Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/KU3YC9st8NIaiACSJSZwt_f7LNI.roa
File: KU3YC9st8NIaiACSJSZwt_f7LNI.roa (raw, json)
Hash identifier: F19VqdIXfuA6cTlt95LW5mVDTPJJU3khki43WhfirBk=
Subject key identifier: 29:4D:D8:0B:DB:2D:F0:D2:1A:88:00:92:25:26:70:B7:F7:FB:2C:D2
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB8358EABD65C670D74FCB4C7B9BF4D
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/KU3YC9st8NIaiACSJSZwt_f7LNI.roa
Signing time: Sun 01 Jan 2023 09:44:49 +0000
ROA not before: Sun 01 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5377
IP address blocks: 193.252.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:35:8e:ab:d6:5c:67:0d:74:fc:b4:c7:b9:bf:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=294dd80bdb2df0d21a880092252670b7f7fb2cd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:76:53:39:fb:af:7a:dd:e7:ca:1a:6c:51:f5:
0a:d6:25:36:3f:78:e0:0d:60:2a:0c:ca:bf:61:0a:
88:3c:49:3d:f6:90:d3:46:b7:65:20:de:d2:ba:48:
7c:4c:aa:54:45:65:74:13:94:b0:4d:7f:95:eb:9f:
08:72:c9:7b:c4:bf:e9:15:41:a9:e2:bf:4d:48:9b:
ba:8a:d7:15:bf:ce:b3:b1:35:57:96:27:49:31:05:
d6:05:52:f8:e9:de:22:ee:f1:84:bf:5c:68:25:a7:
8c:0f:b7:27:02:6c:10:07:9b:06:cd:ae:3f:30:35:
66:0a:03:88:b1:7b:f8:14:e5:0f:fc:99:8b:43:b6:
d7:7a:ec:fe:50:c1:77:57:47:38:13:25:46:88:b8:
2d:7d:6a:0f:4b:b6:7b:4a:5c:33:2c:9f:d7:14:54:
2e:47:c3:bb:fa:58:3b:1e:09:2a:a3:98:d7:30:2d:
5c:c8:36:00:71:e3:5d:d6:4e:22:9f:fa:cd:b9:02:
dd:56:65:45:f3:7d:fc:f7:d4:95:74:d6:25:c7:bc:
32:fa:aa:8c:b2:78:2d:1a:3f:32:2f:49:e8:f7:ee:
61:d4:86:0e:67:21:51:94:40:32:12:91:35:aa:d3:
e4:b4:93:91:be:ee:57:ba:69:64:54:d4:2d:df:4b:
dc:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4D:D8:0B:DB:2D:F0:D2:1A:88:00:92:25:26:70:B7:F7:FB:2C:D2
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/KU3YC9st8NIaiACSJSZwt_f7LNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.252.234.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f1:1e:5c:1d:59:d6:f7:da:e4:89:60:d7:03:81:25:96:7a:
cd:2d:da:33:f1:e1:a9:23:5b:82:14:b7:6c:2a:83:89:44:29:
d1:2d:27:4f:28:67:5b:41:2e:a9:48:ab:50:47:43:20:85:61:
6c:e7:fd:a8:0d:a2:45:87:3f:8f:18:26:29:32:59:24:dc:70:
4a:3e:a6:2c:96:83:ae:86:c3:db:06:01:d8:3b:7c:98:33:6f:
71:f8:93:16:b3:44:5b:3d:4b:75:42:5b:5c:5c:a8:be:9d:2b:
d7:bc:22:51:96:66:ff:48:3c:73:06:37:1b:ee:32:42:2f:dc:
d1:82:6c:0d:c2:26:f4:e3:49:9d:40:02:54:8c:1c:96:f9:44:
e2:12:e6:e9:d2:a1:cd:13:6a:4b:f1:86:ea:fa:46:6a:f6:23:
62:45:37:04:06:2b:31:b9:10:48:25:a7:cb:43:ec:fc:cd:5e:
b7:5e:a7:f3:74:c9:5a:6d:b8:e1:69:d0:97:c5:a8:09:2b:87:
c0:d1:c3:7c:c4:ef:54:53:67:84:d3:22:42:51:74:42:df:f8:
4f:69:7a:49:3b:c0:7b:fa:96:04:96:f0:ed:e7:69:e3:df:0d:
cc:51:2d:0c:27:c6:37:eb:4d:26:cc:41:5b:40:e8:0e:75:c4:
01:51:7c:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org