Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/NWgcKLUWSkuhb9gXZ103IsqZVQ0.roa
File: NWgcKLUWSkuhb9gXZ103IsqZVQ0.roa (raw, json)
Hash identifier: bI7CbABMcsWdXoIXbP7XQykzvrofgKJYEdvwZBZ7J7o=
Subject key identifier: 35:68:1C:28:B5:16:4A:4B:A1:6F:D8:17:67:5D:37:22:CA:99:55:0D
Certificate issuer: /CN=6f5792ab8b759aa773038d92077a99bcf8d81aa0
Certificate serial: 01856DCAD24C9C17695CC616AD4D30FAFBF1
Authority key identifier: 6F:57:92:AB:8B:75:9A:A7:73:03:8D:92:07:7A:99:BC:F8:D8:1A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b1eSq4t1mqdzA42SB3qZvPjYGqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/NWgcKLUWSkuhb9gXZ103IsqZVQ0.roa
Signing time: Sun 01 Jan 2023 14:44:46 +0000
ROA not before: Sun 01 Jan 2023 14:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 193.22.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ca:d2:4c:9c:17:69:5c:c6:16:ad:4d:30:fa:fb:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f5792ab8b759aa773038d92077a99bcf8d81aa0
Validity
Not Before: Jan 1 14:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35681c28b5164a4ba16fd817675d3722ca99550d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3d:53:30:f1:4a:2e:06:62:7f:41:f1:91:1f:
5c:3f:bd:e6:57:0d:e8:22:9b:aa:97:87:a3:3f:41:
b5:ff:2f:fd:8a:34:fc:03:18:19:97:3a:3a:bf:50:
a7:18:14:47:a6:8e:48:de:d9:4c:4e:27:8b:a4:d8:
e2:2b:1f:e2:25:62:76:d5:8a:71:65:13:ca:e9:fd:
f3:67:ad:b5:9f:51:35:aa:ad:d8:10:0a:ec:34:83:
5f:b8:ca:11:66:35:d1:0f:dd:c8:2f:85:b1:97:0b:
1f:de:fb:5f:cf:65:52:f6:8e:e3:c7:f3:2a:16:a0:
86:38:f9:69:f8:90:e6:81:80:a6:ec:fe:2e:71:31:
10:0b:36:d2:66:ca:34:6c:ec:d5:02:66:38:72:3c:
df:fc:1c:67:a2:5f:65:cf:de:15:ee:70:aa:8a:96:
0b:d6:61:c6:48:66:e9:ec:c4:4a:a1:d3:a5:22:f1:
22:c8:92:68:cf:9e:e1:69:eb:e2:95:02:d1:73:dc:
1a:5a:06:ce:b6:20:06:c7:27:f4:fe:bb:23:61:17:
3a:4a:aa:c5:6e:7d:51:ce:89:d6:15:b1:72:3f:8c:
6b:bc:1a:c1:bb:32:16:62:02:23:e1:d0:59:87:80:
6b:8c:b0:1a:44:c2:86:0c:bf:df:b2:13:ee:41:4b:
67:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:68:1C:28:B5:16:4A:4B:A1:6F:D8:17:67:5D:37:22:CA:99:55:0D
X509v3 Authority Key Identifier:
keyid:6F:57:92:AB:8B:75:9A:A7:73:03:8D:92:07:7A:99:BC:F8:D8:1A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1eSq4t1mqdzA42SB3qZvPjYGqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/NWgcKLUWSkuhb9gXZ103IsqZVQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/7f9978-1fe4-4b99-8143-5d1b1ecb99bf/1/b1eSq4t1mqdzA42SB3qZvPjYGqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.173.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:68:d1:3f:4e:4e:63:db:1d:9f:9b:4e:63:f2:fa:2e:0f:ce:
62:91:e8:24:35:3a:27:12:a9:59:89:3e:41:48:a4:d9:ad:3c:
dc:cf:1e:d3:0b:c0:ac:ad:bd:c0:ce:30:3c:d4:a0:20:5c:22:
5a:e8:30:4f:65:8f:fb:d7:d3:19:83:4e:bf:f5:9c:8f:72:55:
f4:3d:7a:f1:9b:23:62:1f:99:55:92:5f:77:e7:03:6b:a1:95:
5a:20:fc:4d:18:6a:cf:45:1f:11:fb:7b:0d:9e:6b:70:8f:ab:
20:4c:65:22:b2:31:21:3e:4a:1d:a3:d8:b5:45:d4:d5:5e:6d:
6a:fa:63:c0:c1:0d:5c:a0:f9:2b:95:16:d4:6b:42:55:f2:2f:
86:52:ec:6c:9b:ec:88:87:cb:97:60:fd:2b:b8:84:36:ef:86:
1d:43:6f:2c:49:83:f0:1a:ba:c8:9f:fe:27:5d:62:27:dc:39:
21:38:8a:8a:07:07:9f:50:d1:bc:77:af:35:8a:80:ab:65:0e:
4e:0a:b6:a5:06:4c:03:d7:ea:58:7a:27:af:59:be:66:b1:f6:
18:d2:7e:31:d3:bc:e6:d9:3c:b4:86:96:d6:a3:4c:33:e2:db:
47:f5:21:ef:d4:9a:14:ab:63:05:04:3a:89:1c:fe:7b:64:25:
41:90:71:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org