Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/3i7Qceyfxo9zPzPJuzyRbeu9UHM.roa
File: 3i7Qceyfxo9zPzPJuzyRbeu9UHM.roa (raw, json)
Hash identifier: u8jbMtS7hT2F+/Yfpodj0/BYQeu+nc61lIychDY0GGU=
Subject key identifier: DE:2E:D0:71:EC:9F:C6:8F:73:3F:33:C9:BB:3C:91:6D:EB:BD:50:73
Certificate issuer: /CN=cd3c110dfd77f57757391c0faedeebe36086571d
Certificate serial: 01856C2ED77EECE7CAF7270449EE62E84C1F
Authority key identifier: CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/3i7Qceyfxo9zPzPJuzyRbeu9UHM.roa
Signing time: Sun 01 Jan 2023 07:14:47 +0000
ROA not before: Sun 01 Jan 2023 07:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43598
IP address blocks: 193.187.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:d7:7e:ec:e7:ca:f7:27:04:49:ee:62:e8:4c:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd3c110dfd77f57757391c0faedeebe36086571d
Validity
Not Before: Jan 1 07:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de2ed071ec9fc68f733f33c9bb3c916debbd5073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:22:38:4b:c9:4a:c4:44:f8:d3:ff:7b:75:e8:
1a:e5:05:a5:58:ac:36:08:e4:93:f3:5f:26:05:88:
96:a3:f5:3b:4f:fc:7a:ba:23:35:63:d8:eb:0e:ae:
c4:7f:96:b7:e2:0f:c1:69:30:2f:94:48:4a:ad:7f:
04:17:b4:0f:87:9f:4d:a3:95:dd:25:b6:5d:fd:2b:
4e:90:dc:6f:3e:16:f6:e7:67:75:1f:8c:5a:d8:b6:
c8:0b:fe:86:2f:51:ff:9d:03:1f:e8:88:1a:65:f3:
97:51:1d:d4:50:ba:74:d1:c3:65:82:25:87:65:db:
7d:da:1d:fa:e0:f4:ba:20:dc:ec:22:d6:f7:58:b1:
9f:53:3a:6b:af:e5:39:fe:94:14:06:74:cd:bd:0a:
44:aa:c2:91:00:ab:6b:a0:36:d0:c0:fd:29:fe:f0:
2e:9b:fb:27:43:0f:f5:6c:59:91:69:33:b6:dd:f3:
a3:e3:93:6a:b0:c5:b8:72:76:a3:9a:11:1d:1a:b2:
fd:fe:36:b8:4e:70:57:87:57:a7:77:ef:2d:d6:ba:
3c:f9:70:42:b3:2b:cd:59:52:e5:ad:6d:aa:cf:0d:
a5:50:fb:fb:2c:3e:20:1e:36:89:f4:39:27:88:55:
96:4f:ea:60:1e:bd:b3:e3:39:bf:c6:49:61:82:89:
35:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2E:D0:71:EC:9F:C6:8F:73:3F:33:C9:BB:3C:91:6D:EB:BD:50:73
X509v3 Authority Key Identifier:
keyid:CD:3C:11:0D:FD:77:F5:77:57:39:1C:0F:AE:DE:EB:E3:60:86:57:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTwRDf139XdXORwPrt7r42CGVx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/3i7Qceyfxo9zPzPJuzyRbeu9UHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/20e5a2-0e64-4ea3-8c86-6c02ec19b809/1/zTwRDf139XdXORwPrt7r42CGVx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.187.192.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:c2:46:f6:ff:65:60:cc:41:40:01:aa:5e:ff:29:19:42:35:
0b:17:67:ce:98:e5:d9:b3:e4:d2:99:e7:70:dd:0d:96:54:eb:
56:b6:4d:ca:64:2f:b3:df:d3:ff:db:14:48:eb:07:ab:38:44:
1d:49:a9:85:aa:1b:8b:f7:d9:5b:0c:29:c1:17:14:cd:ab:ae:
a2:57:ae:73:01:4d:18:8e:61:98:cb:55:14:28:01:95:4d:82:
e8:23:16:a1:34:af:1d:c8:aa:35:5e:c6:2e:b1:9f:53:9a:3a:
a0:a8:fc:d7:fe:32:54:0a:6d:f6:73:29:30:69:12:9b:13:bd:
46:96:b5:45:fc:39:6f:a9:56:8b:7d:1c:5f:95:2c:98:69:c1:
ac:06:90:2b:7f:6a:01:f8:e8:94:c5:a9:72:0c:5f:f6:33:36:
eb:21:91:2f:46:a2:52:18:cb:64:5d:45:e6:dc:f4:eb:1f:c1:
02:c2:51:30:0b:b0:fb:09:f4:17:82:26:85:6f:e0:44:73:f5:
10:8e:bc:df:c2:31:f8:26:ed:76:af:f0:eb:ed:e9:d0:eb:9a:
e8:ca:14:f7:0a:b2:a0:63:32:53:00:84:03:24:19:2d:ca:3a:
e9:0f:fe:96:7d:07:60:a6:89:81:03:55:a6:7a:37:06:4e:3e:
36:e5:72:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:53 2024 by rpki-client on console-fra.rpki-client.org