Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/zKuBiqxceLqkaNJpuEmOJS28G7g.roa
File: zKuBiqxceLqkaNJpuEmOJS28G7g.roa (raw, json)
Hash identifier: jA5ST+UiMxo/Y3UrIPTCNTXX2yxxqqeChKjlX3cjgfo=
Subject key identifier: CC:AB:81:8A:AC:5C:78:BA:A4:68:D2:69:B8:49:8E:25:2D:BC:1B:B8
Certificate issuer: /CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Certificate serial: 01872471964ABCC29D59A93EA76FFF32C43F
Authority key identifier: BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/zKuBiqxceLqkaNJpuEmOJS28G7g.roa
Signing time: Mon 27 Mar 2023 19:00:36 +0000
ROA not before: Mon 27 Mar 2023 19:00:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56469
IP address blocks: 193.22.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:24:71:96:4a:bc:c2:9d:59:a9:3e:a7:6f:ff:32:c4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be84ae7c0503ac450934c9f6cff39a1537a5126d
Validity
Not Before: Mar 27 19:00:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccab818aac5c78baa468d269b8498e252dbc1bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:dd:e6:6b:9d:9b:bc:c4:d5:d9:08:d7:7a:3d:
ee:1b:cd:cc:44:03:30:31:50:ac:a0:8f:9a:56:5c:
e4:2d:89:5e:eb:61:cd:b1:bc:f9:54:9a:e0:75:06:
0a:f5:17:64:24:59:ce:44:47:ce:3e:48:9c:05:04:
51:6d:9b:68:18:40:34:11:3b:56:96:02:17:fd:e6:
19:0a:5e:5f:59:59:f9:48:26:a1:46:c9:6c:ea:6f:
58:cb:25:af:e4:88:56:6e:1e:d4:7a:c7:c3:23:d9:
66:6e:57:32:d5:3b:0a:ba:3e:66:f6:1c:97:f3:88:
cd:86:30:c3:42:3b:50:0b:c4:c2:5e:0c:da:8d:c9:
94:11:28:18:fd:f9:64:9f:6b:f7:20:0f:ec:d4:cd:
b3:2c:d9:b2:d8:03:a6:cd:b8:39:7c:40:21:37:da:
00:3c:ec:21:5b:6d:6b:04:2f:78:2b:dd:a7:96:3d:
d1:d6:fc:0f:12:23:ed:c0:da:aa:5b:8c:9e:53:d7:
7d:08:84:f2:dc:3b:77:2f:82:4e:5d:67:2e:43:20:
d4:d9:5f:60:e3:44:f3:c7:99:bf:25:6e:f6:b2:89:
dc:0e:1d:39:c7:e9:61:ff:13:e0:d2:fa:58:22:3e:
a5:40:96:4a:8b:57:72:18:73:db:e1:6f:b4:01:b8:
e4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:AB:81:8A:AC:5C:78:BA:A4:68:D2:69:B8:49:8E:25:2D:BC:1B:B8
X509v3 Authority Key Identifier:
keyid:BE:84:AE:7C:05:03:AC:45:09:34:C9:F6:CF:F3:9A:15:37:A5:12:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/voSufAUDrEUJNMn2z_OaFTelEm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/zKuBiqxceLqkaNJpuEmOJS28G7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/a204a5-1950-4b44-ac90-81a2b347da84/1/voSufAUDrEUJNMn2z_OaFTelEm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.128.0/24
Signature Algorithm: sha256WithRSAEncryption
37:5c:c5:d7:cc:7d:7f:10:f6:de:ff:6a:c3:82:93:cc:ac:d0:
d0:05:68:5c:96:78:26:2d:57:83:c4:0f:b1:0c:81:f9:17:c8:
4d:52:0c:b9:ff:0c:27:96:9a:06:12:be:76:85:c1:a1:74:01:
e2:a5:a7:1f:13:5a:f2:f9:73:18:6a:3f:7c:2f:45:86:32:fa:
bb:13:54:80:1f:6a:2a:21:ac:78:44:80:93:fe:12:02:e8:0a:
12:48:69:0d:11:c6:10:b0:9b:98:91:99:36:e6:0c:fe:c6:1d:
ec:81:00:f2:70:48:c7:a9:50:98:f1:c8:7a:36:d4:0a:de:f4:
37:57:49:48:b6:b4:cd:63:5d:08:95:af:2b:99:e5:61:0d:7c:
87:2a:22:1f:0d:38:e6:4e:8e:33:10:0f:56:96:a4:14:de:a7:
3b:3c:29:89:9e:bb:6d:87:4f:05:0f:24:20:2d:04:ff:63:04:
1b:55:21:19:5f:ef:1c:5d:02:51:51:ec:37:e2:db:2f:1c:84:
52:fa:c6:32:e3:63:76:b6:26:74:13:17:fc:04:1b:56:97:e8:
6f:1b:b0:6b:d2:87:87:18:4d:4d:c3:6d:de:32:9a:89:2b:21:
f9:f5:6b:cc:35:c7:b9:b3:95:b6:5c:15:16:59:76:9f:ed:e0:
c9:5b:75:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org