Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/6DW0dSmzzmrehU27fWkc8TZqLTU.roa
File: 6DW0dSmzzmrehU27fWkc8TZqLTU.roa (raw, json)
Hash identifier: TGcbsfOPg0Wr88/4E3StR5Mq02IPuZ09r6GOUTt3mZM=
Subject key identifier: E8:35:B4:75:29:B3:CE:6A:DE:85:4D:BB:7D:69:1C:F1:36:6A:2D:35
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018694781F40A2F9686B795293EA47097910
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/6DW0dSmzzmrehU27fWkc8TZqLTU.roa
Signing time: Mon 27 Feb 2023 20:02:25 +0000
ROA not before: Mon 27 Feb 2023 20:02:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10753
IP address blocks: 93.120.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 16 Mar 2023 17:20:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:94:78:1f:40:a2:f9:68:6b:79:52:93:ea:47:09:79:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Feb 27 20:02:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e835b47529b3ce6ade854dbb7d691cf1366a2d35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:96:63:e6:35:bc:3a:da:e8:7b:31:03:b9:84:
d5:f0:b7:05:05:61:f4:a4:28:b4:0b:9a:6e:12:29:
f1:80:2c:eb:67:32:bc:f3:cf:45:4b:8f:f4:a3:20:
54:f2:f6:5b:3e:2b:00:36:f8:1b:3e:8f:ef:e1:bb:
ba:d9:04:63:52:79:17:6a:cc:13:10:69:f7:54:47:
be:a7:dc:e7:27:ac:9a:6c:c9:0f:7d:8b:29:93:23:
8e:b3:37:c0:73:ac:12:1d:73:99:08:f9:c7:19:70:
90:68:2d:01:8b:25:fa:66:4a:e1:e0:fd:39:1e:8b:
b2:6b:1b:66:90:3b:fa:cd:f5:b5:78:cf:13:9a:85:
0c:b9:70:d9:6e:ee:9a:79:ae:97:be:41:74:8e:5b:
c9:7d:13:38:b1:39:b3:a1:7e:d8:f7:ca:2d:56:fa:
7f:76:42:7a:b0:3b:c9:f9:0d:f4:e5:08:b4:84:e6:
83:dd:32:95:5f:66:0c:15:1a:69:e7:68:ef:03:bf:
04:9c:a2:fe:c6:02:e3:f9:cd:df:46:a3:6b:75:47:
44:97:67:cc:ee:28:dc:25:52:9a:95:bd:da:49:2b:
46:ed:58:97:21:26:d4:e8:bb:0d:b0:00:86:7b:cd:
cc:cc:93:e7:47:8d:6c:12:e0:2d:36:50:fc:e7:0e:
7b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:35:B4:75:29:B3:CE:6A:DE:85:4D:BB:7D:69:1C:F1:36:6A:2D:35
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/6DW0dSmzzmrehU27fWkc8TZqLTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.120.12.0/22
Signature Algorithm: sha256WithRSAEncryption
23:00:0a:ef:49:06:13:46:85:9c:f2:6c:9c:d3:2a:b3:91:07:
69:68:20:30:5a:b9:10:27:35:a7:d5:fe:31:24:22:8b:c7:db:
53:79:d5:e4:f9:7a:75:ec:74:2e:ea:53:fc:c5:8c:4b:1a:07:
9c:5d:e0:c9:b6:65:88:7b:e8:8a:a6:4a:fb:fc:a1:c4:86:07:
5c:31:61:97:50:fd:25:d1:35:e0:92:fa:dc:96:50:83:76:84:
0b:77:80:1e:d8:6b:24:9d:85:bc:b3:eb:c2:18:cd:6d:07:64:
1d:bc:f7:98:e2:5e:3a:fc:92:82:32:58:a6:2d:43:8b:b6:e5:
c3:ad:5f:8a:d6:68:5e:ef:80:f8:fb:35:7c:8e:72:4d:73:ba:
76:9e:c5:e2:f0:13:c4:1f:1f:52:26:b0:2a:26:88:fb:85:19:
d2:a4:6e:32:0c:9a:e4:80:28:8f:7d:3e:40:73:b1:10:c1:1d:
45:37:ce:8d:18:46:5a:dd:29:6f:66:58:ff:01:82:96:ef:0e:
8c:21:ff:e9:8c:1c:b5:2e:d3:e9:74:06:fb:45:c9:1a:de:9d:
00:59:04:f8:2d:1f:37:21:6f:80:c9:b2:0d:f6:4d:79:3d:3c:
22:54:af:91:7f:7d:77:31:88:64:93:85:5d:d7:3e:2a:16:e3:
75:57:59:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org