Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/a_HWZ5ldmMVh3xNH2nI1jb5j5d4.roa
File: a_HWZ5ldmMVh3xNH2nI1jb5j5d4.roa (raw, json)
Hash identifier: /kAsQRr9AOJl8kU40gitWqZI9sy6b/PmnwM1SGxCoGk=
Subject key identifier: 6B:F1:D6:67:99:5D:98:C5:61:DF:13:47:DA:72:35:8D:BE:63:E5:DE
Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Certificate serial: 018572B4013685880F2ACB520BD4CA516F4E
Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/a_HWZ5ldmMVh3xNH2nI1jb5j5d4.roa
Signing time: Mon 02 Jan 2023 13:37:57 +0000
ROA not before: Mon 02 Jan 2023 13:37:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9158
IP address blocks: 193.3.233.0/24 maxlen: 24
2a10:e200::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:01:36:85:88:0f:2a:cb:52:0b:d4:ca:51:6f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63
Validity
Not Before: Jan 2 13:37:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6bf1d667995d98c561df1347da72358dbe63e5de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:79:a1:ac:0e:5f:72:08:cf:9d:3b:27:0f:d9:
1d:63:b6:d9:7e:c1:71:24:bd:2d:6c:93:86:f2:cb:
ec:4b:96:c8:73:8f:c7:96:53:52:7a:e5:74:34:eb:
ec:41:41:ae:fa:e0:e0:cc:bc:24:44:cb:0f:a3:f8:
87:84:83:23:7e:8d:b4:29:a1:f3:86:76:bd:c7:e7:
c0:c8:4f:9d:d0:26:29:ec:cd:58:a1:5e:f7:74:7a:
5c:75:bb:02:87:11:21:ce:4a:78:f6:53:83:18:1d:
e0:f6:0d:0f:66:86:e0:06:fc:10:db:0e:63:2e:d0:
0a:d1:d9:2e:a6:fc:00:47:8c:6f:f4:fe:82:1b:9d:
92:58:4a:84:82:6d:3a:af:f2:7d:09:a8:ef:bf:58:
de:ad:37:a2:e5:de:d3:a6:f5:2c:a4:59:31:cb:87:
3c:fe:b2:05:70:72:16:7d:eb:0c:13:04:d3:ec:c5:
e8:80:49:70:7b:f6:96:ff:7a:de:39:1b:93:ca:e7:
cc:18:ca:a0:33:9e:c8:51:fc:de:5b:54:76:2d:65:
7d:ac:2d:ed:5a:93:4f:98:48:3e:65:c9:11:a0:b5:
2b:cf:1d:ac:1a:0a:f0:8a:31:13:fb:8b:0f:96:df:
63:31:19:98:0d:a6:28:49:c5:e6:f5:ba:19:cf:f4:
63:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F1:D6:67:99:5D:98:C5:61:DF:13:47:DA:72:35:8D:BE:63:E5:DE
X509v3 Authority Key Identifier:
keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/a_HWZ5ldmMVh3xNH2nI1jb5j5d4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.233.0/24
IPv6:
2a10:e200::/32
Signature Algorithm: sha256WithRSAEncryption
db:2e:28:ff:59:8f:8b:29:77:2d:26:83:8b:0e:6a:16:36:b1:
87:20:ad:31:a4:12:55:b9:82:6c:75:af:ee:00:58:1d:a9:e2:
ad:10:9f:6a:de:80:82:eb:13:30:3d:95:ee:2b:ae:91:7c:70:
6d:a6:06:7c:97:f0:06:0c:37:f8:77:71:0d:1f:2b:22:75:11:
05:cc:8a:ba:20:49:b6:cd:03:4e:a5:d0:3e:59:c6:1d:f7:a7:
cb:e0:24:d0:74:5c:a6:46:55:b3:96:b1:84:f3:60:50:41:14:
30:be:a6:5e:82:85:1b:49:b3:ef:58:7b:80:a9:9f:1a:0f:d3:
13:b2:c9:50:82:70:c3:ec:de:28:3b:67:ca:38:cb:7b:34:e6:
44:fb:57:d3:62:ae:c3:87:fb:3e:4b:c9:d8:22:61:d2:91:76:
50:ba:50:e4:ac:72:2e:af:0a:c2:58:57:26:9a:db:e6:5f:56:
eb:fe:ff:44:8e:92:60:a6:ec:94:49:be:54:15:16:84:15:0c:
fb:8b:aa:2f:07:85:44:b9:11:ac:89:ea:d4:7e:d7:13:57:fc:
11:6a:18:70:aa:f8:75:15:84:7e:fb:01:a4:68:06:dc:45:40:
07:f9:e3:b2:d6:e3:7b:c3:53:76:1c:a9:e3:0e:c9:74:22:0e:
39:16:f9:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:07 2024 by rpki-client on console-ams.rpki-client.org