Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/DbK9ITWObXfqekb6oJcZnTdJhJg.roa
File: DbK9ITWObXfqekb6oJcZnTdJhJg.roa (raw, json)
Hash identifier: W41z4ktEGEDs9J6t5NK4XXjVBTUQI3utc2QE+NT87+g=
Subject key identifier: 0D:B2:BD:21:35:8E:6D:77:EA:7A:46:FA:A0:97:19:9D:37:49:84:98
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 01856D8AC90F26572AB0ACB620944D9BE78E
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/DbK9ITWObXfqekb6oJcZnTdJhJg.roa
Signing time: Sun 01 Jan 2023 13:34:50 +0000
ROA not before: Sun 01 Jan 2023 13:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210790
IP address blocks: 193.3.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:c9:0f:26:57:2a:b0:ac:b6:20:94:4d:9b:e7:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Jan 1 13:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0db2bd21358e6d77ea7a46faa097199d37498498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:80:2d:31:d9:c3:21:02:9f:a4:a1:61:04:89:
5b:49:11:65:df:ec:54:12:d9:38:a9:2a:bd:44:fc:
d1:44:b1:94:32:1f:87:1f:b4:a8:71:ad:ae:8b:ff:
6c:bc:a7:28:8a:c0:41:76:aa:ae:95:4f:0f:58:bc:
a8:66:f0:81:fa:f4:14:1d:c3:0c:84:70:82:48:49:
2a:88:7c:ad:ce:9b:ec:bf:b8:3b:89:00:7f:f2:8f:
22:27:22:e7:bb:3f:b3:b3:6b:6e:6b:92:29:d5:e2:
af:da:60:10:5a:cb:3e:0c:60:fc:c5:37:9d:72:c9:
7a:0e:f7:a8:8d:79:13:1b:f2:d8:12:dc:ae:67:6e:
e0:b6:55:57:9e:35:fe:39:62:e2:b6:21:d7:ac:07:
13:c8:6a:0b:13:27:cb:ed:01:06:bf:e3:86:fa:dc:
91:6d:cf:8f:42:c6:b8:5c:8e:48:2c:e3:3f:e1:c7:
77:df:5e:5b:e9:2a:8f:6a:73:fb:13:55:61:f0:89:
a2:6b:27:fc:71:57:9a:c4:8e:d0:1c:2e:28:ce:7d:
e3:f8:de:09:74:f9:94:cc:6b:8b:1d:41:73:7f:a4:
6d:aa:15:69:55:93:d1:1f:ce:e2:0b:ca:f4:62:b8:
a3:b0:5d:39:11:fc:01:8c:74:5f:46:ce:97:b5:87:
17:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:B2:BD:21:35:8E:6D:77:EA:7A:46:FA:A0:97:19:9D:37:49:84:98
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/DbK9ITWObXfqekb6oJcZnTdJhJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.0.0/24
Signature Algorithm: sha256WithRSAEncryption
24:e0:8c:56:04:96:1a:87:24:d2:1d:73:79:24:20:26:71:cc:
79:34:8c:ce:de:0f:e6:b6:58:0c:91:bd:b8:71:98:bd:92:0f:
8e:d5:cb:e6:d6:dc:9c:4c:6c:8c:eb:4e:cc:df:2a:3f:15:76:
38:89:73:9d:8b:50:6a:98:b4:c2:8c:15:e2:1c:c6:e7:21:72:
3e:9f:83:cb:61:f0:66:a6:b3:66:1f:0a:16:94:3a:b4:57:e0:
20:74:ed:5d:a5:69:2e:c0:2e:db:12:43:8c:e5:30:08:d8:b3:
6f:db:0c:3f:49:b8:4e:49:e5:c8:65:4d:1a:15:af:36:45:db:
b2:f0:36:f4:16:0d:1c:b9:62:b4:f8:ab:6a:2f:cb:f7:f7:5e:
bc:78:8d:c8:4c:83:f3:f0:01:a7:c8:e4:5f:93:42:73:ec:9f:
f2:3f:5c:34:05:a5:dd:ed:ed:34:89:22:5e:cc:c3:ab:c1:25:
a8:2a:c0:69:ed:28:3f:5c:a3:bf:3b:f3:ca:a4:d5:8a:31:bf:
26:21:46:6d:89:01:0a:7e:72:3c:06:84:be:a9:96:8b:e1:26:
d1:68:d8:0a:91:b6:33:e2:74:27:42:d8:87:ef:78:8e:73:0e:
94:ef:a7:9f:fe:ef:64:d7:93:a5:2a:82:a2:f9:15:74:d9:1c:
40:21:c2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:19 2024 by rpki-client on console-fra.rpki-client.org