Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/G4XDDd7cQkKL0juvkZMGlttQzyU.roa
File: G4XDDd7cQkKL0juvkZMGlttQzyU.roa (raw, json)
Hash identifier: ivNU/L0D7HOQby8CLaXokYqcH4EsLEPrsbv0BFXq/Uo=
Subject key identifier: 1B:85:C3:0D:DE:DC:42:42:8B:D2:3B:AF:91:93:06:96:DB:50:CF:25
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 01856CC178D75A14916E89EA2F151A267FA3
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/G4XDDd7cQkKL0juvkZMGlttQzyU.roa
Signing time: Sun 01 Jan 2023 09:54:56 +0000
ROA not before: Sun 01 Jan 2023 09:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199101
IP address blocks: 93.93.32.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:78:d7:5a:14:91:6e:89:ea:2f:15:1a:26:7f:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Jan 1 09:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b85c30ddedc42428bd23baf91930696db50cf25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d7:37:4d:65:93:f8:24:7c:bd:e6:ca:09:41:
ba:0c:9e:24:31:7e:8b:df:85:d8:54:a6:19:27:29:
62:f9:d8:01:ef:bf:7f:44:94:df:aa:10:48:70:ba:
46:d2:79:d2:8e:b2:4a:1e:aa:5b:d9:da:3a:73:c1:
79:f0:e9:eb:42:47:9d:51:34:e3:c2:10:25:0d:13:
84:d9:7a:95:35:68:03:9f:c6:9c:25:a6:21:b6:a2:
3f:cf:ad:2c:fa:35:55:ef:9c:3e:9f:15:89:a8:2c:
78:6a:5f:75:fc:c1:14:64:a0:de:02:d2:ce:32:7d:
36:60:37:d4:60:f5:5f:60:c1:01:41:49:91:5b:7f:
b2:95:6e:cd:6e:82:0d:30:bf:40:22:3d:0f:16:7b:
0e:6f:73:ed:65:07:a9:db:86:15:07:60:14:c7:e6:
df:57:58:33:bb:ca:71:22:97:e8:f7:ed:e0:70:0f:
01:06:46:d0:b5:8c:5e:87:a3:12:bc:49:ee:39:a9:
45:17:aa:fc:c9:71:bd:d6:5f:64:f8:58:10:fd:ca:
67:71:87:ce:c0:6b:d7:21:22:59:1e:56:82:11:fa:
86:cb:03:0d:18:83:fd:c9:06:10:a6:d3:0f:ef:ae:
82:aa:b4:6f:63:32:ec:d5:e9:5b:20:35:52:e3:92:
f1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:85:C3:0D:DE:DC:42:42:8B:D2:3B:AF:91:93:06:96:DB:50:CF:25
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/G4XDDd7cQkKL0juvkZMGlttQzyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.93.32.0/21
Signature Algorithm: sha256WithRSAEncryption
34:a7:e0:20:01:fd:25:0f:c3:c0:91:4f:a1:13:0f:52:84:99:
8f:a7:37:14:4f:a6:eb:b4:af:4a:8c:e9:53:6e:df:f1:b9:8b:
96:fa:b3:c8:e1:77:b4:3b:58:dc:34:9b:67:0b:f2:b6:f6:ad:
1e:06:14:b1:fd:57:47:a2:e5:d6:84:98:a4:2a:a5:81:fb:35:
35:04:14:b9:ba:00:4c:4a:8e:a9:47:19:41:31:e1:57:8c:40:
25:62:a3:a7:b8:71:8d:64:ea:da:04:f7:3f:68:28:37:04:65:
6e:34:8f:11:5e:a6:c8:64:00:df:cf:bc:e0:82:82:d6:11:41:
8a:e5:dc:ce:bb:01:a8:13:a5:b9:9a:b4:1f:f2:28:32:35:38:
91:8c:bc:af:0c:d4:ac:de:0d:d4:98:20:55:58:75:22:81:d3:
58:d8:ec:d6:7f:8e:12:2b:34:13:be:ac:95:19:d2:32:94:26:
a8:2a:6d:19:1e:f9:25:18:52:a7:4e:c4:eb:6d:49:b2:d0:e7:
02:23:45:fa:b1:cf:24:63:1f:cd:87:70:bf:e5:4c:c1:2b:9a:
e5:bc:46:37:7a:ff:6e:66:de:35:15:9a:7b:d3:55:2d:ba:2e:
97:21:30:e7:a4:12:f1:f3:3f:45:62:ee:3f:51:d2:9f:f3:7d:
77:ac:0b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:48 2024 by rpki-client on console-fra.rpki-client.org