Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/r3JNoQSRWMbrU_SFkEYSu7C2fsY.roa
File: r3JNoQSRWMbrU_SFkEYSu7C2fsY.roa (raw, json)
Hash identifier: qWYbf629iCBrVMUkrwZPclfZ4FtlcFTlrgXuEl4AmH8=
Subject key identifier: AF:72:4D:A1:04:91:58:C6:EB:53:F4:85:90:46:12:BB:B0:B6:7E:C6
Certificate issuer: /CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Certificate serial: 018CC726CFE7A9ABBAF708C42FD71A6F87F6
Authority key identifier: F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/r3JNoQSRWMbrU_SFkEYSu7C2fsY.roa
Signing time: Mon 01 Jan 2024 22:30:58 +0000
ROA not before: Mon 01 Jan 2024 22:30:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213173
IP address blocks: 193.176.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Feb 2024 06:14:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:cf:e7:a9:ab:ba:f7:08:c4:2f:d7:1a:6f:87:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7977af580c850cc8bf90649f9bda8a6a48bf396
Validity
Not Before: Jan 1 22:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=af724da1049158c6eb53f485904612bbb0b67ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ae:e3:0c:53:c1:be:a8:87:c3:b0:ce:63:da:
12:9e:64:af:0c:e5:86:09:cb:a5:e3:93:c2:fc:f4:
e5:b7:b2:b7:e1:4c:ab:7b:b2:21:a4:ef:c1:81:01:
44:a0:e8:24:0e:f2:ef:81:64:2b:6a:e9:5d:b9:fa:
98:d9:ce:06:e7:d9:f5:f1:7f:35:ad:03:63:ee:ec:
7f:f0:cf:6c:2d:a8:b6:cc:a8:ab:04:7b:68:86:89:
8e:81:a4:3f:8c:31:63:1c:32:f0:20:dc:f6:1a:e9:
8c:7f:53:ec:c9:ea:8b:7f:6e:df:c3:40:77:78:71:
39:71:f3:b3:17:6c:57:6e:17:36:48:f2:e1:e7:70:
94:dc:6c:20:7c:45:13:64:cc:dc:e1:74:61:80:fd:
17:ce:d4:0a:54:0d:48:ca:a8:99:fc:6c:16:24:6a:
c7:b4:3f:c7:03:f8:93:2e:a3:27:06:0c:87:a2:39:
42:e6:4e:1e:3c:ef:b5:1c:09:6b:95:05:32:0d:ea:
7e:e5:b3:0b:ac:92:c2:7f:6b:44:14:de:cc:f0:2d:
17:39:9e:bf:f5:24:80:f4:b7:7f:00:53:3f:b7:d7:
ed:9e:56:9e:89:49:5d:26:58:5e:f5:d8:17:c9:f5:
e0:2f:f8:4f:c3:dc:fb:7c:50:66:95:78:b1:00:5c:
d5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:72:4D:A1:04:91:58:C6:EB:53:F4:85:90:46:12:BB:B0:B6:7E:C6
X509v3 Authority Key Identifier:
keyid:F7:97:7A:F5:80:C8:50:CC:8B:F9:06:49:F9:BD:A8:A6:A4:8B:F3:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/95d69YDIUMyL-QZJ-b2opqSL85Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/r3JNoQSRWMbrU_SFkEYSu7C2fsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/b361ef-5f69-4bcb-983c-21128027255d/1/95d69YDIUMyL-QZJ-b2opqSL85Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.239.0/24
Signature Algorithm: sha256WithRSAEncryption
01:16:e2:06:7f:d3:03:91:ba:68:89:38:59:be:1b:3b:40:c1:
f6:73:55:7d:66:6b:2c:6d:92:ab:d2:04:db:91:a4:9f:55:75:
c7:c0:dd:1d:9c:09:f8:f5:fd:d8:14:75:29:bb:05:7b:94:75:
c1:51:d2:3a:49:0e:0a:d8:b0:8a:09:e4:e3:4a:10:14:c9:66:
22:5a:b8:e9:23:01:34:9b:95:e3:d3:e3:64:49:a8:7a:a2:df:
27:3a:cd:c4:4b:5f:db:e4:d9:c6:5a:8b:3a:9a:0f:a1:5a:30:
61:ac:ab:86:55:c2:b6:ea:44:fc:e2:d5:0d:bb:b6:36:59:63:
ea:ee:c4:33:f0:38:b0:cd:a3:00:43:0e:fa:40:ec:1e:35:7f:
0f:77:83:fa:86:d9:36:ec:62:1e:22:5c:29:dc:b7:28:ac:f5:
b2:33:b0:81:b2:18:9d:08:8b:b6:ea:c4:3d:29:1d:40:e7:6e:
39:8c:81:1b:7a:fa:33:33:9c:f9:00:26:5b:a5:98:25:9c:ae:
39:17:9e:3e:1c:0b:64:e3:33:b6:bd:f9:32:9c:b2:ef:18:56:
9a:49:e4:ba:fe:c0:38:de:8d:b7:ef:36:05:0b:42:94:9c:0f:
25:10:5a:b9:f0:40:9b:02:0d:47:04:4e:8a:09:af:a7:b1:d9:
32:52:92:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:06 2024 by rpki-client on console-ams.rpki-client.org