Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/a43850-02a2-4859-9bde-564ebdcf3f96/1/oLfXNWofK1PKhta9KlIzmKz_PU4.roa
File: oLfXNWofK1PKhta9KlIzmKz_PU4.roa (raw, json)
Hash identifier: r8kAoYcdBABtocTfNeTlyvLDTFxK0LuoW4j29ZxVA8Y=
Subject key identifier: A0:B7:D7:35:6A:1F:2B:53:CA:86:D6:BD:2A:52:33:98:AC:FF:3D:4E
Certificate issuer: /CN=7c3532e52eaafef948c42c8b1d51145cac9d4c96
Certificate serial: 01856C9CD492316278C977B812819562A853
Authority key identifier: 7C:35:32:E5:2E:AA:FE:F9:48:C4:2C:8B:1D:51:14:5C:AC:9D:4C:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDUy5S6q_vlIxCyLHVEUXKydTJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/a43850-02a2-4859-9bde-564ebdcf3f96/1/oLfXNWofK1PKhta9KlIzmKz_PU4.roa
Signing time: Sun 01 Jan 2023 09:14:55 +0000
ROA not before: Sun 01 Jan 2023 09:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204591
IP address blocks: 193.22.232.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:d4:92:31:62:78:c9:77:b8:12:81:95:62:a8:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3532e52eaafef948c42c8b1d51145cac9d4c96
Validity
Not Before: Jan 1 09:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0b7d7356a1f2b53ca86d6bd2a523398acff3d4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:81:e6:a1:4d:b0:89:ab:a9:0a:c0:b3:78:09:
91:83:bc:09:01:65:28:3e:13:f3:44:15:e2:2c:b3:
20:23:e4:24:80:d9:97:5a:de:7e:af:aa:5d:25:ca:
9d:94:44:44:f2:c7:e0:5b:17:00:3b:62:71:c1:42:
78:a3:42:84:f5:47:41:58:37:db:53:f5:7c:12:24:
02:5f:23:89:e4:48:85:c6:ae:32:78:a7:6a:90:6f:
36:a7:ee:c2:8d:d7:84:a6:73:e6:78:10:99:1c:e2:
c1:fb:e5:a6:86:39:a5:1a:6f:f0:7e:99:ab:e0:1d:
de:31:6b:66:8e:fe:01:29:fe:3c:1e:75:a3:a2:0f:
ab:ce:e2:dd:44:a1:43:45:a1:a9:09:5f:0b:38:68:
7c:57:f9:c5:15:02:0e:dc:0e:8a:48:f5:61:f2:a7:
de:15:f7:39:f7:51:d6:60:57:bc:5a:c4:88:a6:4d:
7e:1f:8e:1f:44:a0:2f:1b:66:27:82:bb:47:c2:66:
c7:d9:dd:c2:5c:b6:68:d2:26:2f:ee:64:a2:ad:5e:
dd:09:b3:6d:48:e4:13:b3:b3:4f:0b:4e:55:ff:8c:
0c:d7:4b:47:b0:76:ae:a3:43:1a:e2:dd:c5:7e:9c:
8a:61:69:b6:42:8b:da:d8:7e:54:a3:22:50:3b:12:
22:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B7:D7:35:6A:1F:2B:53:CA:86:D6:BD:2A:52:33:98:AC:FF:3D:4E
X509v3 Authority Key Identifier:
keyid:7C:35:32:E5:2E:AA:FE:F9:48:C4:2C:8B:1D:51:14:5C:AC:9D:4C:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDUy5S6q_vlIxCyLHVEUXKydTJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a43850-02a2-4859-9bde-564ebdcf3f96/1/oLfXNWofK1PKhta9KlIzmKz_PU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a43850-02a2-4859-9bde-564ebdcf3f96/1/fDUy5S6q_vlIxCyLHVEUXKydTJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.232.0/22
Signature Algorithm: sha256WithRSAEncryption
46:4e:32:b1:26:14:e1:f1:6f:a3:00:58:91:e6:20:59:0d:7b:
c3:a4:82:73:c4:b7:a7:ab:04:a9:c2:55:4d:d8:7e:68:e4:f8:
84:7c:ab:d4:d3:15:3c:92:e7:e9:37:04:d7:98:28:04:7d:5a:
8f:db:46:22:aa:9e:7b:fb:a7:0f:8b:2f:b0:69:20:e5:71:2c:
5a:88:34:27:2b:25:f5:60:ed:dd:41:bb:db:66:2b:90:91:45:
47:7e:8c:a8:96:aa:a7:e6:41:d3:fb:05:3b:18:af:8c:1c:e5:
c4:10:f5:c4:3a:f0:b4:3e:38:90:2f:ce:62:b3:83:b2:17:47:
ea:e0:b4:ce:c5:65:68:59:9d:d8:16:f5:fd:a0:f7:52:b9:c4:
4a:9a:e8:0f:e9:f5:9f:72:2e:6a:ab:6f:47:bf:74:12:10:ea:
ab:e1:2b:ec:13:36:f1:73:2a:ab:4e:5e:ff:4a:b1:75:a6:c2:
ec:ba:b9:76:91:e6:5d:f7:a5:0d:ed:bb:e5:95:ee:61:b0:9c:
d8:5e:db:5c:61:7a:29:b2:e9:e8:ba:60:33:fd:62:8c:58:1b:
e2:5e:3d:56:15:cf:6d:b1:7f:0b:5e:cd:ae:15:5c:c5:c7:b4:
32:9f:db:b7:a9:39:9a:6f:4d:4c:d0:a0:63:53:07:bd:ba:d7:
39:f1:02:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:55 2024 by rpki-client on console-fra.rpki-client.org