Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3c634a-0cd9-4765-bd09-5663de16d66f/1/1VXLP40JCA9wTk7N5O5Kc4ariig.roa
File: 1VXLP40JCA9wTk7N5O5Kc4ariig.roa (raw, json)
Hash identifier: /fpbKOGoIgjr5ruw2u/QHsYSheRcp010LrUOLh/ogkE=
Subject key identifier: D5:55:CB:3F:8D:09:08:0F:70:4E:4E:CD:E4:EE:4A:73:86:AB:8A:28
Certificate issuer: /CN=696c67b25d2f225d972cfdf3b4eaff22e37900a8
Certificate serial: 018ECC7C833D5501DAFCEAF3AD526EEE0840
Authority key identifier: 69:6C:67:B2:5D:2F:22:5D:97:2C:FD:F3:B4:EA:FF:22:E3:79:00:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWxnsl0vIl2XLP3ztOr_IuN5AKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3c634a-0cd9-4765-bd09-5663de16d66f/1/1VXLP40JCA9wTk7N5O5Kc4ariig.roa
Signing time: Thu 11 Apr 2024 09:28:15 +0000
ROA not before: Thu 11 Apr 2024 09:28:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 193.93.64.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 18 Apr 2024 07:17:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:cc:7c:83:3d:55:01:da:fc:ea:f3:ad:52:6e:ee:08:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=696c67b25d2f225d972cfdf3b4eaff22e37900a8
Validity
Not Before: Apr 11 09:28:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d555cb3f8d09080f704e4ecde4ee4a7386ab8a28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:97:97:3b:6d:e3:63:02:6b:9f:99:49:8d:60:
a8:fb:e3:3d:cf:89:90:14:40:8e:ae:f2:5a:48:1e:
45:7d:46:b3:2b:6e:8e:35:a8:86:fe:47:69:f4:d4:
a3:88:c6:8c:8a:cc:f4:3c:1b:9f:f4:d7:a3:3f:c7:
c9:e2:eb:2b:15:be:91:ae:af:e7:5d:36:78:eb:a2:
07:89:d1:ee:3a:c3:30:1c:a0:8c:33:e4:cd:32:24:
f7:53:f3:8a:03:41:99:31:2e:11:38:a9:60:6a:35:
43:71:4b:61:f3:16:3b:14:4a:4e:2c:98:e5:92:23:
4b:76:9f:82:8c:2a:ed:06:f9:4d:7b:23:28:70:cf:
6b:9a:88:38:52:62:2d:78:0c:60:a4:67:88:0b:a0:
22:76:54:73:12:e0:1e:61:e1:84:cb:4c:42:a5:72:
49:ee:0e:fc:a9:fd:5f:e4:70:c0:99:0f:b7:ca:5f:
58:43:08:09:2b:f1:2a:71:9c:cd:80:a1:b2:66:f2:
5c:95:de:00:d6:4f:51:76:86:af:fc:3a:af:b8:06:
56:fc:1c:2c:77:6d:07:dc:a5:1e:9a:92:56:31:79:
5c:76:86:d0:63:91:12:b9:9d:ce:3c:a2:30:21:40:
94:52:f2:1a:f1:26:f1:67:4d:fc:03:d7:ba:af:8b:
e2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:55:CB:3F:8D:09:08:0F:70:4E:4E:CD:E4:EE:4A:73:86:AB:8A:28
X509v3 Authority Key Identifier:
keyid:69:6C:67:B2:5D:2F:22:5D:97:2C:FD:F3:B4:EA:FF:22:E3:79:00:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWxnsl0vIl2XLP3ztOr_IuN5AKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3c634a-0cd9-4765-bd09-5663de16d66f/1/1VXLP40JCA9wTk7N5O5Kc4ariig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3c634a-0cd9-4765-bd09-5663de16d66f/1/aWxnsl0vIl2XLP3ztOr_IuN5AKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.64.0/22
Signature Algorithm: sha256WithRSAEncryption
38:d2:7f:4f:1a:37:d1:46:04:f2:e9:65:95:c7:7a:19:cf:99:
82:8a:75:e3:e1:eb:3e:0f:0b:be:1b:e2:6a:4c:8b:a7:cb:85:
bd:41:86:7f:96:7c:2c:b9:88:fa:67:72:89:0c:d0:0b:cb:60:
c5:e1:7f:fd:49:e1:f5:8f:7b:53:fd:f5:95:1d:98:56:4c:b6:
bc:8b:9d:a3:46:5e:a4:56:a3:00:00:12:9b:bd:56:bc:85:df:
c8:7f:f1:7e:d4:23:65:9a:a2:ee:27:78:b8:69:54:46:5a:de:
63:e8:29:4f:c6:04:5d:14:f8:40:c4:15:6c:c0:6a:ed:2e:8d:
55:4d:83:5f:5e:ad:e5:94:84:d0:d5:e9:46:6c:f2:07:78:27:
db:1e:4c:26:f5:58:7d:2b:0c:a6:43:0d:6d:88:0d:bf:9f:27:
6a:13:29:3a:9c:e3:5b:64:25:20:44:c6:37:a8:23:6e:5f:8c:
ee:d8:e3:b6:5f:ce:5c:90:6e:4a:35:c1:c1:51:96:06:15:f2:
50:e9:df:b8:b3:fe:32:85:42:9b:5a:81:3a:3e:4a:aa:6e:50:
0f:67:b3:8a:75:a4:64:97:5f:98:6d:fc:1e:41:f7:66:00:71:
d6:72:df:41:2c:50:0e:d6:db:b3:0d:01:ab:e4:0c:28:ae:f1:
18:9e:79:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:00 2024 by rpki-client on console-fra.rpki-client.org