Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/t5Gvu1ULhBbZZPHqqqQa8LJLwrc.roa
File: t5Gvu1ULhBbZZPHqqqQa8LJLwrc.roa (raw, json)
Hash identifier: SkoTOVEw560mqE/yLiW2zsnYfAZpMmTVoup1QSbNHb4=
Subject key identifier: B7:91:AF:BB:55:0B:84:16:D9:64:F1:EA:AA:A4:1A:F0:B2:4B:C2:B7
Certificate issuer: /CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Certificate serial: 018570399CBC223C32E20BAC604DD2C27C0D
Authority key identifier: 68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/t5Gvu1ULhBbZZPHqqqQa8LJLwrc.roa
Signing time: Mon 02 Jan 2023 02:05:01 +0000
ROA not before: Mon 02 Jan 2023 02:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 193.73.208.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:9c:bc:22:3c:32:e2:0b:ac:60:4d:d2:c2:7c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687726d38fcf2a7fbbb7bfc28d63fe3579ed211d
Validity
Not Before: Jan 2 02:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b791afbb550b8416d964f1eaaaa41af0b24bc2b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f3:7a:3d:aa:6d:77:64:be:1b:25:d8:bf:79:
9b:9d:71:85:23:b8:ac:95:8c:27:f9:c3:3e:12:5b:
93:99:3e:40:09:30:c5:55:89:0d:34:38:5c:5b:dd:
86:07:66:97:5e:da:52:71:76:ce:df:d5:de:3f:be:
11:11:2e:ba:34:c4:ee:2b:65:5f:33:3b:8c:08:19:
f5:46:35:18:fb:f6:ce:00:76:2e:f9:8e:84:a6:7d:
f4:8a:c8:fd:ad:a0:b3:11:75:93:6d:2b:cf:b1:16:
62:0c:5e:30:c9:25:2f:c3:dd:2d:97:24:8f:ec:a7:
0f:d4:cf:a6:f9:34:21:60:c1:e3:23:35:7b:be:c4:
b9:1a:9c:f3:7f:42:2e:27:d8:9a:fc:22:6d:f7:57:
9e:9e:77:8a:a8:dc:56:21:3d:dd:3e:b4:8c:f9:3f:
25:76:ed:80:6b:4f:b2:2e:91:81:40:5c:ac:eb:53:
91:7a:ab:bb:ff:46:f3:72:3c:0b:90:af:1e:b8:ca:
17:c2:b3:e2:a5:f6:11:b5:f3:b5:5b:08:5f:de:de:
1f:f7:37:33:72:35:8d:b6:b1:97:ed:e7:e1:0e:8d:
07:43:f2:72:3d:d3:86:a4:9c:87:95:74:f6:20:c3:
6b:cd:47:6e:9f:ed:d7:d8:3e:be:61:c5:8b:8d:19:
9d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:91:AF:BB:55:0B:84:16:D9:64:F1:EA:AA:A4:1A:F0:B2:4B:C2:B7
X509v3 Authority Key Identifier:
keyid:68:77:26:D3:8F:CF:2A:7F:BB:B7:BF:C2:8D:63:FE:35:79:ED:21:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHcm04_PKn-7t7_CjWP-NXntIR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/t5Gvu1ULhBbZZPHqqqQa8LJLwrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e71e27-c687-4fd7-8180-4b2da197a7e6/1/aHcm04_PKn-7t7_CjWP-NXntIR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.208.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:ba:97:11:51:8d:9a:5c:17:88:92:b3:84:c6:9e:18:d4:87:
f1:d4:8e:1f:7b:99:31:28:2b:77:e4:26:b7:cb:31:83:f2:3e:
2f:cf:51:fd:26:27:71:20:41:f7:34:86:c4:5b:22:db:bc:bf:
8d:71:c6:b6:c9:57:3f:f8:15:bc:e1:8b:5d:fb:9c:4d:b4:6f:
00:11:c6:7e:9d:58:bf:22:71:98:64:49:ed:13:f5:81:d6:7b:
09:69:8d:da:19:97:f7:ea:ee:ad:3f:34:ce:53:44:d5:55:33:
62:2e:f7:ae:d3:43:36:d9:f0:25:a2:da:2e:67:ed:cd:80:d6:
98:69:df:0c:53:f6:01:13:7c:1b:ef:89:fb:8d:5b:61:c4:f0:
a9:46:f0:9e:f0:38:e4:4b:4c:54:0f:9d:a2:6f:21:ab:a5:23:
5b:80:d5:54:7c:70:86:8c:09:53:e2:0e:60:8d:15:a4:18:72:
f6:15:b5:52:08:2d:18:0f:47:1d:b4:c6:03:4d:ba:ff:fd:a2:
aa:27:f8:ef:6d:35:2b:5a:ae:e5:32:c3:2a:93:41:3e:8e:54:
cb:56:13:54:b8:8a:3c:1a:8a:05:b6:a4:d8:30:09:22:48:6c:
e6:ef:92:b4:1f:19:7c:02:72:43:e3:dc:10:d8:56:51:e8:a4:
81:dc:4a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:43 2024 by rpki-client on console-fra.rpki-client.org