Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/ac38c4-4b83-40b7-8d0e-7ceabce34e0d/1/DwF0NTFc_wN-HdpF59EugLWIspc.roa
File: DwF0NTFc_wN-HdpF59EugLWIspc.roa (raw, json)
Hash identifier: /VQPcdxANgo0KOQyvJhEhc1DAWafQiDm5Lk3TLvK3J4=
Subject key identifier: 0F:01:74:35:31:5C:FF:03:7E:1D:DA:45:E7:D1:2E:80:B5:88:B2:97
Certificate issuer: /CN=58d3e953b5fe17a531c9cf71560748df41ff714a
Certificate serial: 018570707CCE2AA66DF50A2F35A70536880A
Authority key identifier: 58:D3:E9:53:B5:FE:17:A5:31:C9:CF:71:56:07:48:DF:41:FF:71:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WNPpU7X-F6Uxyc9xVgdI30H_cUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/ac38c4-4b83-40b7-8d0e-7ceabce34e0d/1/DwF0NTFc_wN-HdpF59EugLWIspc.roa
Signing time: Mon 02 Jan 2023 03:04:58 +0000
ROA not before: Mon 02 Jan 2023 03:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56537
IP address blocks: 193.22.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:7c:ce:2a:a6:6d:f5:0a:2f:35:a7:05:36:88:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58d3e953b5fe17a531c9cf71560748df41ff714a
Validity
Not Before: Jan 2 03:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f017435315cff037e1dda45e7d12e80b588b297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:33:b6:2a:cb:39:41:b3:50:90:58:5e:40:a9:
99:6d:ce:d5:ee:a3:42:ec:a5:e4:1b:65:a2:2f:fa:
09:93:cd:6b:cd:ff:b2:ae:f7:45:5a:36:4c:b6:6d:
ec:8d:dd:6e:55:02:fc:dc:3b:c9:46:09:42:e6:17:
14:9e:0f:8e:46:cb:62:1f:c8:e4:ec:70:80:1d:f6:
84:98:59:e8:4d:1f:14:53:7d:16:ff:24:cf:e3:aa:
83:a4:80:3c:9e:5f:f9:29:9a:13:9a:1a:44:3e:c4:
54:5d:bd:af:94:3a:37:e5:8c:82:9a:bd:6b:7d:44:
79:24:1f:95:2c:c1:b9:e6:5b:ae:f2:11:7c:66:01:
5b:5d:87:bd:fc:3c:0d:98:00:33:d6:18:ae:b2:41:
5e:9d:34:02:8c:b5:af:df:40:26:63:8b:2e:0c:79:
eb:3d:05:31:dd:a4:7e:ee:95:12:a0:2c:19:e5:97:
b9:c4:6e:87:37:76:35:55:18:e2:21:70:9c:09:f1:
b1:ef:91:2f:26:28:cc:4c:e0:93:91:39:b0:53:c3:
3c:b0:42:e9:ea:ca:be:92:a2:3e:46:16:88:ad:c9:
4c:3b:c5:93:63:c8:77:da:54:f5:e1:d7:cf:32:4b:
1f:41:76:e7:58:28:47:ad:ee:e2:e4:44:47:b5:a1:
96:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:01:74:35:31:5C:FF:03:7E:1D:DA:45:E7:D1:2E:80:B5:88:B2:97
X509v3 Authority Key Identifier:
keyid:58:D3:E9:53:B5:FE:17:A5:31:C9:CF:71:56:07:48:DF:41:FF:71:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WNPpU7X-F6Uxyc9xVgdI30H_cUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ac38c4-4b83-40b7-8d0e-7ceabce34e0d/1/DwF0NTFc_wN-HdpF59EugLWIspc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ac38c4-4b83-40b7-8d0e-7ceabce34e0d/1/WNPpU7X-F6Uxyc9xVgdI30H_cUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.88.0/24
Signature Algorithm: sha256WithRSAEncryption
74:bb:ae:26:45:41:25:08:20:9d:a1:8a:c2:d9:fb:48:4d:28:
25:64:f8:08:34:3f:9f:29:67:33:e7:66:22:86:11:0d:24:08:
db:42:0f:bc:e8:70:ff:94:e8:f9:56:59:6d:8b:b0:bb:66:d8:
b1:00:bf:c7:74:59:e6:c9:09:83:af:ae:53:0d:5d:2c:20:ec:
b0:0c:0e:fc:85:da:36:98:96:f9:55:e2:b1:57:0d:c6:f5:e6:
9a:81:02:86:5c:02:2b:06:2f:f0:04:e7:22:cd:2c:a4:c9:21:
56:b3:53:6f:44:84:df:97:ff:84:34:7a:da:14:77:92:bf:68:
a9:0b:4f:cc:d0:87:4d:34:8d:65:1e:53:c7:34:4d:69:4e:db:
ed:15:34:16:51:27:4a:aa:ee:89:cb:ff:c9:d2:c6:60:28:7e:
db:0d:c6:02:11:39:bd:e9:42:74:17:70:92:b5:61:59:27:9b:
f6:a9:c7:af:c7:6c:e8:52:38:4f:a6:cf:7d:17:16:d5:4c:f1:
de:7a:99:51:67:6b:cb:30:b0:44:88:8c:67:ea:20:9c:99:7e:
2d:c4:f9:8e:57:60:db:01:05:3d:ad:3d:77:b9:33:83:ef:c3:
d3:a6:de:85:b3:82:5d:09:14:c6:8f:b6:eb:55:c3:d8:2b:2c:
6d:25:eb:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:23 2024 by rpki-client on console-fra.rpki-client.org