Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/bcdbdc-d53f-4dc9-8e56-44c39fbc8cb8/1/KezveA57yMTsfexAkpL1wVVhNN4.roa
File: KezveA57yMTsfexAkpL1wVVhNN4.roa (raw, json)
Hash identifier: qfQK/9EjsZ0+57iMeBEXPxsIo0drr3G3ApTFOx7X0X8=
Subject key identifier: 29:EC:EF:78:0E:7B:C8:C4:EC:7D:EC:40:92:92:F5:C1:55:61:34:DE
Certificate issuer: /CN=2ba4eaaca41307d2e3d3ed93be86ffeaebe7599a
Certificate serial: 01884D95D44835B912EDB0FEB5B0DD121D41
Authority key identifier: 2B:A4:EA:AC:A4:13:07:D2:E3:D3:ED:93:BE:86:FF:EA:EB:E7:59:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K6TqrKQTB9Lj0-2Tvob_6uvnWZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/bcdbdc-d53f-4dc9-8e56-44c39fbc8cb8/1/KezveA57yMTsfexAkpL1wVVhNN4.roa
Signing time: Wed 24 May 2023 11:47:24 +0000
ROA not before: Wed 24 May 2023 11:47:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51295
IP address blocks: 193.29.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4d:95:d4:48:35:b9:12:ed:b0:fe:b5:b0:dd:12:1d:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ba4eaaca41307d2e3d3ed93be86ffeaebe7599a
Validity
Not Before: May 24 11:47:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ecef780e7bc8c4ec7dec409292f5c1556134de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:5d:a2:d3:2d:78:88:47:a2:3e:96:1e:9b:ed:
89:57:15:ac:f2:b7:43:50:7f:a3:08:b7:72:0b:f0:
2c:1a:3c:45:a1:6e:ae:58:f0:00:a3:30:12:66:26:
cd:1d:b6:b3:f3:b2:cc:d9:0e:e1:e9:7c:44:47:70:
f2:c6:a5:05:39:0c:09:63:07:63:5c:c2:4a:93:69:
d7:81:64:f2:b4:2c:d6:86:29:9b:41:23:58:32:89:
63:a6:db:26:3b:84:13:e7:33:0c:8a:ae:d9:90:e3:
cc:4d:bb:00:3e:e8:1e:de:d0:cb:84:83:e2:8e:2c:
2b:82:ab:31:04:09:eb:aa:cc:69:27:3d:d7:3b:6a:
f6:38:a9:4f:9a:29:0e:84:13:3e:9e:87:66:83:91:
e7:c4:06:93:35:20:57:ba:48:f3:fb:58:8b:5f:df:
b5:3a:53:27:07:61:b5:fa:71:a4:67:52:19:47:fc:
78:3e:52:bc:b5:9f:f7:20:d0:86:55:5a:e8:45:ca:
b4:8e:69:f6:f5:bf:6d:34:9b:f2:c8:15:f3:5d:40:
68:20:0c:6a:b8:2b:7f:16:a3:46:5b:53:51:4d:7b:
31:d4:0d:f7:f6:52:37:89:f8:d8:c4:c9:2f:d1:01:
9a:23:5f:3a:27:33:19:dc:38:29:8d:08:17:e5:cc:
9f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EC:EF:78:0E:7B:C8:C4:EC:7D:EC:40:92:92:F5:C1:55:61:34:DE
X509v3 Authority Key Identifier:
keyid:2B:A4:EA:AC:A4:13:07:D2:E3:D3:ED:93:BE:86:FF:EA:EB:E7:59:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K6TqrKQTB9Lj0-2Tvob_6uvnWZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bcdbdc-d53f-4dc9-8e56-44c39fbc8cb8/1/KezveA57yMTsfexAkpL1wVVhNN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/bcdbdc-d53f-4dc9-8e56-44c39fbc8cb8/1/K6TqrKQTB9Lj0-2Tvob_6uvnWZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.227.0/24
Signature Algorithm: sha256WithRSAEncryption
53:42:d1:0d:b7:b7:3c:92:d8:12:ba:30:3d:46:7f:91:1e:2e:
4d:46:18:e2:f8:44:2e:c7:7f:38:2f:af:11:a8:93:c8:9f:48:
f6:db:e2:bd:bd:45:89:96:21:ea:65:65:8d:2a:7c:ab:76:1f:
69:db:30:e4:f5:3e:3b:46:b6:6d:1a:77:04:0c:4e:00:2f:84:
0e:82:b7:af:0f:0e:52:17:a3:6a:36:c4:ca:b1:c0:76:2b:44:
df:5c:d8:2e:ac:46:fd:0c:a5:1a:ef:f7:4b:b0:f3:ea:c6:df:
66:66:46:17:46:54:f9:a8:28:fb:17:06:75:7c:8f:22:b5:38:
0c:94:07:70:e4:e9:75:3d:65:e0:63:fe:4b:ca:ae:95:67:c1:
f3:79:d3:ac:2e:16:08:be:80:7b:25:99:48:93:3e:11:9c:a1:
29:c0:3a:4a:b3:7d:fa:1d:89:5f:14:0e:85:d3:64:65:40:31:
59:14:69:3d:96:2f:0f:3d:06:c1:de:61:28:9f:ca:61:65:b6:
fd:27:74:44:ea:7f:ef:96:42:d9:36:24:ef:2e:e9:ba:72:00:
33:b8:d7:48:5c:c6:cc:5e:b1:09:5f:bc:4b:4b:5d:5f:39:60:
d4:1a:6c:c8:28:1e:0c:2c:8a:66:3b:5a:77:00:1b:e1:29:e0:
30:95:86:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:08 2024 by rpki-client on console-ams.rpki-client.org