Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/d5c45a-8448-47b8-b577-af9d695e940f/1/J7wxsNJSeZ5CvBmVqraegXiAaVU.roa
File: J7wxsNJSeZ5CvBmVqraegXiAaVU.roa (raw, json)
Hash identifier: tIv9+gbc00+0iPa0HpVYj2PZzO+i50ypOePjs97XBUM=
Subject key identifier: 27:BC:31:B0:D2:52:79:9E:42:BC:19:95:AA:B6:9E:81:78:80:69:55
Certificate issuer: /CN=2e7288982add83642f81a3deba8f856f14e0990a
Certificate serial: 01856C0142030BA852E26D0C5F348F1A837E
Authority key identifier: 2E:72:88:98:2A:DD:83:64:2F:81:A3:DE:BA:8F:85:6F:14:E0:99:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LnKImCrdg2QvgaPeuo-FbxTgmQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/d5c45a-8448-47b8-b577-af9d695e940f/1/J7wxsNJSeZ5CvBmVqraegXiAaVU.roa
Signing time: Sun 01 Jan 2023 06:24:59 +0000
ROA not before: Sun 01 Jan 2023 06:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 193.100.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:42:03:0b:a8:52:e2:6d:0c:5f:34:8f:1a:83:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e7288982add83642f81a3deba8f856f14e0990a
Validity
Not Before: Jan 1 06:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27bc31b0d252799e42bc1995aab69e8178806955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:85:7d:e7:48:33:6d:cd:77:af:82:1a:f5:3a:
58:7b:51:93:c7:2b:c5:f9:b6:ea:5c:d9:da:b3:ba:
49:56:4b:cd:fb:0f:9d:d5:59:8e:21:7e:27:98:08:
82:17:ad:17:8c:1e:ad:94:9a:e5:47:a8:d2:18:86:
56:7b:c6:15:85:a2:a6:70:5c:2f:46:5d:5f:69:43:
3a:b7:3e:62:82:63:e3:5d:61:da:f1:e4:49:4f:e8:
7b:48:87:0c:89:7c:b5:a7:b2:b5:bd:5b:26:8a:90:
e8:f5:45:28:96:c8:56:e1:96:f0:6a:86:49:9a:ec:
a3:7d:27:52:e8:13:9f:5a:58:8c:16:83:bd:03:3c:
1d:2b:7f:39:c1:59:7c:38:6f:d3:11:b6:a0:dc:8b:
08:a0:53:7f:34:94:35:61:3e:f9:e8:13:c2:07:cf:
ec:de:6e:cd:20:57:fd:94:46:23:9a:82:0f:27:a9:
fe:51:49:7a:5c:dc:a1:fa:a8:30:4e:96:7a:d1:68:
37:96:af:55:c1:6f:8f:f1:0f:f1:cf:d1:2d:a1:85:
e3:32:68:be:07:c4:cb:0a:90:75:88:c1:c1:c7:a5:
78:61:42:a3:49:eb:0c:cb:0a:67:f9:f1:33:b9:5d:
cc:97:d2:c8:85:e7:3b:26:b3:ba:7a:90:ec:96:cc:
11:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:BC:31:B0:D2:52:79:9E:42:BC:19:95:AA:B6:9E:81:78:80:69:55
X509v3 Authority Key Identifier:
keyid:2E:72:88:98:2A:DD:83:64:2F:81:A3:DE:BA:8F:85:6F:14:E0:99:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LnKImCrdg2QvgaPeuo-FbxTgmQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/d5c45a-8448-47b8-b577-af9d695e940f/1/J7wxsNJSeZ5CvBmVqraegXiAaVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/d5c45a-8448-47b8-b577-af9d695e940f/1/LnKImCrdg2QvgaPeuo-FbxTgmQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.100.227.0/24
Signature Algorithm: sha256WithRSAEncryption
30:d1:32:40:40:8a:c5:aa:97:63:94:80:33:66:2a:61:eb:c2:
bb:f9:ca:2b:44:93:a2:b0:ef:84:60:93:48:86:ce:f7:02:d8:
a1:ac:6d:fa:15:f0:0e:99:f3:f6:5b:76:41:72:b0:00:3e:6a:
ee:40:2f:7f:e4:1a:d8:49:5e:30:3c:f9:72:c9:f3:6d:c1:be:
bf:f2:2f:e1:96:1c:35:03:bf:c4:93:d2:1f:46:fc:79:f4:97:
70:da:0a:a5:19:74:fd:9a:26:60:1a:cc:6c:bc:b9:45:5d:e4:
3d:b4:1f:98:5a:bf:0e:e6:a0:cc:58:f2:28:c6:43:c4:9e:bb:
12:af:f3:fb:95:33:a6:65:02:9a:ba:ee:69:6e:4e:9e:89:af:
0d:ff:c4:e1:9f:db:32:ed:46:5b:0c:64:55:21:c4:f1:e1:04:
12:f8:7e:c7:e4:b1:d7:11:69:1a:52:73:90:8c:38:ee:7d:bc:
e6:08:39:7a:16:20:01:7e:6d:64:6f:b7:d2:52:4d:aa:1d:bb:
cf:6e:03:38:1d:0c:5e:06:47:4f:a3:a6:84:7b:0f:f6:1f:c9:
47:cc:ac:9d:40:cf:3b:67:ad:28:ef:e5:c2:3f:5b:a5:08:01:
a4:d8:55:11:f4:2c:93:2c:06:71:10:23:94:62:ed:13:fe:7d:
5d:08:40:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org