Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/A_2kd6PXl4YwzNkAs1VDitzyP1c.roa
File: A_2kd6PXl4YwzNkAs1VDitzyP1c.roa (raw, json)
Hash identifier: nHebuGMU5+0CsNxH5c97oBkTiaht/JyD67zkRI30B+g=
Subject key identifier: 03:FD:A4:77:A3:D7:97:86:30:CC:D9:00:B3:55:43:8A:DC:F2:3F:57
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F14F9DB0A9E180EB8670630B0AF4704
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/A_2kd6PXl4YwzNkAs1VDitzyP1c.roa
Signing time: Sun 01 Jan 2023 20:45:23 +0000
ROA not before: Sun 01 Jan 2023 20:45:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42089
IP address blocks: 193.230.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f9:db:0a:9e:18:0e:b8:67:06:30:b0:af:47:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03fda477a3d7978630ccd900b355438adcf23f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:69:d2:a5:9e:40:66:a8:aa:05:1c:7b:d3:64:
8b:bd:1b:83:83:64:5a:08:f5:1c:c9:87:ca:d4:33:
eb:bb:b5:2e:08:01:ca:ce:a1:6e:99:9a:67:25:0a:
0b:ef:69:7a:9e:40:fb:75:c6:5e:7b:e9:f5:a8:b9:
a7:eb:41:7d:53:0f:fb:6e:4d:02:77:3b:b0:20:f9:
c1:fe:53:91:6a:ad:8c:c0:6a:ee:f4:ee:5e:0d:63:
53:87:9e:13:f2:f4:52:32:64:88:43:8c:8c:22:d8:
f8:da:3f:8b:a6:62:41:25:98:cb:6b:9f:80:f9:70:
e7:ed:7e:cb:c9:d9:6c:d3:9a:45:e8:48:11:83:98:
d3:a2:f7:62:dc:8f:0e:d7:93:96:b7:a4:6b:ac:1e:
1c:10:f6:30:32:e0:ab:ad:e3:e2:dd:ef:2a:4b:ab:
a8:33:7a:d1:70:d5:55:96:f1:e5:a5:21:ff:7f:23:
7a:40:d4:25:f2:f3:d1:a2:b1:03:9b:76:fd:66:19:
96:08:45:88:06:c6:c0:ba:4c:8f:e8:2f:a3:1d:20:
85:5c:8d:e9:02:4b:7f:86:a1:4b:20:c0:86:3a:5d:
3d:0f:b6:2e:79:c5:c6:88:3a:69:e5:48:bd:a7:b0:
9d:e0:3a:e5:b9:3f:a4:43:dc:16:de:c8:e1:76:bd:
c1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:FD:A4:77:A3:D7:97:86:30:CC:D9:00:B3:55:43:8A:DC:F2:3F:57
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/A_2kd6PXl4YwzNkAs1VDitzyP1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.150.0/24
Signature Algorithm: sha256WithRSAEncryption
81:0b:a2:70:bf:fc:c1:9c:7a:8b:cf:9b:65:ef:a6:2c:30:ab:
7c:8d:f2:1c:c4:87:fe:27:26:15:1a:a9:55:37:bb:ab:11:71:
b5:52:cb:11:76:ea:dd:16:83:bb:09:da:45:f8:94:7b:81:54:
53:3d:dc:a4:e2:56:72:e3:42:b9:5a:a6:31:73:9d:18:16:c8:
30:db:9b:d8:da:94:c2:60:60:01:3d:91:b9:25:f8:d6:59:94:
65:ba:2b:9c:34:90:59:41:d0:c9:78:38:8a:fd:ce:ed:84:50:
64:e7:14:4f:b4:00:56:3a:a2:5d:a2:2d:d9:04:c3:3d:8a:48:
e2:06:90:14:74:1a:be:9f:7d:1a:bc:b8:94:72:75:11:d2:74:
cd:68:d1:20:6f:cc:5b:97:9d:ea:21:e1:a6:64:05:97:60:fa:
33:d0:a1:ee:e4:f3:a1:54:80:88:ea:01:1b:75:7a:63:f7:a8:
21:61:c7:85:43:a1:16:cf:df:38:49:68:c6:a8:20:8a:10:1d:
6d:7d:17:d2:a0:ae:97:60:c7:0c:0a:44:bb:1d:ff:b5:71:91:
26:83:08:03:ad:67:ba:16:17:43:3a:d2:e9:45:c3:3f:f2:16:
49:80:2b:96:ce:51:bd:91:73:00:7b:fc:cf:21:14:a5:a1:f3:
85:29:35:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org