Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/B85FcBgMe7O56WSNBNeU0oItvO8.roa
File: B85FcBgMe7O56WSNBNeU0oItvO8.roa (raw, json)
Hash identifier: eeax26FpiWR6IqekLHuRIXTdNe9Dit7ViaD5qtP9eOQ=
Subject key identifier: 07:CE:45:70:18:0C:7B:B3:B9:E9:64:8D:04:D7:94:D2:82:2D:BC:EF
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01930C7A9979F0E1F1F131821B8D90712415
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/B85FcBgMe7O56WSNBNeU0oItvO8.roa
Signing time: Fri 08 Nov 2024 15:53:01 +0000
ROA not before: Fri 08 Nov 2024 15:53:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2856
IP address blocks: 193.187.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 13 Nov 2024 16:04:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:7a:99:79:f0:e1:f1:f1:31:82:1b:8d:90:71:24:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Nov 8 15:53:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07ce4570180c7bb3b9e9648d04d794d2822dbcef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:11:e1:9f:3e:c4:27:4e:6f:74:af:8a:fe:92:
8b:44:0b:fe:d8:28:9e:9f:ee:6b:92:b0:4b:31:93:
db:b0:5c:39:fc:4a:82:02:bd:49:d0:34:21:26:3f:
c1:37:88:57:eb:4d:54:89:70:e5:08:99:6a:e8:ee:
32:01:9d:55:ab:a9:62:5d:ef:e9:28:60:3a:74:61:
d9:c1:d8:22:0e:3d:f4:67:1f:9b:62:70:7d:40:0d:
8d:6d:98:be:4f:c0:1b:4d:32:66:c8:4f:77:5a:14:
bb:47:26:fd:9e:37:44:9c:cc:4f:86:53:f6:cc:8c:
0a:43:81:bd:52:69:ec:48:74:f7:85:bd:92:41:c6:
b0:40:50:eb:4e:2e:b2:c1:c7:07:f6:cd:0c:48:61:
31:d7:24:c6:db:ab:81:af:91:cd:65:6d:a6:e4:dd:
85:b8:5c:a5:bf:70:25:c9:3b:52:ca:95:dc:dd:14:
c4:1a:48:6a:81:46:9c:49:da:cc:dd:bc:98:db:0e:
29:53:78:99:43:23:0c:2f:c6:f7:73:5e:40:bd:39:
d4:80:01:dc:86:2e:78:2d:cd:d2:cb:9e:9b:b7:46:
32:35:7d:41:9d:b3:c6:e2:48:77:7e:d1:6b:09:e7:
0b:b2:65:41:15:4c:20:69:09:f4:6d:3c:d5:34:f0:
bf:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:CE:45:70:18:0C:7B:B3:B9:E9:64:8D:04:D7:94:D2:82:2D:BC:EF
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/B85FcBgMe7O56WSNBNeU0oItvO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.187.140.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:58:17:51:ab:b4:ba:6e:20:98:97:04:c5:31:8a:5f:40:c7:
2b:eb:0a:ed:f6:10:e8:30:8d:02:44:6a:f1:3b:03:1e:3e:32:
94:13:89:18:da:9b:5e:9e:3a:a6:b9:a7:a1:59:da:59:7a:4a:
cf:ab:b0:0a:40:43:5d:4e:50:0a:6d:a8:31:9a:71:5d:b2:34:
9f:6b:e3:b9:53:ed:7b:fd:84:bb:9d:58:34:d1:8b:eb:a7:0c:
d3:6f:d3:27:1a:98:85:6b:79:c6:e8:28:e8:f2:5d:f5:46:69:
03:54:cf:bd:23:f0:14:ed:18:a9:70:79:da:4c:b5:e1:8d:d9:
63:34:28:18:0a:f7:7d:cd:cd:84:0d:d5:f4:59:9f:44:da:ec:
6b:a2:9c:65:06:8e:0b:77:de:8b:14:fb:ea:02:fe:93:34:a1:
66:1a:c3:a5:a7:52:83:ee:42:05:e0:53:d0:cc:01:2a:18:f5:
05:6a:d5:1c:68:80:f9:e9:4c:b8:55:f7:ee:50:6e:d6:3d:0d:
40:4a:9c:ff:2b:32:72:d1:18:b9:61:a9:1a:3a:d7:c6:7e:6f:
b5:3f:9b:de:c2:c6:5a:f4:73:40:0b:d9:c2:89:1c:fc:50:4c:
99:90:44:32:71:fb:b1:39:f1:bc:5b:08:0c:5e:fb:d6:6a:47:
1a:1f:0d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 13 18:49:43 2024 by rpki-client on console-fra.rpki-client.org