Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/F3sMysN18EAQxTepD6VAyO6SfdE.roa
File: F3sMysN18EAQxTepD6VAyO6SfdE.roa (raw, json)
Hash identifier: Ou5Rg9D33WBCtX3j/w9OdEn7NiqMIwuNwTaC+g1D90M=
Subject key identifier: 17:7B:0C:CA:C3:75:F0:40:10:C5:37:A9:0F:A5:40:C8:EE:92:7D:D1
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018572BA74BFE71607DA9B7E566610C9B8C5
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/F3sMysN18EAQxTepD6VAyO6SfdE.roa
Signing time: Mon 02 Jan 2023 13:44:59 +0000
ROA not before: Mon 02 Jan 2023 13:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24724
IP address blocks: 193.111.37.0/24 maxlen: 24
193.111.38.0/24 maxlen: 24
212.91.8.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:74:bf:e7:16:07:da:9b:7e:56:66:10:c9:b8:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 13:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=177b0ccac375f04010c537a90fa540c8ee927dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:7c:6c:00:e6:62:93:bf:06:53:c4:df:25:
a8:9e:8f:57:50:73:c2:8d:b2:39:e4:69:fd:eb:48:
1c:56:b8:ac:38:d7:39:12:4b:dc:bb:ee:11:94:61:
95:aa:00:c0:2e:bf:e0:df:21:af:5d:6a:d1:49:5b:
a0:9a:49:37:ea:83:e1:3d:db:3b:de:1f:19:f7:d8:
0d:51:0b:3b:de:fc:99:6b:42:0b:0b:84:bc:8c:0e:
2c:08:21:25:b2:f7:a1:a9:43:db:6b:42:00:db:38:
50:ef:69:4b:c3:73:7f:1d:c5:64:6c:01:b3:2d:7c:
70:55:bb:ef:40:32:d9:7e:56:db:25:6c:bf:6a:7b:
96:49:92:bb:53:26:6f:99:84:95:35:0e:2e:c8:c2:
0d:45:bc:61:2f:a7:89:cc:ba:0d:fe:ae:4e:85:ce:
a8:40:f1:15:22:93:fd:34:6d:76:8b:f4:90:a7:e1:
06:f4:9e:85:68:d9:ec:3a:33:1f:23:b7:7d:a8:bc:
aa:e1:f6:13:77:eb:95:04:1c:e7:b9:ae:a4:fd:17:
67:4b:4f:9c:ed:6c:6c:71:e1:f6:52:df:dd:27:e1:
6d:99:ff:f8:ee:45:3c:3a:a1:2d:4c:eb:29:20:e3:
43:a9:c1:e9:be:90:4d:1f:0b:99:30:0a:b1:a0:d8:
19:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7B:0C:CA:C3:75:F0:40:10:C5:37:A9:0F:A5:40:C8:EE:92:7D:D1
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/F3sMysN18EAQxTepD6VAyO6SfdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.37.0-193.111.38.255
212.91.8.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:bb:5a:a9:34:bb:37:fe:50:88:4e:88:a1:ad:d9:cf:7b:d2:
7f:77:4c:a3:90:4e:0f:26:24:d3:fa:c6:ef:40:91:5e:de:47:
9e:3f:b3:60:cb:01:79:92:2e:70:c7:0c:c4:a7:c9:95:41:5e:
bd:e1:f9:a1:0c:5d:70:0d:02:bb:65:b6:65:0b:05:6c:05:dc:
20:33:7b:23:cd:44:a1:0c:39:c2:ab:ee:7c:72:93:bc:db:f0:
b5:bb:60:e5:e6:39:d2:9d:e7:c5:37:30:29:51:12:16:71:1f:
fc:7e:c8:27:26:2d:cd:47:f8:a1:4c:05:cc:92:54:e7:9b:77:
ea:65:fe:91:04:7b:7b:ab:f3:43:4d:ab:1b:0c:d2:71:f1:50:
62:47:aa:a4:fe:5d:84:aa:6b:93:e4:14:69:1b:79:e6:52:44:
5d:b6:43:67:43:63:43:b5:00:8e:d1:db:79:97:ca:ee:81:b2:
b0:1c:48:1f:0f:3c:da:f1:b8:27:b0:d4:63:e7:2b:de:5e:08:
34:55:b6:62:af:c1:f4:af:5e:6a:8b:5f:e8:9d:92:fc:d5:20:
93:d2:24:ae:f1:cf:7b:92:72:43:ce:80:0e:d7:f2:e8:3a:6e:
d4:be:f6:74:6a:36:e1:3f:4e:1a:21:65:5c:2d:40:ae:b8:3a:
fc:ce:97:2b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:52 2024 by rpki-client on console-ams.rpki-client.org