Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/pA9ROVChPCc3ftZYo7Ga5tYzRR0.roa
File: pA9ROVChPCc3ftZYo7Ga5tYzRR0.roa (raw, json)
Hash identifier: u/VsFjKfbVJUOisPnkR7Lzh9F7ZTBnjuLF9gC2Qa9cw=
Subject key identifier: A4:0F:51:39:50:A1:3C:27:37:7E:D6:58:A3:B1:9A:E6:D6:33:45:1D
Certificate issuer: /CN=93b474d05571df3d44f63cca21b40b6e12c392d9
Certificate serial: 01856CAEFB675E70C02B85178BC3356FBCFE
Authority key identifier: 93:B4:74:D0:55:71:DF:3D:44:F6:3C:CA:21:B4:0B:6E:12:C3:92:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/pA9ROVChPCc3ftZYo7Ga5tYzRR0.roa
Signing time: Sun 01 Jan 2023 09:34:44 +0000
ROA not before: Sun 01 Jan 2023 09:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33925
IP address blocks: 193.189.98.0/23 maxlen: 23
31.14.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ae:fb:67:5e:70:c0:2b:85:17:8b:c3:35:6f:bc:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b474d05571df3d44f63cca21b40b6e12c392d9
Validity
Not Before: Jan 1 09:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a40f513950a13c27377ed658a3b19ae6d633451d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:02:f9:c5:f0:38:b5:e0:ab:a3:5b:ce:68:03:
70:ab:06:90:f0:6a:1a:1a:ca:62:ef:5b:c7:1c:5f:
92:10:6e:f7:50:ea:c8:c6:5e:5e:98:f7:33:10:e3:
52:71:db:3a:23:ee:7c:a6:a1:66:4b:d1:9f:e0:48:
69:b5:88:5a:2d:dc:d0:a4:5f:f7:ff:2e:d7:bf:24:
21:96:17:36:03:a2:39:85:1e:42:63:91:7b:7f:64:
27:1e:ac:1e:b2:62:04:f3:db:22:5c:89:60:37:35:
29:b8:04:4d:36:41:17:a7:10:a3:f0:72:d1:33:a4:
60:f7:a2:79:56:a6:c7:d6:36:80:de:81:93:80:27:
d9:3d:75:2c:e2:3a:8b:a7:55:1b:10:7d:86:06:c9:
b9:ef:64:93:8c:ea:a5:48:19:ff:2f:b2:10:4f:bc:
78:44:88:99:20:a7:d3:e7:fa:cd:a7:e5:08:42:26:
a8:33:be:13:98:8d:f5:1e:55:2b:ce:87:6f:d2:5d:
af:f0:89:24:a2:fc:3b:70:26:88:6a:d7:2c:25:c5:
be:e1:c4:d7:ff:ec:50:9e:8d:cb:75:77:10:19:db:
42:a8:5d:ca:fa:48:cb:67:84:95:bf:91:d6:d2:94:
55:71:7e:36:77:e2:99:be:38:1f:54:4d:2f:67:09:
92:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:0F:51:39:50:A1:3C:27:37:7E:D6:58:A3:B1:9A:E6:D6:33:45:1D
X509v3 Authority Key Identifier:
keyid:93:B4:74:D0:55:71:DF:3D:44:F6:3C:CA:21:B4:0B:6E:12:C3:92:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7R00FVx3z1E9jzKIbQLbhLDktk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/pA9ROVChPCc3ftZYo7Ga5tYzRR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/8da624-31c5-4509-bc5a-2049f6abfd9d/1/k7R00FVx3z1E9jzKIbQLbhLDktk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.8.0/24
193.189.98.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:82:dc:16:dd:0f:32:79:fd:ba:f8:15:08:5b:7b:f9:80:d8:
e9:cb:2b:5c:bf:0a:c3:b0:10:3d:37:25:c4:d6:77:98:e2:7c:
e7:6c:7e:ea:e9:6f:a3:5e:d9:39:a5:14:89:9d:e4:8b:04:b9:
74:bc:56:db:73:9a:b9:58:1e:73:7f:fd:dd:c2:84:fd:17:80:
d3:02:ac:e4:90:c4:da:fd:46:21:52:e4:b0:9a:43:7a:ab:a2:
5b:ec:9b:e6:31:a8:2d:b5:e6:03:d4:77:34:60:dc:b3:28:74:
55:17:cd:1b:81:de:ce:48:24:85:11:4b:aa:be:7b:12:7d:01:
8c:5b:48:66:a6:2d:6e:2b:34:b8:cc:1c:8c:f3:0a:ea:11:55:
1e:8d:be:48:cd:fa:b8:af:43:7f:22:20:dd:c4:64:22:e9:36:
75:59:ec:fe:9e:19:8d:ee:ff:cc:cc:0c:1d:da:95:4f:12:d8:
66:d6:cd:d4:7a:f9:5d:18:77:57:94:8f:59:6c:26:d7:0a:08:
aa:6b:80:6c:a1:c6:9b:79:87:3f:2e:e6:df:86:9a:36:15:5b:
d9:79:61:c8:27:00:c3:60:81:a2:1d:fc:9f:2a:a2:52:af:59:
c6:47:94:c0:42:ff:8b:7f:52:eb:f2:56:8c:54:91:56:d0:e3:
da:0c:b2:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org