Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/9cff3d-1168-411c-a065-fd725b825291/1/IYtkW2q1K0PB8xoysJdx_bvJdsk.roa
File: IYtkW2q1K0PB8xoysJdx_bvJdsk.roa (raw, json)
Hash identifier: veFAGuyBZxbJPb77uqeGqWfVPHq6RtlkA1JxtVhfgx0=
Subject key identifier: 21:8B:64:5B:6A:B5:2B:43:C1:F3:1A:32:B0:97:71:FD:BB:C9:76:C9
Certificate issuer: /CN=327557cf22629d058a5114965b2f9df8ef4db690
Certificate serial: 018572DF0778FD33F36D3ABC93070B4CF006
Authority key identifier: 32:75:57:CF:22:62:9D:05:8A:51:14:96:5B:2F:9D:F8:EF:4D:B6:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MnVXzyJinQWKURSWWy-d-O9NtpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/9cff3d-1168-411c-a065-fd725b825291/1/IYtkW2q1K0PB8xoysJdx_bvJdsk.roa
Signing time: Mon 02 Jan 2023 14:24:57 +0000
ROA not before: Mon 02 Jan 2023 14:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15623
IP address blocks: 193.42.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:df:07:78:fd:33:f3:6d:3a:bc:93:07:0b:4c:f0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327557cf22629d058a5114965b2f9df8ef4db690
Validity
Not Before: Jan 2 14:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=218b645b6ab52b43c1f31a32b09771fdbbc976c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0e:35:b0:59:45:ab:9f:1d:31:51:39:48:64:
bb:a3:37:05:7f:c8:8e:c0:fb:65:3c:46:8a:a4:ed:
41:21:e5:b2:b3:e4:8a:1f:8e:e1:43:68:9e:dd:49:
61:9c:20:9c:c2:8f:63:ee:19:07:a0:de:3e:cd:cd:
98:63:ce:d5:58:33:4e:82:7e:c8:79:be:dc:16:a8:
17:98:4f:be:1b:c0:2b:8c:7e:40:de:6b:47:25:8b:
a8:b3:fb:b2:d9:aa:ef:b5:51:f4:bc:8d:a9:8c:79:
64:9f:e3:d6:2e:a1:eb:17:25:a5:a4:ff:52:25:69:
b3:d8:73:ef:ab:52:93:61:90:d0:d2:9a:6c:cc:56:
96:d6:86:f0:c4:2c:3d:e9:38:c8:29:68:7c:7e:fa:
e7:75:7c:e6:ef:ad:a2:43:79:f2:3c:c6:fd:2b:1e:
6c:a2:f3:51:b6:21:b5:85:36:38:91:ce:5b:ba:ba:
0a:8b:7a:25:f2:4d:37:90:df:e3:fc:28:17:9c:88:
c4:1b:36:86:76:ed:29:e5:d3:9f:33:cb:18:cd:6a:
1e:69:eb:b5:ae:1e:68:15:a2:b8:2a:94:a7:9f:5b:
31:d5:a8:00:b6:5e:fc:e1:23:e7:98:2c:68:e0:3e:
04:9a:5c:81:c4:4e:41:c0:27:ad:7a:12:0a:30:47:
6c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8B:64:5B:6A:B5:2B:43:C1:F3:1A:32:B0:97:71:FD:BB:C9:76:C9
X509v3 Authority Key Identifier:
keyid:32:75:57:CF:22:62:9D:05:8A:51:14:96:5B:2F:9D:F8:EF:4D:B6:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MnVXzyJinQWKURSWWy-d-O9NtpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/9cff3d-1168-411c-a065-fd725b825291/1/IYtkW2q1K0PB8xoysJdx_bvJdsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/9cff3d-1168-411c-a065-fd725b825291/1/MnVXzyJinQWKURSWWy-d-O9NtpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.146.0/24
Signature Algorithm: sha256WithRSAEncryption
42:46:ad:67:be:9e:49:b0:45:95:60:1a:83:f3:ba:82:bf:d3:
1b:91:97:a1:8c:1a:5d:eb:dd:94:0d:8e:49:db:3b:dc:96:6e:
40:7f:25:a2:ca:5c:6d:2e:33:19:d2:ae:fb:2e:d8:1c:66:eb:
d6:24:84:15:7c:7f:23:17:c1:5a:4a:4c:62:7e:7a:8d:61:37:
23:6f:ec:72:a3:48:3a:26:62:5a:2e:21:28:6f:41:95:6a:e4:
3d:c8:06:b1:8b:3f:80:5e:f1:4c:2d:db:b6:b5:15:36:e6:0e:
c1:e3:af:59:12:b4:b6:eb:70:14:aa:8c:17:93:fc:c5:76:eb:
72:2a:bf:b5:fa:2a:b8:4b:3f:2e:bd:a4:35:dd:79:1a:b0:05:
96:4b:5d:09:5b:5b:07:2e:ac:6f:4d:b8:de:a0:c3:7c:7c:dc:
a0:fc:cd:ce:00:c0:3b:57:57:06:34:0e:62:c6:56:e2:dd:6d:
d8:ff:61:e5:c9:60:e3:2e:d0:63:88:7c:06:6b:bd:f2:87:26:
6a:fd:88:62:ae:ea:54:fb:7e:80:70:99:28:b9:4c:28:7a:09:
50:ca:90:37:8a:70:47:52:53:f6:99:3e:55:3b:63:ce:fe:a5:
ec:8f:30:cc:b9:04:84:83:34:70:f0:e0:22:f7:fb:b9:a1:0b:
e9:1b:25:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:13 2024 by rpki-client on console-ams.rpki-client.org