Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/dnU91_AjgJPsBe76c5fgqW-MjOg.roa
File: dnU91_AjgJPsBe76c5fgqW-MjOg.roa (raw, json)
Hash identifier: NHvmOgf+AlNjHIDijCc6Ym4l8T3obpW4uKqU/KykqVw=
Subject key identifier: 76:75:3D:D7:F0:23:80:93:EC:05:EE:FA:73:97:E0:A9:6F:8C:8C:E8
Certificate issuer: /CN=34e40348463c60ce9fc694060a37f4683093f045
Certificate serial: 0185A4F20BF563FFC7A40BD7B7167D0C3440
Authority key identifier: 34:E4:03:48:46:3C:60:CE:9F:C6:94:06:0A:37:F4:68:30:93:F0:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOQDSEY8YM6fxpQGCjf0aDCT8EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/dnU91_AjgJPsBe76c5fgqW-MjOg.roa
Signing time: Thu 12 Jan 2023 07:46:44 +0000
ROA not before: Thu 12 Jan 2023 07:46:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 193.104.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a4:f2:0b:f5:63:ff:c7:a4:0b:d7:b7:16:7d:0c:34:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34e40348463c60ce9fc694060a37f4683093f045
Validity
Not Before: Jan 12 07:46:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76753dd7f0238093ec05eefa7397e0a96f8c8ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ea:68:1d:86:28:e0:a5:3a:f2:87:2f:8a:40:
8f:ff:d1:a8:dc:84:f7:55:d8:db:45:a1:4e:04:07:
0f:69:f2:3f:79:99:42:7a:f8:53:4b:aa:99:49:24:
cd:f3:20:39:3f:ab:c4:90:14:61:32:b2:2a:1c:af:
3e:fe:ea:61:e7:fb:b4:89:ff:4e:d0:90:a1:d0:a6:
a3:96:fd:bf:f2:57:5e:d3:e6:e0:26:ad:ae:42:b0:
06:a1:37:a6:f4:b6:a5:ba:b2:c7:40:6a:9d:19:e5:
d2:90:3c:72:51:51:2f:43:47:f7:38:06:60:dc:03:
5e:8e:41:fa:10:e7:ab:a8:7a:da:7f:76:81:d9:5e:
2b:46:db:2f:88:40:7f:ce:6c:22:b5:02:4a:0f:e9:
af:6c:ee:a1:63:20:2a:fe:16:27:81:3a:e9:8d:f6:
04:44:1c:e8:b2:0c:d2:5c:ee:2f:d8:b3:d3:7b:8b:
c8:ee:fe:8b:35:85:37:60:3b:59:42:3c:79:50:55:
ec:25:f5:c3:e2:2d:3f:89:21:f7:11:e1:dd:36:1c:
45:69:7f:d2:68:c0:4a:5a:a9:92:64:cc:d1:e2:95:
cb:ab:6a:41:03:a5:31:39:36:b4:9e:49:69:8f:12:
d7:d0:65:5f:e4:4e:f3:cd:20:f9:a1:fc:43:97:60:
e2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:75:3D:D7:F0:23:80:93:EC:05:EE:FA:73:97:E0:A9:6F:8C:8C:E8
X509v3 Authority Key Identifier:
keyid:34:E4:03:48:46:3C:60:CE:9F:C6:94:06:0A:37:F4:68:30:93:F0:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOQDSEY8YM6fxpQGCjf0aDCT8EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/dnU91_AjgJPsBe76c5fgqW-MjOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2a3ccc-293c-41da-ad16-1b99fd09763e/1/NOQDSEY8YM6fxpQGCjf0aDCT8EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.167.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:0c:ab:ca:d3:59:36:b1:b1:cd:7c:b3:64:8f:ba:a0:2f:54:
77:bb:8a:33:ca:df:88:b2:5c:4d:bf:06:bc:e4:9a:6f:bc:5d:
8c:31:b8:2b:b1:d0:ae:a0:84:3f:3e:98:93:9a:b0:d3:71:71:
45:8b:a0:2d:77:f9:d1:6d:88:a1:75:26:78:76:e5:df:66:7a:
88:8f:9b:9f:74:90:af:b0:3b:2f:a5:70:3b:4f:c0:5d:10:0e:
32:cc:15:ac:a3:ad:32:99:07:91:e9:4a:1f:0f:a8:56:33:cb:
af:77:de:02:63:0a:42:26:c1:d5:a0:92:2a:79:bd:40:cc:20:
74:2b:60:3d:47:6c:2d:01:71:2c:e0:0b:bb:66:cc:46:68:a6:
f6:57:13:d9:d2:78:52:67:69:e6:50:9d:16:31:70:64:0b:91:
4e:b2:ec:2d:b3:3d:c2:b4:3a:25:ad:f7:ce:4e:e8:60:f5:b8:
ca:a1:20:bf:5c:d8:e8:4e:f4:46:17:ae:34:35:36:8f:9e:a3:
33:28:da:88:72:48:52:bf:81:25:68:04:fc:3d:ac:cf:a3:2f:
95:46:d7:c6:f4:54:1f:85:e2:e0:01:4e:57:54:ec:d1:ac:df:
a5:00:cb:cb:19:55:94:fe:27:b4:35:9a:a5:7a:06:be:9a:9b:
1b:bc:18:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:02 2024 by rpki-client on console-fra.rpki-client.org