Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/MP7ch9NSgxq8uKlIAVgQy1DnIIQ.roa
File: MP7ch9NSgxq8uKlIAVgQy1DnIIQ.roa (raw, json)
Hash identifier: zTGdTRsCWeLzP9a8lOFWrZEeAJ3zPUcA0QfqmDh2T4Q=
Subject key identifier: 30:FE:DC:87:D3:52:83:1A:BC:B8:A9:48:01:58:10:CB:50:E7:20:84
Certificate issuer: /CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Certificate serial: 0186BC5520D1076D9A165DE9F97422E199C6
Authority key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/MP7ch9NSgxq8uKlIAVgQy1DnIIQ.roa
Signing time: Tue 07 Mar 2023 13:49:00 +0000
ROA not before: Tue 07 Mar 2023 13:49:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 193.56.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 10:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bc:55:20:d1:07:6d:9a:16:5d:e9:f9:74:22:e1:99:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2393ff21c6f7310757a9dcd781da8805f23794d8
Validity
Not Before: Mar 7 13:49:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=30fedc87d352831abcb8a948015810cb50e72084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a4:8f:32:65:65:79:98:9d:fa:99:7d:9b:e7:
67:1c:66:1e:3d:f3:d3:96:a5:63:54:6b:58:d2:7d:
87:b6:61:12:df:de:36:06:64:3c:6c:b1:c2:3b:aa:
a7:c9:ab:e0:b2:21:28:b8:22:cc:5e:10:7e:80:a4:
9d:55:18:e0:1c:2e:54:fa:28:1f:c6:8a:86:ce:a2:
78:88:80:62:d6:98:74:62:b4:f9:19:f1:53:f4:83:
15:7a:66:32:e1:7a:3f:ff:ef:96:fd:f8:35:d2:40:
dd:ae:8f:11:35:e4:f1:da:aa:d5:d2:5e:d6:2c:1d:
3f:b5:30:e6:0c:3a:74:88:53:ff:84:fe:70:ab:2e:
3b:38:15:b9:26:70:24:68:42:7e:12:90:33:26:95:
8c:48:8b:1f:89:a6:57:5f:41:b3:fa:25:86:44:4d:
27:8b:8f:cf:e5:57:24:e8:61:ee:bc:9b:6c:02:d3:
9d:5b:25:76:63:39:0d:03:26:93:e3:4a:d6:b0:ca:
ef:7a:ea:7d:8e:6d:af:ce:d1:0b:68:8c:96:db:68:
28:00:8e:22:c5:92:5c:cf:e7:6c:87:99:26:21:83:
e1:1c:68:6d:d7:5b:da:3e:cd:15:7a:a9:3e:10:37:
7f:b6:51:be:0b:5a:f6:3d:b7:94:f0:be:33:d6:83:
1e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:FE:DC:87:D3:52:83:1A:BC:B8:A9:48:01:58:10:CB:50:E7:20:84
X509v3 Authority Key Identifier:
keyid:23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/MP7ch9NSgxq8uKlIAVgQy1DnIIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.160.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:2b:46:a3:4b:cf:5f:3a:fd:88:36:42:62:b8:26:ae:2d:92:
9a:6d:4e:c6:6c:c0:88:bb:f1:36:f9:96:cc:90:0b:b1:59:28:
2d:a4:0b:51:84:05:b9:eb:4b:ce:38:d5:a3:f6:94:99:0e:0c:
be:57:4c:a3:f1:fa:51:45:37:87:47:ae:d9:82:8b:0c:8b:bf:
c7:d1:1e:ff:83:14:8e:9b:de:8f:51:82:28:cc:1f:b7:f2:c3:
55:0f:bb:55:9d:52:5f:61:30:98:5c:69:34:8c:7a:64:10:f7:
70:08:7c:51:45:cb:ae:7d:59:63:2f:b6:8d:29:4e:cc:92:08:
d6:49:da:1e:47:a5:3f:c8:27:96:c9:e4:2f:a1:09:90:f2:19:
ec:21:99:9b:0f:87:47:18:39:4b:2b:2e:61:97:76:e4:30:4c:
da:9e:f5:31:a6:a4:c1:fd:71:09:be:ae:8b:f4:83:2f:a9:71:
15:81:95:02:03:87:81:68:ed:fe:0e:e0:b0:60:e5:4d:53:ac:
07:7a:58:4e:6c:c1:d0:6a:9d:28:fd:84:17:04:1f:03:9d:16:
ce:56:64:55:ce:42:05:a3:5f:01:08:31:d9:21:75:00:e1:b9:
1a:18:1b:8d:7e:3d:56:b0:9a:a6:ca:7c:cb:f7:58:c4:3e:73:
1a:a7:2d:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:17 2024 by rpki-client on console-ams.rpki-client.org