Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/AwUVWICNtMKT6ACfZEB37coLhHI.roa
File: AwUVWICNtMKT6ACfZEB37coLhHI.roa (raw, json)
Hash identifier: DxLyPT2H/eZxLlNCJM+W7nbWSrOCBgj0OBiCJ/eFzw0=
Subject key identifier: 03:05:15:58:80:8D:B4:C2:93:E8:00:9F:64:40:77:ED:CA:0B:84:72
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 01856D13B8B835FD7655CAFAA3D38F9AE403
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/AwUVWICNtMKT6ACfZEB37coLhHI.roa
Signing time: Sun 01 Jan 2023 11:24:47 +0000
ROA not before: Sun 01 Jan 2023 11:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48152
IP address blocks: 193.200.218.0/24 maxlen: 24
2001:678:878::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:b8:b8:35:fd:76:55:ca:fa:a3:d3:8f:9a:e4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Jan 1 11:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03051558808db4c293e8009f644077edca0b8472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ee:b2:08:2e:b4:93:55:3b:4e:41:5e:91:07:
fc:29:aa:26:c4:3c:28:87:a4:ff:95:e1:5c:f3:19:
a9:f0:a5:4c:d6:84:df:ad:dd:f9:d9:e7:c7:70:7e:
fd:c5:1d:03:26:7e:f3:e2:a6:bc:f1:73:75:d4:c7:
04:f3:7e:3e:4a:52:fd:32:06:9a:d8:0b:0a:cc:7c:
27:ee:1b:c3:85:72:d3:ed:96:03:a5:55:69:c0:f3:
64:84:d4:1c:d6:df:0c:72:fc:45:7d:37:cf:1b:a2:
c9:00:bb:0f:4a:12:f5:74:34:d6:be:62:56:b4:4a:
55:1c:c6:f9:31:33:16:d9:1e:6b:73:b1:2b:38:83:
45:40:a8:94:e3:91:6d:41:17:70:2a:5c:2b:20:3f:
1a:6e:80:e9:d0:83:d1:d5:80:c0:8b:59:4d:eb:05:
7d:93:11:5e:45:44:c3:19:46:4e:3f:d5:5e:c8:0a:
fb:84:05:4d:b4:cc:7f:4f:1f:1e:12:df:63:6c:34:
e4:80:ae:8b:3d:2b:95:5b:48:2b:27:a2:5e:4d:be:
d9:34:d3:88:e7:e6:cf:6e:8e:10:cd:bc:c0:dc:d5:
7f:ee:83:81:09:35:82:7a:6f:8b:a7:02:57:dc:26:
09:28:2d:d5:ba:f1:c5:35:e8:da:a0:10:10:af:6a:
0e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:05:15:58:80:8D:B4:C2:93:E8:00:9F:64:40:77:ED:CA:0B:84:72
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/AwUVWICNtMKT6ACfZEB37coLhHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.218.0/24
IPv6:
2001:678:878::/48
Signature Algorithm: sha256WithRSAEncryption
32:87:2a:87:21:7f:21:57:2a:27:de:d3:27:80:e5:71:fe:a4:
1f:a1:47:93:eb:32:3b:63:07:dd:aa:0e:c2:d4:82:56:07:9a:
57:d9:61:53:91:12:29:fd:f1:a6:ee:9f:4e:78:42:7c:8b:79:
a0:9a:93:c1:9a:2e:9a:3d:20:d4:d1:68:72:78:75:36:ee:6e:
45:94:8f:b7:c3:2f:02:b7:67:bb:58:4e:86:2e:4a:f9:aa:0f:
08:27:7a:a4:78:cf:4d:d2:88:4f:b4:44:da:b9:75:ed:16:b8:
8b:de:29:48:ab:51:b9:3b:c2:f8:91:6f:53:81:7e:c7:96:84:
0b:68:b8:de:59:4a:fb:8b:c1:65:ce:cd:1a:97:c3:d5:a7:3a:
51:d8:5a:8f:78:c1:3d:4a:33:8f:67:2e:03:67:fb:58:e7:46:
69:45:09:59:b2:24:d0:c8:d3:09:36:bd:d6:0d:cd:7e:83:f0:
79:4b:b5:74:19:e6:bd:96:00:94:92:5b:dc:65:03:59:e5:b3:
65:93:05:80:90:c1:21:a3:9c:39:04:7c:fd:0d:86:45:b6:d3:
ac:fa:90:ce:94:5c:9e:c9:2c:96:aa:27:dd:a8:3f:fb:b7:86:
95:d7:30:66:54:18:2f:1f:ca:ec:9e:9d:1a:df:52:4f:c1:5c:
23:d9:a7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:57 2024 by rpki-client on console-fra.rpki-client.org