Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/d1C_s_Qx_kZYRX4MCpuF6uQVgaM.roa
File: d1C_s_Qx_kZYRX4MCpuF6uQVgaM.roa (raw, json)
Hash identifier: vjHPMBeWT4uW1jucNFZN7xdfanVgBFPGaSYjxqNoVBk=
Subject key identifier: 77:50:BF:B3:F4:31:FE:46:58:45:7E:0C:0A:9B:85:EA:E4:15:81:A3
Certificate issuer: /CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Certificate serial: 01856CEF0954BC31F7048828B13AC880CD33
Authority key identifier: BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/d1C_s_Qx_kZYRX4MCpuF6uQVgaM.roa
Signing time: Sun 01 Jan 2023 10:44:42 +0000
ROA not before: Sun 01 Jan 2023 10:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49763
IP address blocks: 193.164.196.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:09:54:bc:31:f7:04:88:28:b1:3a:c8:80:cd:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba8861e17ebed57950ff32c7b377fc430413dbe4
Validity
Not Before: Jan 1 10:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7750bfb3f431fe4658457e0c0a9b85eae41581a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:74:be:3b:d5:4c:b5:9a:94:24:8f:f7:1a:bc:
85:eb:fb:bd:74:aa:b7:81:1f:47:5d:2a:69:d0:be:
db:1d:92:5e:fa:43:df:c5:fb:e8:82:50:4b:62:4d:
90:91:22:2f:e4:92:a8:35:71:a6:9b:32:60:83:10:
0f:a7:4f:ee:44:86:6e:ed:07:33:75:29:7d:43:c5:
53:4d:b8:dc:5f:12:5a:7b:39:ec:51:c1:cb:9e:b5:
7f:0c:6b:01:44:f0:91:8b:1b:bd:bc:21:da:df:b6:
20:2e:71:7c:dc:a3:c6:cf:b1:b7:04:dc:11:36:a6:
c0:78:cc:73:66:25:c3:86:95:08:f0:eb:4a:02:22:
c5:b8:aa:54:0e:d5:0e:0c:d2:0a:20:d8:af:93:2c:
a3:45:ce:e5:94:41:8a:d1:55:98:83:dd:c7:df:95:
5d:4d:b5:46:6e:e2:33:49:31:6e:ac:bc:c1:9d:33:
51:49:7a:f0:da:df:5b:d6:c1:56:2d:e7:33:b0:65:
6d:05:c0:c4:fe:21:a5:dd:7f:44:44:e1:21:30:43:
78:89:9f:02:d3:c0:f2:35:ac:5e:e2:c2:05:f8:19:
af:63:28:eb:95:90:d7:85:05:26:46:20:eb:a1:14:
3a:4c:f1:7a:7f:9d:e6:49:07:7e:45:24:37:6b:88:
8b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:50:BF:B3:F4:31:FE:46:58:45:7E:0C:0A:9B:85:EA:E4:15:81:A3
X509v3 Authority Key Identifier:
keyid:BA:88:61:E1:7E:BE:D5:79:50:FF:32:C7:B3:77:FC:43:04:13:DB:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/d1C_s_Qx_kZYRX4MCpuF6uQVgaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/10d153-c3c3-4011-97cf-10fdca385ea4/1/uohh4X6-1XlQ_zLHs3f8QwQT2-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.196.0/23
Signature Algorithm: sha256WithRSAEncryption
43:06:1c:40:a8:12:d1:9b:3c:a2:5c:6d:33:62:ef:7c:8a:c5:
7b:c1:75:77:3e:ef:d3:e6:74:38:82:6a:42:44:6b:fc:1a:c6:
b3:e5:2b:d5:9c:2d:3f:a6:42:88:71:9e:eb:25:c5:5c:05:23:
bc:56:bf:38:28:62:68:bb:85:4c:c0:db:28:b9:51:30:7e:50:
4b:44:f7:a1:81:4c:2c:fc:ba:03:f8:dd:88:10:bd:00:c8:96:
6c:54:fa:70:a7:8b:51:13:37:b6:e7:19:7f:e3:e9:4f:b8:57:
2c:c8:58:29:54:f0:fd:83:11:22:7a:13:4e:26:cf:39:e4:bb:
3a:07:5e:81:b3:97:78:5c:15:7a:dc:5a:57:4e:2a:bc:90:f6:
18:a6:ac:a3:31:af:1d:92:df:70:f4:83:b0:84:59:af:96:65:
76:90:c1:e2:88:b8:f1:b7:e6:66:a4:cf:c8:ce:7d:2e:e0:46:
32:53:f7:fc:35:a0:ea:ec:08:b1:ee:64:5c:b5:13:4d:8e:c1:
7d:71:5d:b7:9c:0f:1d:5e:07:82:c6:1a:23:b4:83:2e:29:79:
40:f3:ba:7b:bd:12:ad:9b:80:51:1e:39:20:42:61:c9:4c:cd:
4a:b6:d6:cb:33:d5:9e:25:43:4f:cb:b7:a2:32:d6:2b:59:8d:
c0:8b:12:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:00 2024 by rpki-client on console-ams.rpki-client.org