Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/IQglFAjvEjUQsF-SidqXgfTemso.roa
File: IQglFAjvEjUQsF-SidqXgfTemso.roa (raw, json)
Hash identifier: qXrC1WTFmtVRu7b1qVF4jh/+pE9lTxkSkqRDBY5EPLU=
Subject key identifier: 21:08:25:14:08:EF:12:35:10:B0:5F:92:89:DA:97:81:F4:DE:9A:CA
Certificate issuer: /CN=73d0a3ab299a6598d32bc75450021888795b3d2b
Certificate serial: 018B2342B31291FF09E12420718A0FD079A5
Authority key identifier: 73:D0:A3:AB:29:9A:65:98:D3:2B:C7:54:50:02:18:88:79:5B:3D:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c9CjqymaZZjTK8dUUAIYiHlbPSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/IQglFAjvEjUQsF-SidqXgfTemso.roa
Signing time: Thu 12 Oct 2023 09:40:55 +0000
ROA not before: Thu 12 Oct 2023 09:40:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 193.33.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:23:42:b3:12:91:ff:09:e1:24:20:71:8a:0f:d0:79:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73d0a3ab299a6598d32bc75450021888795b3d2b
Validity
Not Before: Oct 12 09:40:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2108251408ef123510b05f9289da9781f4de9aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:30:8c:4b:49:76:1f:c5:af:78:8c:18:f6:87:
b6:1e:12:96:07:86:4b:88:bd:b6:d2:89:ec:4e:ff:
7f:ba:62:43:5c:84:53:69:3d:47:36:16:00:a0:d4:
ec:94:ff:24:77:23:62:99:74:72:61:85:ff:4b:87:
d3:bc:e2:cd:96:65:ff:5c:91:21:72:ad:5a:8f:95:
bd:5a:28:c9:08:94:c9:4a:4c:31:e4:05:31:40:cb:
0b:23:fa:98:5f:f0:16:01:8f:7d:fb:a6:3e:b8:4a:
e2:92:fa:2d:4c:1b:35:82:c8:7b:5f:30:04:51:c3:
ce:c5:e0:2b:21:26:53:e5:57:e1:fa:d2:a1:5c:82:
27:07:16:6a:20:65:5e:8a:76:6e:f8:07:ef:6b:f8:
42:68:d7:24:b2:9d:2f:05:d8:0a:64:8e:90:f1:1b:
bd:43:3e:c6:e6:75:c8:73:fc:86:cb:18:b5:98:db:
45:04:99:45:52:b2:7f:e9:45:71:ce:1b:e0:4f:54:
1a:b6:52:a6:f4:2f:e8:76:90:c3:7a:44:23:da:85:
1e:17:89:d7:72:c7:55:47:00:f7:84:22:82:6e:35:
61:70:6f:71:b5:70:5b:aa:fc:a6:8f:6c:bd:6f:d6:
9a:9a:59:80:c1:78:fb:be:67:e5:54:94:f5:73:a9:
da:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:08:25:14:08:EF:12:35:10:B0:5F:92:89:DA:97:81:F4:DE:9A:CA
X509v3 Authority Key Identifier:
keyid:73:D0:A3:AB:29:9A:65:98:D3:2B:C7:54:50:02:18:88:79:5B:3D:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9CjqymaZZjTK8dUUAIYiHlbPSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/IQglFAjvEjUQsF-SidqXgfTemso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/2be7bb-ab98-4ed3-b5ee-10cf65948a56/1/c9CjqymaZZjTK8dUUAIYiHlbPSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.157.0/24
Signature Algorithm: sha256WithRSAEncryption
80:91:9b:ce:49:76:7a:71:2b:8f:0f:0f:d3:da:0b:bc:15:99:
31:28:2a:15:54:74:52:99:0c:5e:f3:c3:83:71:84:c4:9f:c6:
c0:42:40:0e:5a:e2:b8:d1:0e:91:df:c6:f0:cb:bd:d3:d0:b6:
0a:cf:70:e6:9f:a3:1b:d8:0f:59:62:dc:ec:17:89:d5:25:b5:
e9:ae:f3:00:02:7a:73:6d:e7:e8:1c:70:a1:2e:48:5a:65:71:
52:d7:32:98:83:d5:dc:59:69:90:60:30:0b:54:87:3b:77:be:
a4:71:df:a9:a8:2d:f7:d1:c4:40:1a:51:3d:31:ed:2c:46:53:
d6:14:62:3d:9c:67:1d:45:72:e1:9f:ab:42:ad:93:1d:1a:92:
e4:a4:f7:9e:96:8b:03:61:28:36:17:d5:30:a4:cf:c9:f3:d5:
cf:74:1d:af:26:bc:91:ed:66:8d:db:dd:55:32:9f:ce:47:87:
bf:d3:90:7e:d3:3b:81:a0:ac:4d:b9:08:56:e5:a1:f3:3e:eb:
4b:a9:68:9a:3f:b0:fe:5c:02:49:0c:08:2d:73:fd:92:3a:e7:
93:8d:ff:9a:ab:22:4d:dd:04:7a:3d:2f:67:fb:65:64:4b:be:
8b:c0:5d:f0:36:46:04:a6:8e:4f:09:12:17:7f:eb:e2:e3:d1:
88:2c:0b:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:20 2024 by rpki-client on console-ams.rpki-client.org