Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/cb614c-495e-410e-8730-5a366315c166/1/P5hk8zLSBduWlka_VklBE_pWSw4.roa
File: P5hk8zLSBduWlka_VklBE_pWSw4.roa (raw, json)
Hash identifier: JFENV6Mrmz3HAfNucL17/YqvuhHYXL9jHA6cuxwKzNI=
Subject key identifier: 3F:98:64:F3:32:D2:05:DB:96:96:46:BF:56:49:41:13:FA:56:4B:0E
Certificate issuer: /CN=9a48c1d8008cdc059db0b27aa9514799c06d5443
Certificate serial: 01896907CF2BAC7531A03324842E8663CF35
Authority key identifier: 9A:48:C1:D8:00:8C:DC:05:9D:B0:B2:7A:A9:51:47:99:C0:6D:54:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkjB2ACM3AWdsLJ6qVFHmcBtVEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/cb614c-495e-410e-8730-5a366315c166/1/P5hk8zLSBduWlka_VklBE_pWSw4.roa
Signing time: Tue 18 Jul 2023 12:44:26 +0000
ROA not before: Tue 18 Jul 2023 12:44:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32768
IP address blocks: 193.169.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 13:37:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:69:07:cf:2b:ac:75:31:a0:33:24:84:2e:86:63:cf:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a48c1d8008cdc059db0b27aa9514799c06d5443
Validity
Not Before: Jul 18 12:44:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f9864f332d205db969646bf56494113fa564b0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bf:8b:e9:fa:2a:a7:28:09:49:96:91:78:07:
0a:c4:82:4e:3e:20:66:63:6d:29:b6:ba:76:cf:3b:
cc:71:93:fc:7d:36:0a:39:5c:b3:1b:85:ce:5c:f7:
89:81:8a:32:e3:cd:89:bc:61:68:fc:30:ef:0d:05:
41:c0:b1:f5:83:5c:a4:0e:fc:bf:cd:4e:51:2f:34:
e0:b1:6e:ce:25:9a:b1:55:eb:33:40:ee:e5:48:3e:
7a:14:01:ff:70:ae:64:9a:51:3b:f2:db:75:92:75:
cf:c4:21:8d:1e:b7:5d:41:30:fe:9f:fc:e9:d1:80:
2a:da:17:28:7a:3b:90:62:43:c2:70:fa:0f:29:d7:
f9:b8:36:df:7e:c8:19:cf:70:eb:d0:2e:dd:b7:bb:
b6:98:06:01:9f:ec:ad:1f:d2:09:d9:95:0a:4f:fe:
84:15:48:17:9f:df:5e:00:6c:fa:db:02:03:e7:c0:
a4:97:96:fb:20:cb:6b:db:3b:48:27:5b:42:62:07:
f0:04:75:6f:e8:37:76:aa:76:ad:de:59:62:99:c0:
71:e4:9d:a9:dd:c8:37:fb:43:cd:b2:45:7d:fb:4d:
bf:1b:f1:b5:fb:d4:b6:e3:6f:6b:d9:1a:e3:ae:9f:
3c:43:f1:b4:9e:0f:de:a5:00:95:79:0e:bc:24:e3:
6a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:98:64:F3:32:D2:05:DB:96:96:46:BF:56:49:41:13:FA:56:4B:0E
X509v3 Authority Key Identifier:
keyid:9A:48:C1:D8:00:8C:DC:05:9D:B0:B2:7A:A9:51:47:99:C0:6D:54:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkjB2ACM3AWdsLJ6qVFHmcBtVEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/cb614c-495e-410e-8730-5a366315c166/1/P5hk8zLSBduWlka_VklBE_pWSw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/cb614c-495e-410e-8730-5a366315c166/1/mkjB2ACM3AWdsLJ6qVFHmcBtVEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.229.0/24
Signature Algorithm: sha256WithRSAEncryption
59:49:a2:9c:7a:f2:2d:0a:38:aa:c0:4b:44:b9:2a:31:75:fa:
5f:67:f5:20:f6:ba:ca:1f:1b:96:76:76:74:f2:fc:bf:56:6e:
ee:0d:18:7a:3a:12:5b:93:3f:2d:01:95:80:90:b3:8b:4c:32:
21:d6:2f:fc:22:bf:cf:66:5c:72:15:33:a9:02:11:60:f4:43:
2f:8a:92:bb:ae:94:72:b2:16:fd:a5:7c:4a:ae:54:15:de:dd:
f3:f2:64:6e:6f:c8:dd:ef:bb:4d:aa:81:48:06:d2:93:86:04:
b6:60:9d:ac:ce:60:ba:1f:d0:dc:c3:4c:0b:f9:25:16:c4:1a:
18:bd:4d:1d:45:ba:3a:94:18:8b:62:60:c4:88:22:62:e5:ac:
6d:4c:17:9b:3e:20:1d:4a:29:d7:03:d7:04:fd:0e:9f:d9:dd:
c0:11:d4:ce:d5:e2:13:56:3a:89:8f:4a:87:5b:30:15:9c:51:
a8:18:0b:90:ff:6e:a1:c4:68:8a:3f:76:a6:26:d5:ee:3f:48:
12:f6:b8:e7:78:30:8e:12:1d:41:13:14:6e:6b:07:60:c9:2f:
71:3d:30:38:7d:26:df:b3:09:32:da:18:10:14:d0:be:2d:16:
c6:7c:23:76:95:80:97:60:e0:f7:d9:37:0d:ab:5a:67:29:db:
c4:9d:28:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:53 2024 by rpki-client on console-fra.rpki-client.org