Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/z1TabLYDHhH3iUogCAEcjYrHeps.roa
File: z1TabLYDHhH3iUogCAEcjYrHeps.roa (raw, json)
Hash identifier: k+TanprLIsX56yxSR1+JiM7bu4aKMoJ9AnAkWE4OLyU=
Subject key identifier: CF:54:DA:6C:B6:03:1E:11:F7:89:4A:20:08:01:1C:8D:8A:C7:7A:9B
Certificate issuer: /CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Certificate serial: 01856F0B863136AB18B0E73B9DDF88E121CF
Authority key identifier: 38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/z1TabLYDHhH3iUogCAEcjYrHeps.roa
Signing time: Sun 01 Jan 2023 20:35:04 +0000
ROA not before: Sun 01 Jan 2023 20:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31140
IP address blocks: 193.22.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:86:31:36:ab:18:b0:e7:3b:9d:df:88:e1:21:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3814b648dd5742025c3dda5eaa66491ffdb2e5d9
Validity
Not Before: Jan 1 20:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf54da6cb6031e11f7894a2008011c8d8ac77a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:16:50:f0:de:32:bc:0e:1d:b2:cc:01:e3:d0:
b3:ce:ff:c8:50:f6:0e:7c:9d:c7:5f:82:0f:18:c0:
8f:f1:43:bf:e1:84:4f:4c:5f:b7:87:d8:8f:d2:b1:
d7:06:c3:e8:72:89:5f:c9:31:55:33:fb:8a:1c:12:
e2:cb:e7:89:1d:3a:3d:42:e6:c0:09:f2:79:ee:5b:
af:7a:5d:9b:78:e6:5c:d3:35:86:2d:ab:0f:91:03:
fd:55:b2:5d:22:5b:1f:29:7a:64:b0:a9:88:eb:c4:
88:67:3c:14:81:13:ef:8f:22:b2:78:f8:6e:3c:a6:
54:96:3a:5f:a2:44:7f:81:c6:82:ac:57:eb:8b:1f:
43:bc:ce:56:6c:cc:2e:41:93:8e:e8:20:f1:90:7c:
2e:76:8f:23:ea:99:5f:62:9c:15:df:1e:1d:f6:ca:
66:97:e9:7c:b8:cc:b8:68:1b:d0:a6:a6:c2:fc:cb:
ed:e7:81:ce:eb:19:4f:a2:f7:3b:95:76:0e:ee:6b:
20:79:8e:f9:b2:e7:5f:57:16:1b:ff:29:a5:73:43:
9d:d6:96:b5:e5:bd:c8:fb:63:a9:77:44:fc:9f:c6:
a2:30:75:0c:ce:c7:78:36:3c:e6:fd:de:44:e4:b4:
bc:14:c7:dd:65:fd:41:31:bc:e2:ca:a8:05:7b:01:
93:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:54:DA:6C:B6:03:1E:11:F7:89:4A:20:08:01:1C:8D:8A:C7:7A:9B
X509v3 Authority Key Identifier:
keyid:38:14:B6:48:DD:57:42:02:5C:3D:DA:5E:AA:66:49:1F:FD:B2:E5:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBS2SN1XQgJcPdpeqmZJH_2y5dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/z1TabLYDHhH3iUogCAEcjYrHeps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/12df2d-94f1-4d10-94a4-1f8368801fdc/1/OBS2SN1XQgJcPdpeqmZJH_2y5dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.248.0/24
Signature Algorithm: sha256WithRSAEncryption
57:be:fd:87:fe:64:1c:dc:2f:96:20:5e:b6:36:44:7d:15:1e:
35:0a:0a:5e:0d:38:1f:7a:0b:80:32:e2:2f:a2:f8:c8:04:7b:
da:42:2c:6e:5a:a2:c3:28:d4:6a:3b:f2:66:95:b3:78:c7:4e:
84:ad:40:1f:70:47:84:3c:45:d9:8c:fc:83:a7:1e:89:06:8d:
53:1d:77:77:50:24:ca:f5:0a:5f:14:65:0b:f8:45:2b:78:55:
50:5c:ff:96:3e:00:da:19:21:ad:44:cb:d8:1f:20:e0:e9:15:
60:ee:36:e6:e2:90:ca:99:15:b8:71:bc:ad:c8:86:8c:32:77:
eb:5c:b0:b4:9a:22:e1:e5:b0:ca:28:fb:09:0f:5e:df:22:b5:
cf:6c:f8:ff:c9:0d:ff:87:0d:b9:c0:98:cc:fd:18:3c:15:24:
48:a9:73:cc:14:91:e9:95:f3:81:16:f5:31:40:c2:82:97:5e:
01:ce:46:10:cb:5b:11:f1:a7:56:2a:24:7f:d8:03:82:dd:ec:
f9:96:7e:41:aa:4a:d5:71:eb:36:b7:81:55:bc:66:ec:cf:16:
c8:1f:b9:b7:23:76:64:15:c1:e9:12:56:9a:83:cb:51:f1:b8:
27:e5:31:f2:a4:3b:c3:af:e0:6e:32:3b:30:b2:9d:95:ea:1c:
09:fb:1f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:07 2024 by rpki-client on console-ams.rpki-client.org