Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2nC8UP2bnzYWucOlArOPJxv6C8E.roa
File: 2nC8UP2bnzYWucOlArOPJxv6C8E.roa (raw, json)
Hash identifier: Xfvn8CWJsr9CXshD4KGjmvciVcIvoeCkGHUJw8jrXKY=
Subject key identifier: DA:70:BC:50:FD:9B:9F:36:16:B9:C3:A5:02:B3:8F:27:1B:FA:0B:C1
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0188AF27EC2804ABDB05D4D0672FB70FBAD3
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2nC8UP2bnzYWucOlArOPJxv6C8E.roa
Signing time: Mon 12 Jun 2023 10:30:08 +0000
ROA not before: Mon 12 Jun 2023 10:30:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 93.90.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 10:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:27:ec:28:04:ab:db:05:d4:d0:67:2f:b7:0f:ba:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 12 10:30:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da70bc50fd9b9f3616b9c3a502b38f271bfa0bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:dd:7b:55:70:2c:db:63:bc:12:fc:4a:82:3a:
16:6c:7d:37:69:ec:5d:36:c7:3d:69:f3:f9:69:0c:
f3:35:c9:9b:ea:c7:c7:85:a3:17:24:05:25:9c:eb:
81:86:af:65:22:89:2d:d2:32:af:5d:e7:40:cf:64:
1e:2b:99:53:e8:e9:42:1a:5b:69:c3:d7:83:d7:d2:
96:d2:8f:cd:38:0a:4b:f3:1f:30:84:7d:74:2d:25:
c9:9c:7a:cb:5c:90:97:b2:5d:10:d5:12:be:90:83:
a7:4e:9d:97:9e:38:f0:20:79:e3:d8:9a:eb:e3:4b:
1e:9d:1b:9a:a7:5c:53:13:31:a6:ad:7f:1e:5f:d4:
50:29:09:81:15:7e:31:01:68:c3:d4:8d:3b:4b:81:
83:62:fb:66:2e:2e:68:0c:df:34:8c:d2:60:04:86:
dd:db:c6:9c:aa:ce:13:3f:cb:28:26:40:f4:87:65:
3c:40:08:25:a1:c7:69:9f:1e:ad:63:d0:e1:0e:02:
38:fd:26:f6:2a:44:f6:88:73:6b:fe:59:6c:fd:fd:
f8:d4:9b:5c:ef:4f:c4:ab:b0:8a:ee:3c:b4:a7:dc:
88:3b:23:6c:3e:2d:27:02:83:55:96:80:59:20:5e:
4e:95:9f:66:a6:41:7c:c7:fa:13:cf:b4:e9:c4:09:
28:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:70:BC:50:FD:9B:9F:36:16:B9:C3:A5:02:B3:8F:27:1B:FA:0B:C1
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2nC8UP2bnzYWucOlArOPJxv6C8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.90.74.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4e:6d:13:51:81:5c:df:4d:f7:11:b7:88:80:48:92:9e:af:
21:2f:ab:d1:67:98:ed:75:68:ac:de:c2:ea:5a:3a:52:2a:2f:
c2:19:4c:82:0a:d6:6d:3b:30:86:60:5f:e5:27:f5:b4:95:c2:
f3:44:c7:82:a1:7f:0e:a9:4c:19:62:07:a0:eb:ef:3b:26:6c:
be:45:e8:9c:47:82:00:27:60:fb:04:1f:58:8e:4f:bb:53:e1:
e9:a8:00:00:2c:2d:b9:09:b3:48:37:9e:bc:c5:26:d9:a0:33:
64:5e:8e:c8:16:29:d5:5d:33:5e:d1:26:6b:4f:b4:1a:6d:04:
79:cc:d7:34:4e:ff:ff:e9:ed:45:68:2d:0c:92:79:d4:b2:c6:
6b:d4:a5:be:e6:9f:6e:09:6d:f6:10:4a:d7:77:62:36:bb:1e:
d8:20:4f:1c:b0:ad:c1:ee:f5:20:41:79:0e:8c:93:65:74:84:
a2:ac:76:dc:86:ab:63:31:87:15:90:e7:89:9b:eb:6c:74:1b:
af:2e:92:ae:db:05:ef:54:55:09:d0:3b:b3:5b:a2:bd:3c:b9:
10:9b:68:57:55:f6:db:e7:4f:b1:1e:7a:01:fb:02:96:d3:7f:
62:75:aa:dc:93:f9:a1:a8:81:37:26:06:99:24:0b:85:2e:91:
8b:50:7f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:06 2024 by rpki-client on console-fra.rpki-client.org