Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/P33M8dOCdXpzxaBUZYIJCD7-0b0.roa
File: P33M8dOCdXpzxaBUZYIJCD7-0b0.roa (raw, json)
Hash identifier: 6CMtGAvzssWOYFPlydzAlfbWIq/61zvHxK4krapwTUw=
Subject key identifier: 3F:7D:CC:F1:D3:82:75:7A:73:C5:A0:54:65:82:09:08:3E:FE:D1:BD
Certificate issuer: /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial: 0191D63714A894F4B754507B2F01BB400D38
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/P33M8dOCdXpzxaBUZYIJCD7-0b0.roa
Signing time: Mon 09 Sep 2024 09:56:59 +0000
ROA not before: Mon 09 Sep 2024 09:56:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 193.102.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Sep 2024 13:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d6:37:14:a8:94:f4:b7:54:50:7b:2f:01:bb:40:0d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Validity
Not Before: Sep 9 09:56:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f7dccf1d382757a73c5a054658209083efed1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5c:5c:03:77:00:45:3b:58:19:ce:d1:c0:1e:
d6:a3:b9:50:2a:26:fd:e0:3a:ad:17:d9:75:3a:2f:
ba:08:88:19:ec:73:26:de:36:41:67:f7:f7:83:af:
31:c3:03:22:88:ca:62:e1:33:c3:9e:23:53:4e:7e:
4c:e6:d3:44:08:fc:ad:89:98:dd:46:84:cd:40:fc:
d0:8f:27:7a:f5:c2:ad:13:b4:f8:ed:99:e3:d6:31:
6b:c2:04:e9:67:74:e1:0d:d9:50:ba:12:68:b4:e2:
3f:89:2b:fe:27:0d:6d:1d:8a:30:a6:09:de:63:8b:
c8:c3:87:29:0e:b4:3c:4d:d8:ce:23:5c:4c:a0:b5:
f9:52:a5:d9:a1:63:e6:5d:12:10:cc:d6:24:bb:42:
c9:8b:53:88:f4:24:5b:a2:9f:30:c2:0a:65:8b:01:
b0:d2:22:1c:7e:ae:fe:92:dd:f7:88:a0:56:a4:82:
85:66:d1:4e:e3:6f:28:48:0b:e1:5f:1a:ae:b8:9f:
fd:92:49:77:bd:6c:96:89:2c:89:87:7e:7f:cb:8c:
82:9c:15:d4:a4:5d:25:da:04:f5:56:50:fa:9a:6b:
b6:6d:14:92:33:18:24:3b:23:e4:48:16:c9:2c:24:
19:76:f9:f2:4a:37:f7:68:a0:a5:c4:2a:20:2c:75:
2f:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7D:CC:F1:D3:82:75:7A:73:C5:A0:54:65:82:09:08:3E:FE:D1:BD
X509v3 Authority Key Identifier:
keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/P33M8dOCdXpzxaBUZYIJCD7-0b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.102.32.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:df:ba:6b:d5:cb:0e:7d:4c:a8:a1:29:00:9d:48:d7:86:7d:
fb:b2:b7:3f:c0:f3:a4:af:42:e3:31:04:20:04:b9:12:8e:b4:
61:1a:4d:9f:39:1e:1f:8b:51:66:16:84:da:b8:0a:21:fa:d1:
c9:10:3d:92:7e:48:09:e3:cb:73:cd:c2:90:5a:80:b0:45:e5:
93:a7:97:41:46:97:17:63:22:9c:dc:51:8e:fb:62:cb:0b:59:
a1:0a:b5:da:f9:d5:2a:b1:a7:75:bc:65:cb:ca:be:5e:2e:f8:
24:8d:48:77:21:22:2c:23:00:73:c8:e3:17:9f:51:15:05:4f:
9d:ed:a0:0e:c5:84:e9:2a:b7:1b:bb:a8:0a:5a:bd:b6:b2:50:
c8:79:42:36:12:32:89:5c:d4:2a:bf:ed:60:a2:d2:12:5f:88:
cd:3b:5a:44:49:5c:27:5d:2b:38:84:47:85:a1:16:4f:06:7a:
28:e9:d1:21:65:0d:e2:5e:d1:a4:a5:0c:9f:41:ef:e9:1f:57:
71:46:91:ea:5f:d7:1a:31:6b:1e:09:af:6b:8e:01:e3:18:92:
0c:27:4f:2f:4e:6a:3c:6e:e0:63:3b:05:e2:01:3e:b3:fc:79:
4b:fe:0c:24:2e:17:7c:a4:fd:25:38:3f:7e:fa:5a:e6:6f:5a:
60:31:5c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 14:25:13 2024 by rpki-client on console-fra.rpki-client.org