Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/txBiQ5h5CL1XHv-jnCi-tRYpZ_Q.roa
File: txBiQ5h5CL1XHv-jnCi-tRYpZ_Q.roa (raw, json)
Hash identifier: 2QFjCM3HfRm9l85et3qzFNHzmzE+rPmSJIZRk+89EjY=
Subject key identifier: B7:10:62:43:98:79:08:BD:57:1E:FF:A3:9C:28:BE:B5:16:29:67:F4
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01892F5FA0F5F8BA076CFAE5474A6C7407EE
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/txBiQ5h5CL1XHv-jnCi-tRYpZ_Q.roa
Signing time: Fri 07 Jul 2023 08:02:23 +0000
ROA not before: Fri 07 Jul 2023 08:02:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.209.128.0/22 maxlen: 22
194.15.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 05:39:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:5f:a0:f5:f8:ba:07:6c:fa:e5:47:4a:6c:74:07:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jul 7 08:02:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7106243987908bd571effa39c28beb5162967f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0c:25:44:a3:45:9f:c3:71:7d:f4:df:44:2f:
50:aa:2b:16:ac:0e:8f:26:2c:b2:2d:26:c6:0b:5d:
6f:19:a3:1c:4e:eb:86:a3:18:74:22:8c:fa:18:87:
54:58:58:ea:69:48:ea:91:bc:cd:9b:17:f6:c5:d7:
79:33:18:d2:94:a0:57:85:73:26:0d:b2:0a:7b:02:
f6:49:9c:89:ae:14:d6:25:af:47:24:a4:23:bd:23:
11:67:85:4c:28:60:17:e4:bb:72:39:05:78:06:6e:
c7:3d:c3:d9:48:67:38:8d:ac:1a:ed:64:0c:bd:49:
42:b1:fb:76:15:09:87:63:de:89:dd:96:dc:0c:75:
c8:4a:58:17:5c:5d:17:8d:b8:44:6b:d4:2a:ac:4e:
af:a0:c7:48:51:89:20:65:2f:38:94:2b:ee:7c:53:
df:d5:27:e8:df:a1:b7:5e:57:75:bb:7a:31:db:f3:
04:52:ad:cd:a4:c7:f3:59:90:b5:9d:ae:0d:03:90:
27:c9:b4:52:6f:f0:b5:6f:02:e4:0d:3b:e1:c0:ce:
b0:d2:b7:aa:e1:3c:49:b9:f3:cd:37:4f:63:40:cf:
d9:3f:55:4d:14:aa:cb:3c:11:b4:e0:94:2a:03:89:
07:10:0f:55:a5:f1:e9:dd:54:dd:10:d2:f3:e7:02:
f9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:10:62:43:98:79:08:BD:57:1E:FF:A3:9C:28:BE:B5:16:29:67:F4
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/txBiQ5h5CL1XHv-jnCi-tRYpZ_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.209.128.0/22
194.15.99.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:ea:dd:dd:ae:4c:3b:3e:50:a9:c3:3a:dc:2d:98:f6:25:ee:
4b:dd:81:35:60:52:d5:77:75:d7:2c:e8:dc:66:44:17:ae:ba:
71:02:4a:f8:fb:51:3d:d8:7b:07:47:93:54:58:a2:34:d9:91:
36:57:a9:89:0f:25:01:79:4f:70:f7:41:8b:37:a3:61:7b:8e:
68:b6:b6:67:03:8e:c0:97:fb:9b:94:ae:39:83:0e:c2:f2:a8:
99:6d:ff:cd:e9:55:11:d3:30:96:d7:80:18:76:9d:ce:55:f7:
1e:b6:c5:15:22:b7:c6:29:39:ef:0d:33:0b:4f:fa:12:7b:37:
53:62:ca:4f:7a:97:c0:84:a7:c5:3e:78:62:9d:13:d9:00:68:
be:01:0d:df:c0:95:a8:9c:c1:d6:6c:5c:7a:39:d5:b3:d6:5c:
df:f3:79:1f:aa:49:2e:2c:02:a6:25:4a:fc:aa:3a:e2:85:13:
e8:19:1a:c2:9f:88:3b:5c:6a:e8:82:d6:0a:2c:16:b0:81:c4:
15:49:99:cf:dc:c3:0b:92:b2:c5:ac:e3:c3:b2:06:08:d0:e5:
e4:d7:0e:c6:2b:12:de:12:1a:7c:85:69:72:4f:bc:8b:7d:46:
08:65:12:41:f6:98:1d:37:cc:c9:19:00:97:cd:8e:37:22:83:
49:79:22:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org