Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/9w4xEPcehdWvamqhhirFJ7vPPnQ.roa
File: 9w4xEPcehdWvamqhhirFJ7vPPnQ.roa (raw, json)
Hash identifier: 5Uwx2y0pYrnD+NqE0TkEDC6xB1Q6fnuPFSsHTLAnV/E=
Subject key identifier: F7:0E:31:10:F7:1E:85:D5:AF:6A:6A:A1:86:2A:C5:27:BB:CF:3E:74
Certificate issuer: /CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Certificate serial: 01856F4B922D82B283BC9820B8F82155508D
Authority key identifier: 95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/9w4xEPcehdWvamqhhirFJ7vPPnQ.roa
Signing time: Sun 01 Jan 2023 21:45:01 +0000
ROA not before: Sun 01 Jan 2023 21:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57443
IP address blocks: 193.57.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:4b:92:2d:82:b2:83:bc:98:20:b8:f8:21:55:50:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588fb4b0fb07b2b52e30d9219898f28cfbc9a2d
Validity
Not Before: Jan 1 21:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f70e3110f71e85d5af6a6aa1862ac527bbcf3e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a1:45:6f:92:55:3d:d9:ca:83:98:ff:1b:3e:
46:cb:fc:1c:01:2c:3a:21:81:5b:3b:cb:90:ea:a6:
77:72:80:49:ca:8a:a6:c3:dc:a8:e3:7f:b9:6e:41:
d0:17:14:ad:be:bb:2c:9c:65:b5:49:2a:12:7f:1f:
ad:94:fa:9b:5b:a7:86:5d:90:15:d5:e2:6b:d1:23:
67:d2:76:51:52:51:cc:c8:a9:5c:8f:7a:fd:14:fc:
7b:b0:30:f2:3e:77:4b:e0:31:67:3d:19:68:28:dc:
1e:cc:bb:a9:6b:86:a5:80:39:9b:00:c9:03:4e:16:
b5:51:cc:4c:d5:e1:91:9d:a3:52:6e:7e:47:ee:08:
49:2e:68:0e:5d:3d:ca:8d:af:8d:aa:87:18:41:4d:
d9:d4:91:5a:39:4c:09:d9:5d:13:e9:c0:5f:40:e9:
21:55:bf:68:a5:51:21:be:28:ce:75:77:f8:fc:9f:
e6:7b:c2:38:e4:a0:54:b4:63:59:bc:fd:e1:0b:4f:
31:84:28:1a:4f:6b:71:14:8a:ce:7e:b8:e7:32:87:
ef:06:ac:ed:f9:08:83:01:6a:c1:ac:98:f0:36:10:
96:c2:be:87:5f:a5:3b:f5:bf:08:9a:f0:e5:e0:d7:
3e:bc:47:9d:c1:5e:ca:e8:c1:19:c3:0b:74:f0:49:
8d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0E:31:10:F7:1E:85:D5:AF:6A:6A:A1:86:2A:C5:27:BB:CF:3E:74
X509v3 Authority Key Identifier:
keyid:95:88:FB:4B:0F:B0:7B:2B:52:E3:0D:92:19:89:8F:28:CF:BC:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYj7Sw-weytS4w2SGYmPKM-8mi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/9w4xEPcehdWvamqhhirFJ7vPPnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/fb85d3-6660-430e-9ac7-86d2c311db17/1/lYj7Sw-weytS4w2SGYmPKM-8mi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.57.208.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:2e:e6:bd:cd:5d:25:5f:74:da:fc:fb:d0:06:df:83:75:28:
91:6d:d0:55:66:62:69:d8:e7:90:82:70:e2:6c:a4:2a:d6:88:
91:7a:5c:4d:c2:85:82:d3:48:59:df:73:bb:b7:96:27:b9:8c:
4d:81:18:39:85:c9:81:8b:a4:ba:7b:5e:92:61:2c:4c:0f:78:
d9:f1:08:e5:ce:13:6e:db:75:f7:d6:ef:69:f8:34:47:02:f1:
cb:b6:d7:cf:63:1c:f5:6a:cb:7c:3f:c9:9a:64:e2:16:6b:51:
0b:22:48:d6:a6:9f:bf:e1:89:61:8e:af:b8:e8:35:bc:b7:0a:
43:ef:6c:83:74:4f:73:8b:7a:81:95:68:bf:2e:7a:63:2c:96:
ed:83:97:5e:1f:44:6a:c8:33:f2:42:1a:3a:33:95:88:b7:5c:
20:d9:64:06:d6:38:82:c6:12:51:96:6b:dc:53:a8:11:65:f6:
4d:ef:34:61:10:28:5c:29:7d:40:8b:23:95:28:3e:10:52:ba:
0d:0b:b3:c8:6f:12:5c:ac:b9:3e:f3:2e:e7:5b:cb:98:ed:9e:
1d:09:f2:0d:c0:1c:33:07:fa:8a:05:77:6c:99:58:31:2d:94:
78:a5:0d:ab:ed:64:47:20:15:b3:37:8f:c4:03:8f:f4:a3:56:
35:66:31:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:33 2024 by rpki-client on console-fra.rpki-client.org