Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/RtsUME-h_aA0nCfmFll5cDQmPsk.roa
File: RtsUME-h_aA0nCfmFll5cDQmPsk.roa (raw, json)
Hash identifier: 9CT+RUrr7Z9mXjvQqmtzrMqH65BdnD7pWsZQfajfOH0=
Subject key identifier: 46:DB:14:30:4F:A1:FD:A0:34:9C:27:E6:16:59:79:70:34:26:3E:C9
Certificate issuer: /CN=03bcef976642d54b4b4a1998f0b3ff48845a926d
Certificate serial: 01856E0B13BD4392E32AA030B9EA710915C2
Authority key identifier: 03:BC:EF:97:66:42:D5:4B:4B:4A:19:98:F0:B3:FF:48:84:5A:92:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7zvl2ZC1UtLShmY8LP_SIRakm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/RtsUME-h_aA0nCfmFll5cDQmPsk.roa
Signing time: Sun 01 Jan 2023 15:54:57 +0000
ROA not before: Sun 01 Jan 2023 15:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49015
IP address blocks: 193.36.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:13:bd:43:92:e3:2a:a0:30:b9:ea:71:09:15:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03bcef976642d54b4b4a1998f0b3ff48845a926d
Validity
Not Before: Jan 1 15:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46db14304fa1fda0349c27e61659797034263ec9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f8:bd:2a:6b:aa:76:79:86:4c:17:81:fd:71:
ed:3c:a6:aa:d2:43:be:c1:b6:b1:2d:d9:b9:a1:c0:
3e:88:34:ae:f8:9a:29:50:b0:bf:19:81:b8:6e:3d:
c4:cb:fc:07:1c:73:22:60:66:ba:bb:78:67:08:4b:
b6:c9:1f:f5:38:55:ea:5a:db:c2:ce:c5:97:52:e6:
fa:f4:e6:ea:9a:d5:34:9d:79:d4:7e:fc:88:49:b9:
86:e5:60:02:1a:75:c5:ab:66:da:a1:f6:84:0b:b3:
18:d9:3f:e9:a8:37:f9:a1:b5:5b:75:7c:a1:11:d1:
9c:fe:1b:e0:0e:3e:86:63:6b:8a:47:0a:db:51:f6:
3d:40:19:a4:1a:4c:fb:42:eb:80:5d:12:1c:73:3a:
31:43:f3:75:3a:9a:7b:af:c1:7b:dc:49:2d:d6:e4:
bb:a1:8c:c0:4c:66:f4:49:ca:f1:47:a3:e9:cd:d0:
39:03:3a:63:e4:ca:9a:f1:88:90:91:e3:e1:40:39:
3c:ad:e0:b6:75:3a:28:5e:34:ac:ab:00:1a:39:a7:
c8:4c:9d:1c:27:6a:94:a8:8c:5b:1c:b4:06:17:b2:
af:a2:a9:59:01:d6:1a:ef:fd:2d:14:6a:b4:23:c2:
c2:34:81:5b:66:d4:12:f4:2b:e8:c7:40:81:65:65:
44:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:DB:14:30:4F:A1:FD:A0:34:9C:27:E6:16:59:79:70:34:26:3E:C9
X509v3 Authority Key Identifier:
keyid:03:BC:EF:97:66:42:D5:4B:4B:4A:19:98:F0:B3:FF:48:84:5A:92:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7zvl2ZC1UtLShmY8LP_SIRakm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/RtsUME-h_aA0nCfmFll5cDQmPsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/cf6b07-03b2-4ebe-b966-f1e9bf2bff21/1/A7zvl2ZC1UtLShmY8LP_SIRakm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.40.0/24
Signature Algorithm: sha256WithRSAEncryption
15:98:f3:60:e2:f5:c9:f5:f3:6f:8d:ed:45:13:d2:b3:e6:86:
11:59:c1:0b:ff:17:75:42:28:95:4d:8f:ba:b6:43:21:c9:c5:
67:b2:ea:ab:8d:93:cb:08:54:7a:0a:04:6c:31:25:6d:aa:6d:
6c:01:57:ce:45:6f:24:79:3e:2c:26:61:6a:ee:44:fd:fb:b6:
ec:1d:2f:d3:5a:3c:cf:4d:e4:b8:f4:c8:9e:69:c3:ce:a3:e3:
51:26:64:55:89:1b:06:38:0e:45:79:2e:81:13:80:d7:5c:df:
ad:92:e2:7b:92:e7:27:49:06:f6:7c:38:e6:1d:7f:f2:de:1d:
91:26:2a:4a:50:4a:a9:3f:41:12:12:40:af:fe:02:3a:69:91:
49:5c:e8:e9:2c:0f:9e:2b:b7:3d:a2:3f:33:70:d3:36:b3:c1:
ac:b5:63:e4:af:47:b7:ac:6a:04:7c:1e:8a:f5:d3:b6:9a:f4:
aa:92:34:c9:8a:a6:e0:16:a7:ec:03:f7:7f:33:f0:a5:e8:9a:
0d:92:39:b7:55:f5:d9:2f:f2:bf:41:94:3e:1d:23:44:5d:09:
ca:90:2d:e1:81:3b:17:08:cd:f9:cb:97:c8:57:1f:b5:68:80:
ff:ba:ec:75:0a:18:8d:d4:a4:47:76:2a:c3:0f:f9:f3:e1:de:
de:73:65:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:40 2024 by rpki-client on console-fra.rpki-client.org