2:0a:41:
30:16:f2:7b:0e:5f:4d:29:41:17:7f:f2:02:e4:cd:
9f:ca:5e:31:7e:a4:de:61:11:48:aa:21:a4:e7:4c:
00:1d:cb:5f:1d:48:05:44:be:e1:f5:f6:be:40:81:
f4:4f:5e:d7:23:51:13:a6:71:53:9c:16:19:54:93:
ce:ad:12:6c:7d:0a:5e:d7:93:a8:a7:f2:bc:c5:8a:
7b:43:de:aa:cc:68:1b:81:c4:8a:12:ac:84:6a:b1:
23:ea:d5:4e:7a:84:f1:d5:fc:01:58:1e:8c:dc:bd:
b2:8d:18:99:9d:84:d4:e7:32:bb:69:9d:b5:0f:73:
f8:50:e0:d1:20:32:a6:8a:19:1f:38:74:6e:fd:7b:
d0:5b:63:a1:81:39:c2:bf:00:3c:b9:ca:29:01:cc:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:71:33:B8:F5:8E:29:EA:23:E3:E0:68:D2:D4:02:33:64:BD:AE:16
X509v3 Authority Key Identifier:
keyid:F6:51:DC:98:75:E3:5E:C5:80:C5:71:FD:04:16:F4:D5:F5:D4:15:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lHcmHXjXsWAxXH9BBb01fXUFYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/N3EzuPWOKeoj4-Bo0tQCM2S9rhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b4d9d7-6703-4b06-b3ee-07510381420a/1/9lHcmHXjXsWAxXH9BBb01fXUFYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.101.0/24
Signature Algorithm: sha256WithRSAEncryption
72:41:fa:5f:1d:08:38:f1:54:cf:dd:20:91:b2:12:41:97:8f:
a5:67:a8:16:fc:9c:0a:b3:9e:be:20:41:69:9b:8b:7c:10:28:
43:a1:f6:dd:60:36:28:ca:fa:20:c7:09:20:fd:4e:c2:bb:cd:
ed:dc:81:4b:e1:ae:8f:da:1d:18:90:68:a4:9d:be:f7:5c:5e:
57:4c:db:10:9b:ed:6c:32:c7:5a:c4:50:6d:d3:e6:7b:b6:52:
bc:5e:bf:f8:1d:2f:2d:66:ff:3d:22:f2:67:c9:91:d5:bb:5a:
8b:02:5c:07:d5:0e:f8:35:0f:0e:31:e7:b0:2c:a0:fa:4c:2e:
92:a6:df:9c:60:8c:e5:52:5e:0c:5f:32:83:64:6d:0d:90:7c:
65:13:16:b4:9d:18:e8:35:ef:0a:46:52:cd:62:57:b2:2e:10:
a7:a8:24:50:f3:8d:c4:b2:1d:a7:ef:3e:12:2f:ff:60:b1:bc:
39:d6:8a:89:a6:6e:3d:7f:ae:c7:87:ca:32:ce:4c:c9:29:26:
fc:22:6c:78:1e:3c:e5:4b:2e:f2:4d:28:fb:53:c6:00:d3:2b:
0c:8f:36:c4:30:49:e1:2a:ce:15:85:af:da:c3:b4:ed:8c:84:
61:bc:2f:3e:ce:f8:e0:b4:99:ca:84:a9:31:ad:89:ab:7d:67:
d6:a1:3a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 5 14:32:33 2024 by rpki-client on console-fra.rpki-client.org