Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/w5APbyZk22v9qpBV2MFsFBbi-sQ.roa
File: w5APbyZk22v9qpBV2MFsFBbi-sQ.roa (raw, json)
Hash identifier: NmRf5SN017AfJLx4KLjUt6luY5TiaUt1XkR97vfyunY=
Subject key identifier: C3:90:0F:6F:26:64:DB:6B:FD:AA:90:55:D8:C1:6C:14:16:E2:FA:C4
Certificate issuer: /CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Certificate serial: 018572FA7910A22EED58180E98E9E3194B6F
Authority key identifier: 17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/w5APbyZk22v9qpBV2MFsFBbi-sQ.roa
Signing time: Mon 02 Jan 2023 14:54:55 +0000
ROA not before: Mon 02 Jan 2023 14:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3326
IP address blocks: 193.111.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:fa:79:10:a2:2e:ed:58:18:0e:98:e9:e3:19:4b:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17a6fa80b2d1c43ec9ea824e7e8395f79294e38a
Validity
Not Before: Jan 2 14:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3900f6f2664db6bfdaa9055d8c16c1416e2fac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e6:44:75:19:26:ed:2e:2f:3d:dc:45:68:1f:
03:0e:c3:ed:4a:24:9c:f5:d0:a3:aa:36:c0:11:92:
27:da:83:b0:08:5f:bc:c6:45:9e:06:a1:57:b9:fe:
49:02:2e:4b:5d:f0:40:d4:6e:77:ce:17:81:d1:45:
63:20:59:0b:57:ca:6f:28:1c:63:66:1b:29:2b:ed:
c1:34:4d:1b:df:0f:c3:b6:e8:fa:2b:d3:ff:2e:fa:
a7:3b:8e:6e:29:3a:ae:8f:84:79:97:cf:b4:23:41:
08:1f:56:b7:20:85:1f:b7:c8:94:f8:50:4d:ae:24:
98:02:29:a9:9e:7e:50:48:4a:76:6b:52:86:c4:55:
a0:c4:68:96:5a:57:6c:5f:67:4e:d1:d4:99:18:e4:
d0:a3:97:50:88:6d:5b:32:61:16:23:e2:c6:66:f6:
02:4d:5c:96:6c:57:8a:0b:eb:98:69:b4:80:f7:d6:
c1:3b:ac:6d:8e:86:f3:03:f2:f1:33:2d:e9:5d:49:
5b:35:58:3c:07:fa:45:8b:78:49:74:c6:20:35:cc:
85:00:bf:e3:25:fc:b5:db:10:c3:ba:8d:e0:f7:ad:
76:d8:da:0b:3a:90:bc:fd:60:f0:69:66:83:0e:9f:
f6:06:41:62:7e:2a:8f:37:64:c4:60:d5:3a:eb:fa:
8e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:90:0F:6F:26:64:DB:6B:FD:AA:90:55:D8:C1:6C:14:16:E2:FA:C4
X509v3 Authority Key Identifier:
keyid:17:A6:FA:80:B2:D1:C4:3E:C9:EA:82:4E:7E:83:95:F7:92:94:E3:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F6b6gLLRxD7J6oJOfoOV95KU44o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/w5APbyZk22v9qpBV2MFsFBbi-sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/bbfe48-f14d-40d1-9f1a-cb9e45bb0c63/1/F6b6gLLRxD7J6oJOfoOV95KU44o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.173.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:8b:e2:4a:f1:7d:8f:de:39:36:a3:4f:5c:ad:05:0a:93:96:
a7:a2:de:1b:5f:b9:95:48:9b:aa:7e:04:28:9b:86:76:a3:79:
ee:39:44:3c:c0:49:0e:f1:48:bf:3c:cb:75:ab:0d:d7:5e:f1:
6d:a8:c4:b0:0d:15:af:0b:b6:37:c4:cb:7e:63:14:34:a5:37:
9b:95:4f:51:2f:62:c5:c5:ee:6b:7c:54:4a:fb:28:19:ce:d0:
f3:ec:55:d7:d0:05:28:b2:4e:a9:a0:ec:87:02:61:0a:05:3e:
2c:1d:e6:f5:86:21:c8:a7:40:3d:d0:9e:64:c3:52:31:f0:54:
a4:0e:4b:1f:a0:d7:4d:fb:4a:bc:2a:4f:56:8a:ac:71:b6:d3:
95:00:00:c4:ea:77:5b:9f:c3:09:d9:3e:11:99:89:9e:f3:00:
eb:94:31:80:f0:3f:2f:2c:65:76:2e:b2:39:46:1a:98:af:5c:
32:df:aa:ce:61:cc:19:db:a4:6b:4e:4a:ee:0c:3b:23:08:72:
19:7f:34:4c:04:68:fb:99:a6:b4:8d:4c:29:8c:9b:fa:77:f6:
d6:f0:5e:ed:a2:82:66:42:e0:ff:56:f2:88:22:68:ae:23:b3:
e5:c6:e7:b3:b9:77:c9:68:25:29:e3:fc:c9:f7:e5:4c:0f:12:
a0:4c:fa:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:24 2024 by rpki-client on console-fra.rpki-client.org