Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/kRzZ5ezzqcEeb4hTYWS_IJ4DiTE.roa
File: kRzZ5ezzqcEeb4hTYWS_IJ4DiTE.roa (raw, json)
Hash identifier: sMKAdNGnu16hPyGjjZJ5uASKBy+D4/IT4ie5DcgOyXk=
Subject key identifier: 91:1C:D9:E5:EC:F3:A9:C1:1E:6F:88:53:61:64:BF:20:9E:03:89:31
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FEAC9842E249DB2978202EAC391CE
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/kRzZ5ezzqcEeb4hTYWS_IJ4DiTE.roa
Signing time: Mon 02 Jan 2023 17:38:09 +0000
ROA not before: Mon 02 Jan 2023 17:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46841
IP address blocks: 193.34.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Jan 2023 14:07:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:ea:c9:84:2e:24:9d:b2:97:82:02:ea:c3:91:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=911cd9e5ecf3a9c11e6f88536164bf209e038931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3d:4f:72:fb:2f:e9:d0:b4:6e:76:2c:02:34:
33:1f:d1:ac:fa:8f:26:48:03:95:5b:52:67:1f:03:
c9:9f:8a:3c:9b:c7:c0:2a:f3:a5:38:30:44:41:42:
61:b2:22:ff:81:24:cd:e9:97:77:b5:77:fe:36:86:
13:71:11:d1:38:89:b2:e5:63:5d:9b:5c:d2:84:d6:
0c:ba:3f:0d:a7:0c:48:b4:ed:10:3d:a1:c2:32:8a:
1c:60:d6:f0:07:78:d7:4b:10:77:ab:c3:26:b0:f6:
de:82:1c:ff:04:ea:81:31:ae:36:0b:b9:76:84:71:
f7:b0:c9:2e:96:c2:6f:43:02:b8:13:f2:15:66:c6:
64:0e:0e:e0:b9:f6:bb:a9:86:31:f2:e7:1a:7c:d7:
43:e1:af:8c:f6:22:ef:b7:30:5e:26:bb:9c:2a:9b:
bf:00:55:f2:ab:b6:8f:2b:6d:ba:34:c5:f3:7f:73:
fb:13:1f:48:d3:0d:86:11:e4:d2:5d:3b:30:ea:c9:
a5:7e:21:41:d1:f6:e4:a3:71:b8:f0:52:82:8a:f8:
16:e4:6b:e2:1a:8f:2e:41:88:03:5c:34:e0:74:6e:
14:c9:99:e1:28:ed:26:0d:ad:dd:2c:e6:8d:85:e6:
7c:89:d7:13:b5:33:67:c7:6b:9f:43:0e:38:f2:64:
61:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:1C:D9:E5:EC:F3:A9:C1:1E:6F:88:53:61:64:BF:20:9E:03:89:31
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/kRzZ5ezzqcEeb4hTYWS_IJ4DiTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.77.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:21:d9:0b:8f:b7:4e:32:ef:8e:cd:27:e4:f6:8b:24:97:a4:
ff:90:79:24:f1:f0:b9:49:b3:d8:71:9f:ed:dc:d0:4b:c3:2f:
c3:cf:71:61:8e:c3:7c:95:ad:bf:c1:76:af:52:73:24:e4:2d:
9a:91:60:fa:2c:5c:61:63:3c:0c:b4:52:57:95:f2:21:5f:8e:
6b:cc:08:1e:45:84:0f:44:9f:1f:22:cf:29:b1:a8:23:a7:6f:
cb:3b:97:ee:4c:50:82:cd:fe:9a:d1:ad:d7:2e:12:b3:c1:e7:
ad:ed:08:ec:54:6b:5f:f6:0e:95:40:37:79:80:80:ff:a9:31:
db:14:68:32:86:4d:53:a6:58:72:a4:07:0a:0f:b8:96:3c:2a:
f3:6a:f5:c7:ff:8d:48:06:ac:c5:d7:5c:bb:5b:2b:98:db:17:
4b:53:c0:d1:bc:84:f5:5e:2c:ee:36:f6:8b:ec:e2:b5:12:3f:
d1:79:d9:ce:03:38:98:62:b1:4f:7c:bb:92:c4:5a:26:b9:d3:
e3:ac:a4:73:55:68:97:1f:22:75:6c:a9:7b:d9:d4:df:bd:e8:
73:d8:bf:08:a5:2f:87:f6:f3:22:78:4e:4e:01:d4:1d:35:4a:
83:64:41:c9:1a:cf:4b:ae:be:5a:0a:ef:78:e9:31:41:25:09:
52:7e:03:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org