Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/idI3P3wGHM51CSwoZMaxeX0NP3o.roa
File: idI3P3wGHM51CSwoZMaxeX0NP3o.roa (raw, json)
Hash identifier: yyrwfHk0SbgT+pEygkLAeXjCekyEqkpILPHlEKezTt4=
Subject key identifier: 89:D2:37:3F:7C:06:1C:CE:75:09:2C:28:64:C6:B1:79:7D:0D:3F:7A
Certificate issuer: /CN=d9f200e2d38683a7cb1ce5cabbee34c068834a0b
Certificate serial: 018C3907B21C79444CF2785E9270ACDCF0F2
Authority key identifier: D9:F2:00:E2:D3:86:83:A7:CB:1C:E5:CA:BB:EE:34:C0:68:83:4A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/idI3P3wGHM51CSwoZMaxeX0NP3o.roa
Signing time: Tue 05 Dec 2023 08:10:54 +0000
ROA not before: Tue 05 Dec 2023 08:10:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43189
IP address blocks: 193.134.240.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Dec 2023 13:27:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:39:07:b2:1c:79:44:4c:f2:78:5e:92:70:ac:dc:f0:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9f200e2d38683a7cb1ce5cabbee34c068834a0b
Validity
Not Before: Dec 5 08:10:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89d2373f7c061cce75092c2864c6b1797d0d3f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:92:57:1d:ef:6c:09:d2:0d:33:f5:f2:fc:8e:
f1:07:7f:c0:e3:bd:77:2c:74:4b:57:ff:5c:51:80:
90:f2:8f:a5:00:8a:df:17:34:d5:5e:c8:6a:22:7d:
99:e6:40:ed:d8:98:74:7a:a9:aa:bf:72:54:59:33:
6a:d0:92:f5:20:26:8b:dd:85:46:a0:0d:d0:30:b3:
b8:45:c0:99:cc:ef:2d:0e:ad:f2:d0:c3:a7:bf:87:
51:97:7e:14:68:1d:3e:ff:04:1d:db:68:a2:a1:f6:
40:11:c9:c7:f4:03:19:b5:34:60:e4:8c:3f:01:7d:
13:88:f8:fc:23:2b:0d:8e:dc:2c:73:a4:51:8c:07:
13:eb:28:51:78:47:7b:19:6c:21:a8:57:5f:89:70:
6f:88:f4:98:ce:30:a8:7e:19:9c:26:3b:aa:28:7b:
7b:04:58:33:81:b2:e0:2e:76:2e:a5:40:ab:83:a2:
58:e2:2b:73:94:dc:cf:38:e1:be:99:37:e3:b4:56:
58:d8:a5:95:1c:1f:8c:c2:31:98:01:08:9e:b9:8f:
3e:bd:92:94:09:78:b1:a2:12:7e:1a:b8:b6:e4:e9:
44:13:2c:97:cf:d1:d0:80:26:98:a9:5d:fd:e6:e2:
90:a4:82:e7:cc:b6:7d:4a:a0:b9:1e:d0:52:13:2c:
ad:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:D2:37:3F:7C:06:1C:CE:75:09:2C:28:64:C6:B1:79:7D:0D:3F:7A
X509v3 Authority Key Identifier:
keyid:D9:F2:00:E2:D3:86:83:A7:CB:1C:E5:CA:BB:EE:34:C0:68:83:4A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fIA4tOGg6fLHOXKu-40wGiDSgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/idI3P3wGHM51CSwoZMaxeX0NP3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/307b98-c222-4835-8381-09c8fe724cd7/1/2fIA4tOGg6fLHOXKu-40wGiDSgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.240.0/21
Signature Algorithm: sha256WithRSAEncryption
96:bd:65:f4:73:bd:ef:a9:30:21:bf:d9:ec:8e:b8:3e:90:52:
34:ef:fd:91:54:c5:f1:a3:e4:62:ca:49:55:70:03:4a:e4:7b:
d5:b4:cf:bf:60:32:14:44:83:a5:77:45:06:d0:a9:6a:84:68:
5a:48:39:8b:12:2c:4a:08:cf:b5:58:a5:50:34:41:5f:6c:57:
68:36:7b:5c:f2:cb:cd:19:1a:32:48:32:ad:ff:c7:85:b4:75:
e6:20:16:68:cf:ab:29:57:75:3b:62:6f:7a:96:74:31:4a:73:
76:3d:84:e7:2f:d0:d8:4f:5e:f9:01:1b:9b:f5:ce:57:84:db:
ce:2d:97:49:2e:ca:9d:9d:2c:d8:d8:20:08:f8:93:77:32:e8:
9b:03:a6:d2:f4:36:d0:a3:b2:f2:49:08:37:ce:41:3a:82:e6:
82:7e:08:ef:59:92:05:34:bd:6e:5a:58:9b:e9:e8:a8:2a:f0:
19:79:cb:1a:41:0a:55:1a:02:2b:a2:56:55:85:da:83:1a:b6:
b8:89:62:eb:e0:02:71:cf:e9:37:5b:29:d8:ca:cd:13:b4:db:
3a:f4:f2:d8:0d:90:af:29:e9:06:2d:f5:89:33:7c:55:75:41:
5b:de:09:16:bc:95:29:3e:3d:76:ea:d1:a8:97:ff:c1:bf:42:
62:6f:6e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:25 2024 by rpki-client on console-ams.rpki-client.org