Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/AiQDdNBmi9TbIoaAiXc8W13AFHE.roa
File: AiQDdNBmi9TbIoaAiXc8W13AFHE.roa (raw, json)
Hash identifier: fAIB5C8dj3UsE/h4eyV2FQofcfgD512xkM3pd0uY074=
Subject key identifier: 02:24:03:74:D0:66:8B:D4:DB:22:86:80:89:77:3C:5B:5D:C0:14:71
Certificate issuer: /CN=a84570854fe886b94ae625363c625dda60bb3efc
Certificate serial: 018572311D1071A1A2BDCB5A1C532694879D
Authority key identifier: A8:45:70:85:4F:E8:86:B9:4A:E6:25:36:3C:62:5D:DA:60:BB:3E:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEVwhU_ohrlK5iU2PGJd2mC7Pvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/AiQDdNBmi9TbIoaAiXc8W13AFHE.roa
Signing time: Mon 02 Jan 2023 11:14:59 +0000
ROA not before: Mon 02 Jan 2023 11:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35407
IP address blocks: 193.138.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1d:10:71:a1:a2:bd:cb:5a:1c:53:26:94:87:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a84570854fe886b94ae625363c625dda60bb3efc
Validity
Not Before: Jan 2 11:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02240374d0668bd4db22868089773c5b5dc01471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:04:0c:ba:6a:62:e4:13:71:7e:5b:73:ec:72:
f0:9e:b8:b1:5c:cc:bf:6d:63:9b:33:98:0f:39:71:
38:e5:e9:03:2a:70:f5:7b:46:df:28:e6:1f:b1:c3:
95:da:ca:36:62:9d:c6:f4:aa:fa:3b:ec:20:78:00:
89:a1:4a:f4:40:a0:2a:e8:80:5a:c6:1b:50:cc:3e:
e2:39:44:0c:8a:fe:4a:9c:01:ab:f9:22:6c:c0:fb:
0f:dc:65:5e:8f:b3:8b:c9:8b:8b:fb:9f:7e:12:cd:
48:13:73:c9:79:80:f6:7a:b4:d2:5c:86:9f:7a:ca:
a9:0f:68:01:6c:88:8e:a4:5f:58:7e:a9:28:06:9f:
43:ec:ed:e2:0e:df:b0:b8:15:03:55:26:ec:87:f7:
74:47:0b:60:c8:e2:ae:5c:6b:24:31:11:82:d4:5e:
45:25:1b:d7:df:0f:bd:b3:cc:8c:fd:4b:ee:ce:75:
8d:25:c0:92:e3:e9:c3:81:fe:95:6e:5f:94:6a:93:
37:46:a7:68:b9:62:af:b1:75:ce:94:9e:dc:bb:22:
65:67:bc:82:94:fc:60:db:5f:35:12:9f:84:0d:c5:
ec:98:51:50:72:02:84:18:d1:c7:20:89:07:10:c0:
42:f0:0e:0b:d8:4e:89:c8:1b:b4:40:c5:74:d6:f5:
5e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:24:03:74:D0:66:8B:D4:DB:22:86:80:89:77:3C:5B:5D:C0:14:71
X509v3 Authority Key Identifier:
keyid:A8:45:70:85:4F:E8:86:B9:4A:E6:25:36:3C:62:5D:DA:60:BB:3E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEVwhU_ohrlK5iU2PGJd2mC7Pvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/AiQDdNBmi9TbIoaAiXc8W13AFHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/fac2a2-5f69-4043-8d65-5bc8795c2cba/1/qEVwhU_ohrlK5iU2PGJd2mC7Pvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.30.0/24
Signature Algorithm: sha256WithRSAEncryption
21:f1:f4:8b:5c:ff:09:11:18:55:47:52:bc:0b:a8:77:1d:7c:
65:15:29:5f:08:b8:7e:fe:50:a8:a1:f7:88:0b:e6:22:23:dc:
aa:54:82:ce:8c:c4:51:b0:f3:ae:81:7e:6c:b5:7a:c7:b6:32:
d6:11:35:7e:f1:18:cd:95:f6:b9:a1:03:8d:30:a0:fa:1c:07:
35:49:f4:57:22:db:41:97:1d:76:ce:b6:a4:86:09:cf:6f:63:
05:e7:f9:a7:94:91:0f:c1:3c:cd:1d:a0:76:89:0d:09:60:0c:
be:0e:75:12:d0:f1:e4:86:84:ef:55:73:f2:ed:64:54:63:3a:
3c:f6:e1:b5:28:90:b1:15:99:49:1f:15:c5:98:f6:70:ed:23:
f4:c4:2e:53:10:25:13:b5:de:70:f7:c8:70:7c:d8:8d:c0:04:
58:d5:67:57:70:53:98:4b:45:4a:84:ea:b5:83:5c:13:fd:a6:
4b:5f:30:32:6e:ba:d5:2e:ac:79:f9:ff:75:45:4a:16:05:b0:
96:7a:5d:c8:eb:1f:72:75:a8:61:16:c3:17:1f:c8:26:1f:a0:
ca:c1:5a:e7:e3:e0:f2:06:77:2a:60:f5:8a:cd:99:6b:4f:02:
7a:7e:66:ee:c0:dd:e7:7b:f3:07:32:ed:a1:9c:5a:48:50:90:
a2:a3:07:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:06 2024 by rpki-client on console-ams.rpki-client.org