Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/sz9aYo2kmCBsyB6nBizv-uNyCBc.roa
File: sz9aYo2kmCBsyB6nBizv-uNyCBc.roa (raw, json)
Hash identifier: s3lPhF9lvrUENIrWVqAGazudjM8BUIiZKjRVVLLFJmI=
Subject key identifier: B3:3F:5A:62:8D:A4:98:20:6C:C8:1E:A7:06:2C:EF:FA:E3:72:08:17
Certificate issuer: /CN=4ce74cf63723c0269d5283b1065821af384a9a26
Certificate serial: 018BD2DDDE774E76CB369C0E236F019F713D
Authority key identifier: 4C:E7:4C:F6:37:23:C0:26:9D:52:83:B1:06:58:21:AF:38:4A:9A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOdM9jcjwCadUoOxBlghrzhKmiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/sz9aYo2kmCBsyB6nBizv-uNyCBc.roa
Signing time: Wed 15 Nov 2023 12:03:57 +0000
ROA not before: Wed 15 Nov 2023 12:03:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 188.227.198.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:dd:de:77:4e:76:cb:36:9c:0e:23:6f:01:9f:71:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce74cf63723c0269d5283b1065821af384a9a26
Validity
Not Before: Nov 15 12:03:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b33f5a628da498206cc81ea7062ceffae3720817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fb:54:82:89:e7:28:3a:90:87:1d:cd:76:72:
c5:d3:2d:dc:01:71:c2:cf:53:35:d7:e9:34:c9:09:
d6:74:05:1e:89:a4:1c:48:90:fc:55:f0:f2:9d:5c:
4e:d6:c1:55:f3:6c:0c:22:4e:01:2b:34:99:35:a9:
e1:47:40:82:b2:0b:49:35:92:c9:e6:2e:cd:df:a1:
ac:74:fe:98:f9:3d:f9:cf:0e:d3:7b:06:af:d6:c1:
97:80:f2:db:51:99:d2:9f:63:0a:a5:68:37:1d:f9:
e6:8b:8e:71:04:58:a7:d5:b9:3b:25:94:b7:b8:40:
c0:c0:87:be:a0:c6:c7:b1:22:f3:63:61:81:5f:7b:
ef:e8:6a:88:96:13:b5:d8:12:2b:4c:6d:35:d5:60:
7f:9d:fd:30:e8:eb:c8:f7:3b:e9:04:a4:99:cf:b1:
b0:02:9d:4e:2b:f5:7a:f2:c9:92:24:a0:c4:60:58:
37:0d:56:0b:f9:1d:a8:a4:d8:ee:73:94:13:3a:d2:
66:1c:3b:58:02:f0:83:d4:8b:6b:61:80:8f:42:82:
ce:08:1e:68:62:6e:f9:1b:8d:51:b0:64:30:3c:a4:
01:94:f1:42:7f:73:f1:41:cb:24:d9:c9:95:3b:29:
b8:24:2e:44:e5:01:7f:fe:f6:fa:d7:e8:e0:e0:c0:
60:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3F:5A:62:8D:A4:98:20:6C:C8:1E:A7:06:2C:EF:FA:E3:72:08:17
X509v3 Authority Key Identifier:
keyid:4C:E7:4C:F6:37:23:C0:26:9D:52:83:B1:06:58:21:AF:38:4A:9A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOdM9jcjwCadUoOxBlghrzhKmiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/sz9aYo2kmCBsyB6nBizv-uNyCBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5a0f81-31e2-4db2-8339-9241ff6ec3bf/1/TOdM9jcjwCadUoOxBlghrzhKmiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.227.198.0/23
Signature Algorithm: sha256WithRSAEncryption
89:c6:57:d9:f7:83:64:f9:41:42:7b:13:75:8a:4f:a0:0f:da:
6b:1e:00:11:34:b5:23:1b:82:0f:8e:be:f8:5d:55:01:dd:8a:
60:49:ab:1b:4e:84:a0:24:bb:8b:b9:c7:b1:9f:50:15:df:4f:
0e:01:b9:4e:8e:01:44:e7:15:e8:dc:f3:0d:96:c9:8e:d7:f7:
dd:ff:b2:57:8a:ab:2d:ac:6e:16:e1:b3:c8:8c:1b:28:ca:2b:
9c:54:13:81:47:47:fd:e6:a5:b0:f2:56:3e:42:f3:cc:3e:0b:
17:6e:c5:3c:cd:40:1b:fa:d0:59:05:fc:e1:c6:c5:39:c4:07:
ed:06:2e:10:82:9b:d8:4e:dc:26:44:1e:f1:d8:3a:62:49:eb:
26:44:73:7d:a1:84:bf:31:ef:cf:16:70:91:d5:44:80:e6:1e:
58:b4:f1:35:5b:ed:25:84:25:41:b9:18:92:21:af:8d:8a:2c:
09:4a:1f:4a:9d:11:1c:55:64:1f:44:24:54:ea:69:bd:dc:0a:
6f:0c:8d:0e:89:2a:36:d2:04:bc:53:97:9d:18:a2:6b:0d:80:
a8:2b:b0:26:1a:29:e2:e7:2f:95:e2:2a:69:64:ac:32:8b:89:
e4:0d:1d:d7:cf:b1:e8:51:cb:e5:81:dc:78:a5:4a:2f:e5:e5:
9b:5d:39:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org