Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/eSitAHqwaeS90uo_-Wb3QorCQmk.roa
File: eSitAHqwaeS90uo_-Wb3QorCQmk.roa (raw, json)
Hash identifier: 3IgAtXTkSuXyFHsbUcS5hifP0YfmPbXBmRm78STt4p4=
Subject key identifier: 79:28:AD:00:7A:B0:69:E4:BD:D2:EA:3F:F9:66:F7:42:8A:C2:42:69
Certificate issuer: /CN=b215270e3b5976b44f3adece57047d1e0787ba75
Certificate serial: 018571BA31CA655D1E23837FDE23D26FCF8E
Authority key identifier: B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/eSitAHqwaeS90uo_-Wb3QorCQmk.roa
Signing time: Mon 02 Jan 2023 09:05:05 +0000
ROA not before: Mon 02 Jan 2023 09:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 193.38.144.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:31:ca:65:5d:1e:23:83:7f:de:23:d2:6f:cf:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215270e3b5976b44f3adece57047d1e0787ba75
Validity
Not Before: Jan 2 09:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7928ad007ab069e4bdd2ea3ff966f7428ac24269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:50:97:04:f2:f9:dd:bd:5e:53:a8:c3:09:cb:
09:c0:92:65:78:e6:06:d8:ec:08:a0:c0:d3:38:56:
13:6e:ce:08:69:05:d5:36:1e:47:5f:e1:14:30:76:
ba:d6:56:f8:99:27:8c:01:74:09:6c:d0:85:36:63:
67:34:90:0f:52:b9:02:2f:72:9a:97:9b:ab:bd:e3:
36:da:7f:df:fc:b8:71:fa:f6:f5:d5:56:88:b1:28:
d4:de:75:37:90:07:7d:f6:3c:52:bf:fe:cf:15:48:
c1:16:3e:80:4e:90:d9:19:50:ab:3c:4a:7b:70:52:
bc:25:4f:e8:8e:25:03:68:30:a1:06:bd:6b:c5:01:
27:a2:e2:55:2c:ab:04:86:b9:d8:0d:c7:f7:64:5c:
f6:83:59:1e:f8:b1:bd:87:ef:40:b3:99:45:38:5f:
5a:f0:85:4e:69:82:a4:57:ea:14:25:56:31:7e:05:
8f:b1:91:ca:aa:77:4c:e5:6b:d9:c9:02:1f:2b:eb:
2f:ec:8a:2b:2f:e7:af:60:03:44:1f:0a:86:58:81:
53:10:e1:a6:45:ef:e3:7e:32:b1:4a:1f:0d:73:c4:
cb:25:a7:3a:dd:a8:80:b9:87:c7:cd:bf:c9:c9:48:
b3:17:9a:05:e8:06:87:b9:b2:f6:b9:ce:cb:b1:48:
8b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:28:AD:00:7A:B0:69:E4:BD:D2:EA:3F:F9:66:F7:42:8A:C2:42:69
X509v3 Authority Key Identifier:
keyid:B2:15:27:0E:3B:59:76:B4:4F:3A:DE:CE:57:04:7D:1E:07:87:BA:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shUnDjtZdrRPOt7OVwR9HgeHunU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/eSitAHqwaeS90uo_-Wb3QorCQmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bd59ae-5b7d-4c26-8e14-24b9e8211885/1/shUnDjtZdrRPOt7OVwR9HgeHunU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.144.0/22
Signature Algorithm: sha256WithRSAEncryption
10:ef:f0:5b:b7:f8:aa:69:33:39:c0:34:e7:3f:d4:b1:d9:42:
be:a4:bf:3c:fe:61:d1:46:ea:2c:99:df:61:61:23:25:81:fd:
b5:c9:a0:10:6b:03:1e:c6:ed:46:b4:10:af:05:49:23:94:23:
ef:d1:d6:d7:ef:2e:a0:7e:65:bd:c4:df:77:e7:a0:55:03:b6:
fe:c2:84:9d:46:21:bd:19:dc:45:69:8a:b2:9a:dd:6f:56:e9:
74:95:96:ad:bb:c5:9f:ee:e9:86:c1:5c:98:40:1f:cb:90:9b:
f3:e2:a6:39:01:88:72:5b:29:53:21:26:3d:53:ca:14:29:29:
9a:81:b3:fd:f5:00:84:b9:eb:ce:99:df:fc:0c:18:ee:91:4d:
8d:85:45:14:d0:3a:c2:20:5e:ab:e0:69:62:6f:38:42:45:16:
35:c6:c8:3b:d8:f0:4f:4c:d7:85:a3:63:d0:0a:25:d5:17:0b:
99:c9:2e:9d:c6:2e:05:08:07:0c:ca:fd:66:4d:66:39:57:9d:
1f:0c:e5:2b:b6:4b:c0:86:4f:b4:ad:6f:c6:98:4c:52:84:43:
71:05:86:e0:ca:b8:6c:19:d7:be:0b:f2:6c:bd:2a:2f:32:b2:
63:02:b0:4e:2b:eb:c9:fe:3c:fb:2a:db:e3:73:bd:a1:ce:7c:
77:ef:71:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:57 2024 by rpki-client on console-fra.rpki-client.org