Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/cs8_Jn23vaUXmoGwq6b4Fwgf0v4.roa
File: cs8_Jn23vaUXmoGwq6b4Fwgf0v4.roa (raw, json)
Hash identifier: 2pCYN0Mt2XSPEY6GwPaXRamM8t/ef8sbUZOKcKlSaQE=
Subject key identifier: 72:CF:3F:26:7D:B7:BD:A5:17:9A:81:B0:AB:A6:F8:17:08:1F:D2:FE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018F96DC348EEBB775ADA77762976E225EE6
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/cs8_Jn23vaUXmoGwq6b4Fwgf0v4.roa
Signing time: Mon 20 May 2024 16:36:04 +0000
ROA not before: Mon 20 May 2024 16:36:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34718
IP address blocks: 93.171.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:96:dc:34:8e:eb:b7:75:ad:a7:77:62:97:6e:22:5e:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: May 20 16:36:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72cf3f267db7bda5179a81b0aba6f817081fd2fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ad:99:8f:75:27:e2:76:83:01:7a:fa:65:63:
03:47:8c:35:04:a6:07:2a:a1:4a:12:54:74:19:59:
a5:6b:76:12:c5:22:80:46:72:b7:51:a1:cd:1f:0d:
26:4d:2b:a9:df:fe:a1:f7:1a:e3:53:fd:b0:11:8d:
ed:ea:63:df:cc:39:bb:c1:99:f2:dd:ed:d0:f1:32:
f8:26:18:55:81:8f:38:8a:19:90:ee:59:b7:a4:e6:
18:11:e7:85:4e:61:cf:cf:69:e0:c6:d6:a2:a4:60:
21:1e:bb:86:34:db:01:a2:c5:6f:28:63:0a:6e:6c:
96:67:7a:77:39:31:6b:9b:93:28:0b:0b:fd:72:a0:
cb:10:b4:da:15:9e:50:42:9c:99:d2:cb:bb:db:ae:
00:1e:b6:52:eb:76:3f:b4:6c:82:5c:a8:34:7d:e1:
8c:e3:47:0a:08:02:f2:26:5c:a7:3c:59:8e:c2:06:
e5:98:81:cc:35:88:47:d8:ba:6e:5d:61:0f:27:59:
c8:5a:99:ae:a3:70:7a:75:bf:cf:6a:ce:33:37:f1:
f4:8a:f8:fd:66:d3:41:b5:bb:ff:2c:36:90:e3:cc:
2e:c1:36:bd:dd:18:5f:da:60:6b:50:fb:06:06:6d:
ca:2e:7b:b7:27:35:c3:30:86:46:f3:85:c0:12:a4:
b7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CF:3F:26:7D:B7:BD:A5:17:9A:81:B0:AB:A6:F8:17:08:1F:D2:FE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/cs8_Jn23vaUXmoGwq6b4Fwgf0v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.232.0/22
Signature Algorithm: sha256WithRSAEncryption
26:71:df:81:5c:5e:14:96:73:73:26:bf:f4:4b:0c:eb:23:56:
7c:ec:02:ca:6d:c0:d9:bb:2a:3d:c9:71:80:bb:34:9f:ff:2a:
56:2c:90:c8:4c:b3:c7:50:4d:ce:24:2c:38:c3:e9:55:f3:be:
d3:3b:c7:57:a8:3f:92:f1:4d:30:93:93:fa:c7:73:12:18:4c:
de:21:84:b7:0a:60:1c:f8:e4:80:65:44:5c:55:7e:20:f4:38:
af:49:25:38:dd:96:e7:21:16:b0:9a:fc:5b:9e:7f:63:a8:80:
db:fa:51:99:a1:71:9c:4f:c2:a1:be:2f:42:ce:0f:b0:a4:cc:
9f:06:74:33:4b:38:d0:f6:09:66:f5:64:35:7e:8d:fb:e7:c0:
56:6f:68:98:0a:1f:f7:fc:e8:6d:65:59:63:2a:03:a0:ec:c5:
16:27:e3:4a:ea:4a:2e:5d:e8:a4:f3:b3:36:a5:b6:0e:9b:62:
81:90:ee:10:27:a3:a9:6f:ef:0a:b5:04:39:88:00:3a:5a:76:
22:11:08:2e:ee:80:47:b9:66:c3:7d:97:98:2c:2f:dd:da:f5:
53:a1:4e:4a:e4:d7:5b:e1:76:f6:0e:0a:ab:6b:3f:89:8f:42:
6a:0e:e6:99:a9:49:82:dc:e3:ed:39:e0:d2:0c:f8:d7:65:50:
32:d9:30:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:22 2025 by rpki-client