Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e7f322-39b5-437a-99fd-743c30801ff1/1/cGzo5-he1Ns5jFwKAav8oL9jsSk.roa
File: cGzo5-he1Ns5jFwKAav8oL9jsSk.roa (raw, json)
Hash identifier: 2yvKQu+3DVczqC/FeYz4p6DNA9IqK5wfTahozACx0gg=
Subject key identifier: 70:6C:E8:E7:E8:5E:D4:DB:39:8C:5C:0A:01:AB:FC:A0:BF:63:B1:29
Certificate issuer: /CN=782f9f3bbbe0b51ea9e9b2e96c6868748fa078f7
Certificate serial: 018856FA3C83945E8F83963CC50760BA3E1B
Authority key identifier: 78:2F:9F:3B:BB:E0:B5:1E:A9:E9:B2:E9:6C:68:68:74:8F:A0:78:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eC-fO7vgtR6p6bLpbGhodI-gePc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e7f322-39b5-437a-99fd-743c30801ff1/1/cGzo5-he1Ns5jFwKAav8oL9jsSk.roa
Signing time: Fri 26 May 2023 07:33:40 +0000
ROA not before: Fri 26 May 2023 07:33:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15580
IP address blocks: 193.29.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:fa:3c:83:94:5e:8f:83:96:3c:c5:07:60:ba:3e:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=782f9f3bbbe0b51ea9e9b2e96c6868748fa078f7
Validity
Not Before: May 26 07:33:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=706ce8e7e85ed4db398c5c0a01abfca0bf63b129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:55:c3:8d:b6:6e:fc:11:33:a2:27:cd:6e:bb:
a4:ef:86:95:03:23:d4:92:20:04:9b:02:f9:0f:23:
e5:30:fd:71:91:33:88:fa:8b:7d:af:c0:05:58:7c:
bf:35:6f:b9:e2:16:c8:33:69:bc:bc:25:f0:75:cc:
b7:61:51:a7:54:8c:9e:31:65:b2:ac:5c:21:72:50:
1c:8e:9d:ff:9e:61:5d:3a:5a:3f:a9:da:85:82:cb:
2a:91:de:bf:f4:25:d9:4d:f7:ba:8b:b7:71:e8:00:
1f:be:e3:cf:6d:25:42:de:eb:ca:1f:b2:d0:d2:60:
73:4f:79:37:99:24:8a:a0:7c:a2:af:0e:07:e0:bd:
42:cd:20:70:07:a5:95:28:5a:d2:74:fb:d2:5d:ea:
b1:d3:73:3e:8b:c4:dc:46:fb:8c:0f:b4:07:e7:85:
fe:1c:be:74:93:92:d3:ce:5e:4d:e8:ae:f5:cf:be:
e1:01:d3:6a:0d:69:0b:b4:3a:f6:9c:1b:76:8b:20:
3b:de:8d:b1:73:ca:78:3f:f1:1b:49:df:1d:28:4d:
28:95:29:e8:53:bd:f1:b4:6b:a9:46:a9:b1:bd:6b:
56:20:ca:e7:a6:af:a4:aa:f9:02:99:ac:a5:6b:d9:
52:d3:f5:e4:99:83:e2:9a:01:2f:80:99:89:77:18:
06:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:6C:E8:E7:E8:5E:D4:DB:39:8C:5C:0A:01:AB:FC:A0:BF:63:B1:29
X509v3 Authority Key Identifier:
keyid:78:2F:9F:3B:BB:E0:B5:1E:A9:E9:B2:E9:6C:68:68:74:8F:A0:78:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eC-fO7vgtR6p6bLpbGhodI-gePc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e7f322-39b5-437a-99fd-743c30801ff1/1/cGzo5-he1Ns5jFwKAav8oL9jsSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e7f322-39b5-437a-99fd-743c30801ff1/1/eC-fO7vgtR6p6bLpbGhodI-gePc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.52.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ca:ed:1b:19:e7:67:76:d8:27:b2:09:9f:3d:35:01:c0:69:
e5:cf:de:a0:ce:f6:b8:3f:fb:41:84:06:cc:89:af:72:47:79:
36:58:35:95:d5:bb:ca:a1:d0:21:27:db:51:29:1b:c8:bc:88:
ff:b0:38:41:35:41:f1:f8:ec:1e:e0:ff:1d:cb:6f:ec:39:8f:
c8:63:17:42:71:83:49:51:d6:ad:42:dd:8f:1e:73:3d:36:e9:
89:ce:77:10:de:78:91:9d:3b:54:d2:5d:05:30:ae:1a:b4:08:
87:ea:22:2f:7f:af:b6:5f:9b:a7:5a:ac:78:e7:ef:ac:74:e4:
ad:49:6c:c9:67:c0:76:b2:54:db:be:33:d3:d6:cd:32:7d:c3:
2d:0f:3d:3c:1a:50:b1:53:5d:dd:4f:5d:06:56:6c:97:c7:7e:
82:cd:e2:ee:dc:25:6f:29:6b:3d:ad:b2:50:7a:c8:75:5f:49:
54:5e:f9:26:4e:fa:16:dc:51:b0:9a:41:d4:d3:1b:c2:2d:de:
08:12:0d:c4:ea:03:52:49:38:df:9f:ef:a9:7c:4b:21:97:1a:
4f:58:24:a9:b6:ba:b0:09:48:b3:4e:e6:a6:ab:6b:eb:8b:c5:
42:61:92:9e:70:b9:c6:c5:ca:0d:a2:6e:3c:ec:ee:58:ec:4c:
cb:ca:ef:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:17 2024 by rpki-client on console-fra.rpki-client.org