Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/P7peJJW1ByboP2CoLk9k57kh4M4.roa
File: P7peJJW1ByboP2CoLk9k57kh4M4.roa (raw, json)
Hash identifier: EdEhxgUC4mIdVJvp/EE4YnNWcTOix4/ObeT6iDobIso=
Subject key identifier: 3F:BA:5E:24:95:B5:07:26:E8:3F:60:A8:2E:4F:64:E7:B9:21:E0:CE
Certificate issuer: /CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Certificate serial: 018BB436E1351C46649EA20A1C18295850AC
Authority key identifier: BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/P7peJJW1ByboP2CoLk9k57kh4M4.roa
Signing time: Thu 09 Nov 2023 13:12:57 +0000
ROA not before: Thu 09 Nov 2023 13:12:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 193.22.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b4:36:e1:35:1c:46:64:9e:a2:0a:1c:18:29:58:50:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba67bff7bad1eb8384b585df7bef1206f7f19f7e
Validity
Not Before: Nov 9 13:12:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fba5e2495b50726e83f60a82e4f64e7b921e0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ff:f1:bb:d6:dc:38:64:2f:95:19:2d:21:3d:
87:b6:4a:71:4f:cc:3a:e5:82:52:9c:d6:37:7e:94:
d8:f4:1e:27:58:8b:46:bf:78:13:0d:0c:a7:a0:cd:
29:50:cc:a2:cd:22:15:34:e6:30:df:82:7e:21:49:
3e:99:19:26:86:b5:19:ae:54:6e:ad:6b:d4:48:d6:
81:e2:15:02:eb:48:e9:a7:28:1a:3b:ec:52:27:f5:
97:ea:39:a5:ae:48:4e:1c:8b:5f:84:06:46:ce:90:
5b:7c:d8:1c:cc:36:94:4d:8b:b5:4a:b3:b2:12:fe:
b8:cd:dc:fc:e6:6b:71:20:db:54:e4:c0:69:ec:e5:
38:b8:49:df:e9:0c:f3:54:66:cc:30:07:b7:30:c8:
60:b0:20:b0:eb:80:fd:7e:4b:7d:54:7a:3d:61:f2:
c7:5e:1d:17:e7:49:2e:e7:af:df:e9:5c:d1:5b:7b:
b6:ca:25:69:5c:80:cf:cc:3c:9d:68:0d:6a:c1:dc:
cb:f3:27:69:0b:71:90:0a:16:01:43:23:25:f2:60:
fe:45:70:5a:9e:0e:ee:fb:08:d9:05:8d:09:d8:42:
6d:f5:99:36:e8:e2:11:f6:f2:b8:0b:c1:c2:e8:23:
7e:34:69:df:3e:63:7b:34:0c:57:5b:de:56:e3:d5:
17:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BA:5E:24:95:B5:07:26:E8:3F:60:A8:2E:4F:64:E7:B9:21:E0:CE
X509v3 Authority Key Identifier:
keyid:BA:67:BF:F7:BA:D1:EB:83:84:B5:85:DF:7B:EF:12:06:F7:F1:9F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ume_97rR64OEtYXfe-8SBvfxn34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/P7peJJW1ByboP2CoLk9k57kh4M4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4a244d-51d1-4143-b6af-da4538022ac7/1/ume_97rR64OEtYXfe-8SBvfxn34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.129.0/24
Signature Algorithm: sha256WithRSAEncryption
87:2c:70:85:00:77:2f:d6:69:32:cf:dd:2b:72:95:db:2f:f8:
a9:13:62:86:28:e1:93:29:70:60:32:7e:30:83:9c:48:40:00:
e5:06:5c:3c:96:fa:8d:65:46:a1:ed:23:b0:ce:67:29:3f:ec:
aa:f2:5b:ad:dd:84:5f:e7:2c:87:75:1f:a4:e4:cc:e2:ea:55:
73:cf:5a:61:9c:78:22:17:ce:a5:c2:8c:9d:88:c6:18:ec:0c:
dc:8b:68:f8:7d:5a:6e:31:bf:5b:66:eb:a4:2a:02:3f:62:64:
7a:9e:3f:07:c6:1c:b2:c2:26:29:65:53:c5:3d:e4:2b:df:e8:
fb:d6:3b:cb:30:e3:de:36:49:86:64:e6:1f:03:ad:5d:ca:e3:
65:0e:3f:f3:96:8c:6a:60:cc:a7:38:2e:54:db:52:c2:11:f5:
c8:3a:0c:04:a2:2d:13:eb:0a:c9:64:ad:a2:a2:95:1d:16:7c:
61:8d:48:29:00:73:dd:63:1d:22:19:bd:c7:6d:c0:7a:cf:31:
cb:89:1b:20:ea:96:b7:90:b6:52:46:88:39:c4:f9:f6:4f:3c:
63:00:8d:20:6c:be:7d:e9:4f:e1:97:ac:9b:1c:e4:1c:52:03:
7f:ce:93:11:30:09:4a:0d:68:70:d1:42:82:49:73:b4:c4:d6:
a5:f0:6e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:01 2024 by rpki-client on console-fra.rpki-client.org