Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/cuOkYNTCifpTKN7wIFSgWlgE_g8.roa
File: cuOkYNTCifpTKN7wIFSgWlgE_g8.roa (raw, json)
Hash identifier: MXqzjaAHkmSk5PmhKOnhfO3PMgM+82It5qGCGJfWliw=
Subject key identifier: 72:E3:A4:60:D4:C2:89:FA:53:28:DE:F0:20:54:A0:5A:58:04:FE:0F
Certificate issuer: /CN=6ac34e49fba9640b83eabaafba9c4ab96c8c3544
Certificate serial: 018570FBD88CA51F6F0FCC73F559AAE96F5A
Authority key identifier: 6A:C3:4E:49:FB:A9:64:0B:83:EA:BA:AF:BA:9C:4A:B9:6C:8C:35:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/asNOSfupZAuD6rqvupxKuWyMNUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/cuOkYNTCifpTKN7wIFSgWlgE_g8.roa
Signing time: Mon 02 Jan 2023 05:37:11 +0000
ROA not before: Mon 02 Jan 2023 05:37:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5518
IP address blocks: 193.41.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:d8:8c:a5:1f:6f:0f:cc:73:f5:59:aa:e9:6f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ac34e49fba9640b83eabaafba9c4ab96c8c3544
Validity
Not Before: Jan 2 05:37:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72e3a460d4c289fa5328def02054a05a5804fe0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ef:72:b9:77:ca:92:69:7c:79:af:68:bd:dc:
e5:d4:13:67:a3:28:a0:b5:42:76:3d:bc:70:a7:50:
a3:66:e0:e2:6b:e5:3d:21:c0:1e:33:7c:c5:34:50:
59:63:28:8d:4a:51:7b:48:4a:59:e5:3b:a6:3b:85:
a0:04:e9:d4:0d:19:e8:b3:a6:42:36:89:88:8d:22:
0e:b8:a4:e7:e4:c9:a3:01:a7:ef:0f:56:6f:1e:67:
72:70:f2:7e:30:7a:f4:f8:72:c2:05:85:d9:04:56:
c9:52:54:ee:36:d2:ab:2b:e5:4e:c0:e4:a2:a0:e5:
dc:8d:29:2a:e2:11:30:73:4d:07:6b:d5:ea:6d:18:
89:24:7c:1f:4b:2a:54:f7:94:b0:cd:87:71:cc:f5:
e5:60:c2:49:4b:2b:0d:29:b1:05:e3:a7:dd:37:ac:
16:c0:df:dd:39:a1:41:d0:32:c9:82:0d:f9:e3:b9:
91:81:bb:b0:b1:d8:f5:e4:34:36:a1:b4:98:89:14:
39:57:ea:fd:b8:72:43:67:93:46:69:6f:88:9a:a7:
be:37:af:47:e1:96:3f:a4:36:b9:f1:33:c6:fd:87:
ad:c8:83:88:c8:52:41:67:8e:18:be:6e:d3:91:a0:
03:6f:bb:91:bf:0b:3b:38:8b:af:d5:d8:e8:9b:ea:
79:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E3:A4:60:D4:C2:89:FA:53:28:DE:F0:20:54:A0:5A:58:04:FE:0F
X509v3 Authority Key Identifier:
keyid:6A:C3:4E:49:FB:A9:64:0B:83:EA:BA:AF:BA:9C:4A:B9:6C:8C:35:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/asNOSfupZAuD6rqvupxKuWyMNUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/cuOkYNTCifpTKN7wIFSgWlgE_g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/asNOSfupZAuD6rqvupxKuWyMNUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.45.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:dd:3c:ee:ec:b7:a9:32:9a:02:59:99:c6:54:a1:67:2e:46:
38:95:6f:f1:27:99:2b:c7:c0:87:3a:d2:95:df:f9:df:77:2e:
a4:c0:a9:7b:e1:10:ba:d7:56:45:4f:40:59:9a:dd:25:95:bd:
5e:21:74:e5:3f:c2:4e:9a:cf:c8:1d:08:a5:85:4a:08:c6:b5:
fc:9d:a5:27:4f:70:75:25:2b:6c:db:7a:21:3a:56:01:4a:e4:
3b:7b:3a:da:1f:0e:9e:92:78:5f:6d:f2:34:db:e7:d1:c1:19:
d1:64:d9:a6:9d:dd:d5:f9:eb:d5:e8:f4:f3:05:d9:ab:cd:11:
e7:8c:a9:3e:3a:1c:db:4b:99:b9:1b:c4:45:f1:44:ee:e9:92:
47:19:41:f4:65:02:60:06:19:50:e5:0f:97:51:b6:22:db:73:
01:64:02:3d:b2:b5:77:d1:a4:aa:2f:5c:83:f8:97:ed:99:83:
8f:39:d7:8e:1e:0b:bb:9d:a0:ee:9f:0a:d6:06:9a:3d:d7:78:
1a:88:a5:cd:ff:f8:b1:7a:83:7e:6a:68:e1:62:33:c1:81:f4:
8a:ac:51:4f:95:cd:c2:8e:39:bb:b9:17:4e:5f:48:b7:2d:50:
4f:12:ac:a2:1f:bb:6a:29:d0:fa:a8:40:70:b0:ef:02:54:89:
a8:7c:f8:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org