Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/I_8aOia_6NBZ04fMTA3Pdx5cy5U.roa
File: I_8aOia_6NBZ04fMTA3Pdx5cy5U.roa (raw, json)
Hash identifier: 12AzGM26fyGwy07QQK16jzZAJt0D29QVvd7ySq+OnGs=
Subject key identifier: 23:FF:1A:3A:26:BF:E8:D0:59:D3:87:CC:4C:0D:CF:77:1E:5C:CB:95
Certificate issuer: /CN=3617c0659666985e185d84121e8c20a3644ea98d
Certificate serial: 01856F66FDD27A662DB66B74C6B3F2720F09
Authority key identifier: 36:17:C0:65:96:66:98:5E:18:5D:84:12:1E:8C:20:A3:64:4E:A9:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/I_8aOia_6NBZ04fMTA3Pdx5cy5U.roa
Signing time: Sun 01 Jan 2023 22:14:58 +0000
ROA not before: Sun 01 Jan 2023 22:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 193.57.56.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:fd:d2:7a:66:2d:b6:6b:74:c6:b3:f2:72:0f:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3617c0659666985e185d84121e8c20a3644ea98d
Validity
Not Before: Jan 1 22:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23ff1a3a26bfe8d059d387cc4c0dcf771e5ccb95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:74:4f:ac:8d:56:e9:7f:3b:c5:9d:5c:26:af:
13:76:6a:f6:14:cd:93:b3:dc:7a:86:b5:cb:fb:fe:
48:08:3f:e8:89:1b:5e:f4:ed:fb:9f:07:3b:b4:71:
5a:c1:c3:fd:0a:37:95:7c:78:29:2b:eb:92:d3:4e:
75:47:cc:f6:7e:e3:74:46:43:ab:90:5c:80:10:19:
11:bc:b5:c5:e2:7b:ee:9c:fb:61:83:8b:ee:a2:c2:
77:1b:0f:c0:40:60:bc:11:4f:f9:45:9b:7b:c4:c8:
3c:38:4f:a6:28:35:cb:45:a4:66:ac:c1:20:b0:d8:
18:4f:cd:71:af:c1:1f:a5:c5:15:91:a3:73:79:33:
e6:21:3c:3b:a9:d4:57:0d:17:dc:45:f6:de:a9:53:
74:4d:6e:14:de:b0:cf:22:47:78:09:f4:f2:aa:da:
14:34:6e:6a:57:1f:6d:aa:f5:5f:31:58:0f:66:34:
9c:a9:47:08:76:97:7c:5e:ab:80:c3:9b:86:bc:34:
ca:40:13:cb:6a:6d:cd:27:08:e3:8a:54:02:ab:21:
41:fd:55:74:12:31:e4:4d:6d:4b:19:37:39:08:20:
88:8f:67:84:11:a9:92:ad:46:9f:39:4e:17:f8:51:
7c:60:f0:8d:0a:05:c2:06:50:75:d6:56:f6:c7:fa:
79:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FF:1A:3A:26:BF:E8:D0:59:D3:87:CC:4C:0D:CF:77:1E:5C:CB:95
X509v3 Authority Key Identifier:
keyid:36:17:C0:65:96:66:98:5E:18:5D:84:12:1E:8C:20:A3:64:4E:A9:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/I_8aOia_6NBZ04fMTA3Pdx5cy5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.56.0/24
Signature Algorithm: sha256WithRSAEncryption
52:a8:55:43:65:35:fd:9d:b3:48:1e:5f:d6:68:cd:83:18:ad:
b7:37:ea:5c:b6:1e:f1:ae:6e:06:8c:78:20:7b:ff:39:fc:74:
ab:2f:5e:0e:7e:c4:37:6d:a9:c0:ec:db:52:ff:2a:d4:d3:32:
70:b4:95:4e:23:a7:81:8d:f3:09:3d:44:ef:e9:76:90:da:18:
bb:bd:64:27:68:3d:a3:db:7b:59:7b:0c:8f:f8:d5:ac:ef:49:
df:63:42:66:ae:18:f3:9d:99:24:20:cd:c7:64:65:dd:a3:ed:
c9:8a:da:24:03:62:72:1d:ae:9c:e4:0c:19:36:66:36:13:2e:
48:de:a8:8c:9b:3e:4f:f8:06:12:be:76:16:f0:2d:05:ee:fe:
bd:54:10:f9:a8:36:a2:70:35:c8:11:7a:80:1a:bb:ea:46:53:
a0:40:20:c8:62:bb:76:70:9f:c1:6f:3f:fb:48:7a:6e:39:e8:
36:ad:3c:bd:44:26:07:d8:7f:d3:14:21:4e:9d:99:e8:19:c8:
2e:93:2a:33:66:99:06:dd:e1:3a:44:d0:c0:81:e1:8b:7e:2f:
9f:ac:ee:36:fb:d9:94:1d:f1:eb:bb:b4:fd:86:36:0a:34:6c:
6e:ca:8e:84:73:a0:e3:d5:9f:bc:0f:a4:1c:3f:21:86:76:f0:
9d:7d:a4:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:54 2024 by rpki-client on console-fra.rpki-client.org