Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/9e9122-bbff-48d9-98c6-0a4286f3cfbe/1/N9uQkmOF9m89vKrEiIxkyJsXxUg.roa
File: N9uQkmOF9m89vKrEiIxkyJsXxUg.roa (raw, json)
Hash identifier: 0umpSonNKoxjB7O0xNdqlxeZz/jeGGn4v0BNLWVO85s=
Subject key identifier: 37:DB:90:92:63:85:F6:6F:3D:BC:AA:C4:88:8C:64:C8:9B:17:C5:48
Certificate issuer: /CN=b5f57e49ebf098bc53e8db388881c92369d9bf8c
Certificate serial: 01891B70482DC3CB39CC6BAC69F16CF44DE1
Authority key identifier: B5:F5:7E:49:EB:F0:98:BC:53:E8:DB:38:88:81:C9:23:69:D9:BF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfV-SevwmLxT6Ns4iIHJI2nZv4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/9e9122-bbff-48d9-98c6-0a4286f3cfbe/1/N9uQkmOF9m89vKrEiIxkyJsXxUg.roa
Signing time: Mon 03 Jul 2023 11:08:10 +0000
ROA not before: Mon 03 Jul 2023 11:08:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3342
IP address blocks: 193.163.36.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:70:48:2d:c3:cb:39:cc:6b:ac:69:f1:6c:f4:4d:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f57e49ebf098bc53e8db388881c92369d9bf8c
Validity
Not Before: Jul 3 11:08:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37db90926385f66f3dbcaac4888c64c89b17c548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:91:2f:e5:9e:ca:70:ce:68:ac:d0:13:03:27:
34:f9:61:45:ed:ae:1a:2a:08:8b:47:12:5c:b3:70:
07:52:02:a8:9a:60:84:7b:b7:40:08:bc:d9:51:e8:
be:60:70:96:3a:14:3f:22:90:44:8f:b5:18:75:f9:
37:ae:77:a2:af:9f:ca:63:24:66:4b:75:6c:0d:0a:
cb:3e:76:5d:7f:4a:54:ef:92:64:8c:0d:c0:25:5f:
e9:1b:06:c5:f2:e6:5f:bf:0b:05:4a:50:bb:10:cf:
4e:c0:cc:8d:8c:62:55:62:fa:47:a0:d6:ff:af:49:
a6:41:6f:12:14:ad:95:22:a0:bf:56:a5:2c:ea:66:
47:77:88:63:eb:09:f4:d8:09:73:f0:6c:5e:e3:f6:
93:85:4c:86:b5:6a:02:2c:c6:37:d7:58:21:ed:79:
71:f1:68:46:00:35:4b:e7:f9:a2:2e:5e:ae:b6:56:
02:15:94:47:69:45:10:d8:80:73:e8:ba:13:15:ec:
dc:b6:b9:f1:15:91:ad:54:38:ce:3a:f4:fa:59:42:
97:7f:dc:93:11:83:7b:07:b2:9c:be:6d:07:f3:44:
28:82:e0:ce:9e:1c:86:d5:29:62:3a:d5:78:51:7c:
f7:43:3c:62:e3:a4:f2:f0:da:3e:e6:70:b6:65:0b:
dd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DB:90:92:63:85:F6:6F:3D:BC:AA:C4:88:8C:64:C8:9B:17:C5:48
X509v3 Authority Key Identifier:
keyid:B5:F5:7E:49:EB:F0:98:BC:53:E8:DB:38:88:81:C9:23:69:D9:BF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfV-SevwmLxT6Ns4iIHJI2nZv4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/9e9122-bbff-48d9-98c6-0a4286f3cfbe/1/N9uQkmOF9m89vKrEiIxkyJsXxUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/9e9122-bbff-48d9-98c6-0a4286f3cfbe/1/tfV-SevwmLxT6Ns4iIHJI2nZv4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.36.0/22
Signature Algorithm: sha256WithRSAEncryption
50:32:a2:62:01:f0:d1:06:cf:16:56:0a:cb:13:67:1d:f9:34:
8d:e3:75:a7:d1:ad:b7:1c:15:3a:26:b6:49:a3:96:e9:6c:70:
cb:1f:48:e7:a3:91:00:9c:b9:24:85:68:be:a2:47:1b:6c:15:
b4:25:dd:6a:c3:df:0a:e1:32:3b:bd:a5:3f:c6:cc:a0:15:1e:
26:a3:d5:0b:5a:5e:de:58:31:16:15:11:c5:8a:70:1f:8e:cd:
e4:ff:05:ca:4e:8a:a8:fc:21:9a:40:ae:14:8f:c3:d0:af:2e:
99:17:cf:4f:59:6b:9a:ba:32:13:45:3a:00:21:75:cf:bf:fe:
eb:5a:e0:97:96:01:09:02:62:3b:6f:91:8b:7b:34:00:56:ac:
49:1c:98:44:b7:29:b5:db:4a:cc:68:b7:ae:b9:c1:56:15:8c:
ca:3f:60:4c:11:6f:a9:dd:c6:a2:85:f6:24:48:f5:0a:62:03:
5f:2f:c1:26:ae:b5:f1:98:6d:8d:7d:7d:2b:03:47:36:fd:09:
2a:83:a2:54:ad:a3:39:21:d1:a9:f3:92:92:0f:f7:25:b8:ba:
6d:b2:b8:c8:53:f9:1e:03:76:6d:0d:39:c5:99:00:70:89:24:
d8:7c:ed:83:94:4c:42:51:12:70:21:b1:fd:34:e7:19:c7:7b:
b6:ab:d7:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:16 2024 by rpki-client on console-ams.rpki-client.org