Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/bZ3fKyHApcC5A3vF4VP664aP-q8.roa
File: bZ3fKyHApcC5A3vF4VP664aP-q8.roa (raw, json)
Hash identifier: KZvUin4Vwri3mjIAPZsTMfNy/+qw/iRjPSo8rM2q08s=
Subject key identifier: 6D:9D:DF:2B:21:C0:A5:C0:B9:03:7B:C5:E1:53:FA:EB:86:8F:FA:AF
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0185719E7F55C484E9CFDE0DFD91BC46D9C0
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/bZ3fKyHApcC5A3vF4VP664aP-q8.roa
Signing time: Mon 02 Jan 2023 08:34:50 +0000
ROA not before: Mon 02 Jan 2023 08:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45029
IP address blocks: 193.232.166.0/24 maxlen: 24
2a0c:a9c7:166::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:7f:55:c4:84:e9:cf:de:0d:fd:91:bc:46:d9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 2 08:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d9ddf2b21c0a5c0b9037bc5e153faeb868ffaaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2e:de:d1:6f:2d:07:37:4d:04:a6:00:53:0c:
f5:dd:c0:75:71:d6:0d:59:61:0a:54:df:2f:89:a9:
2c:2e:0c:48:51:df:c1:59:6f:99:97:35:7e:dc:65:
dc:4a:2d:c1:78:83:40:4d:d7:9a:d8:14:d6:fa:57:
3b:0b:54:ed:38:bf:85:18:8b:95:e0:d6:45:a6:bb:
5e:3f:5c:19:f5:97:66:46:e6:30:4f:d0:ee:4c:78:
9f:12:e7:54:e2:57:0a:f5:73:94:cf:e3:a5:4a:e6:
07:0b:84:ee:08:1b:70:c6:c5:1e:c6:4d:eb:03:dd:
05:36:d3:aa:fc:70:2c:9a:a4:95:02:b6:cc:e1:2e:
15:84:a2:98:14:47:d9:6b:5b:d5:56:7d:78:ec:45:
d2:fb:a5:ff:38:f7:69:b0:0c:c3:27:45:3d:a8:80:
3d:fd:b8:62:31:4f:f3:52:cf:46:a7:30:cd:0a:36:
ba:2c:3e:b5:30:b1:ab:e4:80:3f:76:1e:8a:cf:de:
16:69:8f:31:46:4b:c7:1f:94:0c:11:48:97:12:6a:
53:2f:0b:a9:c7:e5:b7:d3:41:01:20:d7:87:2c:d1:
6e:6d:60:83:10:da:fd:b5:d0:56:cb:26:1a:21:ef:
92:58:91:da:5f:26:a8:bc:d3:f0:12:2d:be:ef:16:
31:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:9D:DF:2B:21:C0:A5:C0:B9:03:7B:C5:E1:53:FA:EB:86:8F:FA:AF
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/bZ3fKyHApcC5A3vF4VP664aP-q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.232.166.0/24
IPv6:
2a0c:a9c7:166::/48
Signature Algorithm: sha256WithRSAEncryption
8a:bf:7b:71:6b:c7:f3:db:1d:ac:54:6d:ca:76:19:d7:8d:87:
bc:e8:df:c9:de:5e:66:f0:86:6d:34:d7:29:ea:be:bc:51:07:
71:df:1a:d7:8f:e9:63:90:a0:bd:45:37:a4:57:5b:9b:a5:3b:
eb:89:0b:e0:10:32:3c:37:d4:c7:8b:a3:01:be:ba:b6:bb:0f:
da:a4:fb:e3:43:69:83:66:25:88:f7:01:3c:87:e3:e7:06:20:
ed:84:42:f4:1a:bf:df:be:00:8c:0d:d4:07:84:88:df:c2:38:
f2:f5:d6:7f:74:47:11:70:a9:e8:b4:ee:b3:23:fb:20:35:7c:
83:ea:0d:a4:ea:2d:9b:15:7b:67:dc:c2:1a:f6:07:85:25:69:
4f:5b:67:1c:71:ad:ea:f3:f1:b5:cb:f4:e1:58:c2:55:f9:ed:
36:8e:9e:ba:41:fc:d3:3b:b4:de:c3:76:ca:23:ff:d5:4d:8d:
51:0a:cc:7f:fb:20:ca:c6:df:f1:08:77:a1:67:62:9d:92:aa:
c8:56:14:b9:c1:fc:5e:ba:2d:02:b0:a8:7d:cf:bd:8d:63:70:
af:8b:31:dc:a6:d3:67:6f:91:5b:30:5c:f5:9e:08:53:f7:fe:
65:05:56:58:31:81:0e:8c:5d:95:e5:77:a4:68:92:5f:2c:26:
77:4e:8f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org