Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/p6jazNwofzsN9Sai-v_OId6djjg.roa
File: p6jazNwofzsN9Sai-v_OId6djjg.roa (raw, json)
Hash identifier: zUTzRQoW6W7m9GgTYcPbLwktNS0PFrGrPyEJ09ukJFw=
Subject key identifier: A7:A8:DA:CC:DC:28:7F:3B:0D:F5:26:A2:FA:FF:CE:21:DE:9D:8E:38
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018580A73C91BE88C9C3BAC43AF8BE1F95F9
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/p6jazNwofzsN9Sai-v_OId6djjg.roa
Signing time: Thu 05 Jan 2023 06:38:41 +0000
ROA not before: Thu 05 Jan 2023 06:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201671
IP address blocks: 193.37.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 Feb 2023 15:15:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:80:a7:3c:91:be:88:c9:c3:ba:c4:3a:f8:be:1f:95:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 5 06:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7a8daccdc287f3b0df526a2faffce21de9d8e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:47:38:b7:22:e8:54:12:b3:44:36:b1:8e:0b:
99:42:27:62:66:65:7a:b7:80:8b:4d:be:e4:e2:1e:
42:19:28:c1:c4:26:dc:33:aa:2d:f4:a0:cd:88:e5:
6d:9e:e2:6b:34:25:20:9c:9b:78:81:07:63:2a:e0:
95:af:6d:28:db:76:65:49:26:0c:d6:5f:1f:da:12:
ac:1f:e8:77:22:48:9a:56:c2:f1:92:7a:f8:bc:74:
78:e3:b1:75:29:f7:26:c2:cf:71:b9:be:f6:2b:67:
2e:dc:20:59:78:85:75:4b:b8:c8:2b:83:b2:68:03:
96:42:2c:19:8a:56:e5:f5:d9:d3:50:82:63:dc:3f:
97:63:59:fb:aa:fc:44:91:95:8f:51:39:cc:cb:42:
10:ec:53:32:de:af:d8:50:08:44:8c:2a:f7:cc:d1:
b4:c9:a1:58:7e:f4:0c:da:7f:5b:bf:fc:67:8f:05:
1d:30:de:a0:3e:82:f6:44:68:74:89:d4:3f:c9:28:
d0:d5:c5:cd:db:b9:cc:9d:e0:35:bc:cb:7d:33:64:
0c:59:ac:7d:cd:cc:61:e4:e9:7e:41:1b:0d:c7:7b:
4e:9e:47:b3:28:7e:a0:66:35:51:30:ae:18:88:46:
45:72:68:08:50:14:f7:f6:bf:73:53:89:e9:a5:19:
e5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:A8:DA:CC:DC:28:7F:3B:0D:F5:26:A2:FA:FF:CE:21:DE:9D:8E:38
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/p6jazNwofzsN9Sai-v_OId6djjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.71.0/24
Signature Algorithm: sha256WithRSAEncryption
85:52:ed:d9:1d:58:2b:84:f3:e2:2b:f2:3e:f8:bd:d3:34:07:
1e:0c:67:4a:7a:f8:be:3b:d6:5b:c4:7b:3e:56:86:17:91:9e:
4d:a9:c8:4c:f8:7e:45:96:55:21:1f:79:e7:bf:5b:7f:26:03:
9f:77:82:85:13:0b:c2:f3:68:72:ff:28:90:42:a1:31:6b:b2:
59:de:d6:26:87:47:1f:20:44:79:f0:39:54:59:ed:82:a7:42:
9a:9a:b5:45:78:f4:1a:c6:18:89:84:5d:b2:92:fc:f0:c6:c2:
b6:30:47:2b:14:f9:f7:33:85:01:ef:6a:c7:a5:28:3b:a1:aa:
71:ef:47:f3:2d:26:b6:ee:4b:bd:e6:80:07:29:4a:a9:4d:a9:
b4:86:a2:1d:38:c6:2e:dd:33:18:8a:63:cb:48:ac:63:32:06:
77:c8:c5:3a:03:ad:34:29:6f:0c:a6:9a:14:32:6d:b1:af:65:
fb:65:3d:1b:30:ec:32:23:74:5c:14:77:40:54:9d:54:15:c4:
41:b5:fb:3e:fe:cf:46:59:d3:64:b9:ad:4a:97:ce:04:a8:9c:
3b:e9:9d:a9:32:dc:0f:e7:6b:5c:f9:99:e5:a7:4e:ce:f9:3e:
35:47:ec:3d:0d:6a:98:f9:72:82:af:24:25:93:eb:97:d6:31:
f1:d5:dd:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:50 2024 by rpki-client on console-ams.rpki-client.org