Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/iT9uPEzoIMiU4SSeXmCWj2erGas.roa
File: iT9uPEzoIMiU4SSeXmCWj2erGas.roa (raw, json)
Hash identifier: Se3n/P2u1RfQ7PDElW+172A2r0b7tnIanP4Pkmu5jKI=
Subject key identifier: 89:3F:6E:3C:4C:E8:20:C8:94:E1:24:9E:5E:60:96:8F:67:AB:19:AB
Certificate issuer: /CN=93b322b59048e107b94a6db06557af5f0c9c290c
Certificate serial: 01856F66EAD9E282FC7113A852D0B58E2512
Authority key identifier: 93:B3:22:B5:90:48:E1:07:B9:4A:6D:B0:65:57:AF:5F:0C:9C:29:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7MitZBI4Qe5Sm2wZVevXwycKQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/iT9uPEzoIMiU4SSeXmCWj2erGas.roa
Signing time: Sun 01 Jan 2023 22:14:53 +0000
ROA not before: Sun 01 Jan 2023 22:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 559
IP address blocks: 193.5.26.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ea:d9:e2:82:fc:71:13:a8:52:d0:b5:8e:25:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93b322b59048e107b94a6db06557af5f0c9c290c
Validity
Not Before: Jan 1 22:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=893f6e3c4ce820c894e1249e5e60968f67ab19ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:fd:4a:c6:06:d2:2f:fe:6b:b2:f8:ec:30:a4:
2a:fd:11:b5:99:da:75:58:44:92:6b:c9:4e:38:f6:
0d:bb:3f:81:cd:f6:84:b0:ea:bc:61:c0:55:05:51:
7e:10:e1:2e:09:ce:0e:8c:62:d5:97:50:d2:49:9b:
55:83:07:73:01:75:66:55:cf:83:14:d9:cb:c3:a8:
82:cd:ae:94:00:89:a4:5f:b6:8d:14:ae:6c:19:21:
1d:99:5e:dc:b0:0e:86:7f:02:a1:5a:c1:89:c5:9c:
82:2b:78:fb:a4:df:1e:8d:82:87:f0:60:a6:de:c9:
06:cd:76:18:c5:82:53:fe:13:ab:7e:96:ec:cf:39:
8f:9d:79:63:b2:e2:57:61:ba:73:1a:72:67:6f:99:
2e:46:9c:05:34:96:6a:37:f6:f1:14:92:59:33:12:
00:7f:5a:1b:c2:2c:4f:0a:f9:c8:17:93:0e:ce:cd:
3a:34:dd:96:9c:7b:a7:7e:f6:ca:38:99:10:0d:cd:
65:0a:90:16:85:0a:e7:30:ec:56:dd:1d:7b:92:b7:
3b:53:1e:89:3d:a9:3f:c3:2d:0e:e6:73:d0:e2:d2:
ac:60:36:16:ac:3d:37:53:3b:da:47:5b:15:37:e0:
b0:0b:17:74:2b:d9:32:57:0a:8d:06:3c:f1:d9:d9:
fa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3F:6E:3C:4C:E8:20:C8:94:E1:24:9E:5E:60:96:8F:67:AB:19:AB
X509v3 Authority Key Identifier:
keyid:93:B3:22:B5:90:48:E1:07:B9:4A:6D:B0:65:57:AF:5F:0C:9C:29:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7MitZBI4Qe5Sm2wZVevXwycKQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/iT9uPEzoIMiU4SSeXmCWj2erGas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7ff520-7270-4a98-aec9-ef604d416c37/1/k7MitZBI4Qe5Sm2wZVevXwycKQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.26.0/23
Signature Algorithm: sha256WithRSAEncryption
52:45:6c:c4:03:15:9f:10:b4:66:e8:e5:ed:4b:3a:ed:c1:44:
d2:16:50:6c:28:ec:20:ef:3e:93:67:42:86:52:95:ab:1f:a6:
b4:8b:72:8e:84:9c:25:2d:ca:28:f8:83:d4:b1:da:9b:e4:0d:
e8:98:37:b8:70:89:29:ae:d5:01:96:64:ab:92:63:b6:21:0a:
4f:03:bf:a2:d5:a6:5d:14:70:a7:9f:3c:65:ad:db:df:2d:5f:
27:7a:15:c8:be:8b:68:6f:07:3d:23:c3:96:7e:24:89:ed:f9:
f7:df:e4:61:1d:ab:29:31:9f:09:a9:1d:cb:33:c6:4e:02:fd:
7b:be:47:8c:26:e1:25:2b:67:3d:fb:3e:fb:4b:59:7c:4d:39:
66:c6:b2:c3:31:25:81:05:14:dc:d5:e0:33:6b:07:d1:02:ef:
f3:85:f9:2d:28:25:95:e3:ec:76:b8:61:b8:40:7f:4b:88:9d:
d4:91:f2:df:92:49:d7:d8:8d:79:2b:5d:eb:31:f4:b0:ce:ad:
df:ce:99:7a:be:27:ed:22:c7:27:4b:30:18:f6:66:98:e7:2d:
c3:1a:49:2e:25:7e:09:b2:ab:a9:fd:98:65:21:14:0a:7d:11:
66:f8:82:92:7e:80:f4:85:16:37:1f:f0:f1:21:9e:3b:4c:b3:
d5:29:dd:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:46 2024 by rpki-client on console-ams.rpki-client.org