Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/XnWDzyHHwaClSCrv--55S4zZKoo.roa
File: XnWDzyHHwaClSCrv--55S4zZKoo.roa (raw, json)
Hash identifier: qSaMJ9sCunbYjWDvdP/68Vfg7vEgBgPT7Fg050UHpyo=
Subject key identifier: 5E:75:83:CF:21:C7:C1:A0:A5:48:2A:EF:FB:EE:79:4B:8C:D9:2A:8A
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 01857246FADEC5AF79E4EBEE3A02DDF3B598
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/XnWDzyHHwaClSCrv--55S4zZKoo.roa
Signing time: Mon 02 Jan 2023 11:38:52 +0000
ROA not before: Mon 02 Jan 2023 11:38:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198580
IP address blocks: 193.32.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:fa:de:c5:af:79:e4:eb:ee:3a:02:dd:f3:b5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 2 11:38:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e7583cf21c7c1a0a5482aeffbee794b8cd92a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:93:cb:72:7c:43:c3:95:1f:ca:1e:f2:5d:5e:
35:a2:44:a8:71:48:c9:2d:27:48:fc:47:86:8b:3b:
3f:30:89:4a:39:98:16:c3:ff:c4:61:11:a8:71:a8:
a8:f7:44:00:b3:4a:e4:26:81:06:b1:a3:3e:54:10:
aa:24:ec:74:bb:24:90:2b:c3:c4:e6:41:17:f0:10:
78:27:ff:ee:a7:de:ed:d2:d8:c3:eb:0e:9f:1b:a8:
5d:ab:07:ef:e2:d6:21:2a:59:f4:07:43:ee:07:ac:
fb:b0:42:3f:44:5d:b2:04:78:24:c1:2b:16:50:d3:
33:b4:b9:e3:d7:77:b1:33:14:00:25:16:36:8e:d4:
49:91:db:d9:c1:9c:ee:58:4f:24:24:98:0c:fe:a1:
9f:2b:77:57:e3:fa:40:c2:0c:8f:af:51:b2:53:4f:
17:55:48:0f:6e:23:97:c4:dc:5f:b5:d8:e1:e5:6b:
01:73:7d:39:b9:c7:a9:44:4f:35:9d:8b:cc:2d:4f:
da:9c:07:cb:5d:48:07:72:0f:fb:2e:b5:50:7c:29:
9a:05:51:cf:9b:db:a2:9a:73:e2:57:53:9b:ff:af:
ca:43:af:6a:89:c2:bc:9f:49:26:d3:f8:1e:bc:2b:
9b:ff:a7:54:0a:1c:69:99:b4:f0:0e:81:26:b9:92:
cc:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:75:83:CF:21:C7:C1:A0:A5:48:2A:EF:FB:EE:79:4B:8C:D9:2A:8A
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/XnWDzyHHwaClSCrv--55S4zZKoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.203.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f2:8d:97:01:7a:2b:78:5f:95:b8:c4:ae:b7:0e:b0:29:56:
3b:43:ca:32:72:f9:1c:d6:e4:92:e5:8d:1d:f7:77:a4:cf:03:
9d:f1:c1:cd:af:6e:d0:3f:b7:8d:4c:42:c9:d6:6e:e6:05:63:
c8:72:b0:c1:1b:42:fc:e8:e2:db:22:d8:45:a6:7c:ed:d2:32:
59:48:d6:e2:22:71:96:c1:cf:4a:22:75:54:07:fa:59:ff:63:
73:21:05:2f:59:36:b4:58:2e:a5:e3:98:a3:f4:70:5e:1a:4a:
41:27:ee:8c:9f:3c:22:40:86:b0:ce:e0:e2:9d:52:39:15:06:
99:84:5a:76:21:38:18:46:2a:6b:12:3f:bd:21:a0:4f:59:cf:
bf:2b:6f:b9:96:b2:b3:e3:d8:7c:74:f8:bb:55:a4:8f:82:86:
77:61:5c:17:b9:c5:c3:2b:86:c3:bb:4d:18:68:28:e1:b1:62:
a7:0f:21:82:f8:61:8c:6d:8c:82:95:c4:49:79:18:7e:39:2b:
a9:b7:12:7b:34:9e:1d:7b:50:05:63:66:48:fc:f1:12:d2:40:
94:1f:78:1f:0d:d1:9e:2c:17:78:ac:15:92:5e:8b:63:d7:d4:
55:29:f3:02:36:c1:82:4c:0e:e3:73:50:6c:8d:bf:1e:1a:3d:
9f:91:0e:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:35 2024 by rpki-client on console-ams.rpki-client.org