Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/PQcBrp5BalvfMXR4HpECBQNN7_U.roa
File: PQcBrp5BalvfMXR4HpECBQNN7_U.roa (raw, json)
Hash identifier: IVPhl2zqo79YvEJPbXoscXtAek8XO/XSV7GpdJzbYg4=
Subject key identifier: 3D:07:01:AE:9E:41:6A:5B:DF:31:74:78:1E:91:02:05:03:4D:EF:F5
Certificate issuer: /CN=ef7fd5d33061a9de920af1c2a13513d46dd24612
Certificate serial: 018CC493462CE30B593CA1481EB7BD8D47A4
Authority key identifier: EF:7F:D5:D3:30:61:A9:DE:92:0A:F1:C2:A1:35:13:D4:6D:D2:46:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73_V0zBhqd6SCvHCoTUT1G3SRhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/PQcBrp5BalvfMXR4HpECBQNN7_U.roa
Signing time: Mon 01 Jan 2024 10:30:35 +0000
ROA not before: Mon 01 Jan 2024 10:30:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139195
IP address blocks: 193.32.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 12:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:46:2c:e3:0b:59:3c:a1:48:1e:b7:bd:8d:47:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef7fd5d33061a9de920af1c2a13513d46dd24612
Validity
Not Before: Jan 1 10:30:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d0701ae9e416a5bdf3174781e910205034deff5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2e:99:09:fc:a4:35:fa:5e:f9:66:d9:cf:ef:
b7:38:73:b4:81:48:51:75:a8:18:12:a1:9c:8b:37:
09:94:14:a2:68:81:36:47:0f:77:33:d7:3b:b2:63:
87:3b:cf:75:b7:7b:cd:73:be:21:3d:83:77:9b:d3:
75:7e:03:8a:e1:e8:1f:98:c3:a5:78:3a:ce:48:74:
98:bd:7f:91:69:20:bf:dc:75:ee:72:c6:70:87:ee:
8f:01:52:4e:9a:2f:db:12:5d:55:15:b6:4f:c8:08:
70:35:f0:7f:e5:21:fb:4c:e4:02:36:b1:d5:59:72:
1e:c9:9d:bc:9f:20:d9:28:9e:b5:49:bf:84:48:66:
83:84:38:bd:42:85:15:59:af:e1:fe:a6:ce:53:b1:
af:3c:61:e8:62:f3:f8:51:47:e6:b0:ae:0d:21:8e:
ee:76:03:44:d2:8b:90:2a:a6:66:e3:88:77:c2:a5:
f6:0a:6f:79:da:df:c0:d8:9a:a8:e2:4e:e2:cb:3a:
a6:5a:54:9b:1b:94:ed:91:70:cc:c3:7c:ec:b4:d2:
34:f0:3b:9d:f2:f8:53:de:5e:53:3e:d3:19:94:91:
75:3e:c3:97:ad:71:99:25:5b:44:8c:dc:3a:3e:c1:
3a:45:08:cb:0c:a0:3e:27:83:69:ff:7c:07:0c:ee:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:07:01:AE:9E:41:6A:5B:DF:31:74:78:1E:91:02:05:03:4D:EF:F5
X509v3 Authority Key Identifier:
keyid:EF:7F:D5:D3:30:61:A9:DE:92:0A:F1:C2:A1:35:13:D4:6D:D2:46:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73_V0zBhqd6SCvHCoTUT1G3SRhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/PQcBrp5BalvfMXR4HpECBQNN7_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/23190c-e1a0-4ba4-b1d8-a102be382e51/1/73_V0zBhqd6SCvHCoTUT1G3SRhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.246.0/24
Signature Algorithm: sha256WithRSAEncryption
20:18:f4:33:de:51:f1:6d:b9:e0:49:d7:0c:44:57:43:6b:7a:
ba:62:e2:30:5f:08:76:5c:22:1e:c8:7b:cc:a2:f5:c9:62:de:
1f:e7:20:88:7a:e4:ef:5e:bf:cc:00:59:0f:f6:1d:e4:5c:5d:
e1:e6:33:e7:28:fa:78:f6:78:23:b7:29:64:94:9a:10:52:63:
02:eb:14:89:68:ae:6d:35:fd:17:f4:1d:a2:97:80:7b:b4:02:
ac:e6:f0:fe:0f:cc:c8:c1:94:a1:06:0e:85:43:0b:d5:f6:e5:
1f:d7:7e:23:78:73:b4:fd:2e:ee:b2:50:ff:41:36:9e:ff:10:
58:c3:ad:e6:c7:df:0c:ae:88:cb:89:15:d9:6d:7e:72:e2:06:
4b:5a:88:22:b8:ab:c0:f9:0e:2c:31:d4:bc:50:a3:c5:08:25:
9e:0c:91:96:7a:a5:51:62:74:a4:37:95:b4:4e:9b:3c:07:30:
8f:0d:86:7a:a1:99:c1:f4:b3:1b:00:7d:79:a5:c3:d7:86:1e:
8b:47:49:9d:28:14:14:a9:ff:fd:7f:26:2f:c8:2f:b9:07:46:
9f:c8:ce:08:ee:fc:86:ad:d3:a3:39:88:b4:61:9a:e8:b6:40:
5f:d8:3a:51:ef:a9:1f:a0:f7:35:e5:3a:72:e0:e9:fb:25:50:
64:b4:11:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:25 2024 by rpki-client on console-fra.rpki-client.org