Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/N4H0hrVuRvozEWq0ijtwmsmGTVU.roa
File: N4H0hrVuRvozEWq0ijtwmsmGTVU.roa (raw, json)
Hash identifier: gzgK7YA01n6dEWRXeixpygequycvQFHVup5Pnz2fmKs=
Subject key identifier: 37:81:F4:86:B5:6E:46:FA:33:11:6A:B4:8A:3B:70:9A:C9:86:4D:55
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 0185723A1F1CDE79B9690073CD68DF761DC0
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/N4H0hrVuRvozEWq0ijtwmsmGTVU.roa
Signing time: Mon 02 Jan 2023 11:24:49 +0000
ROA not before: Mon 02 Jan 2023 11:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57646
IP address blocks: 193.142.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:1f:1c:de:79:b9:69:00:73:cd:68:df:76:1d:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Jan 2 11:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3781f486b56e46fa33116ab48a3b709ac9864d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ba:30:77:f5:d2:ad:c8:80:65:f2:f4:f3:ba:
ab:d0:ec:bf:94:13:02:8b:ab:75:f3:60:60:72:ea:
3a:3f:af:94:ce:71:bc:9c:1e:4b:a8:45:55:a6:d7:
cc:80:1f:4e:83:6b:48:d7:be:98:22:66:9b:37:d4:
70:e2:99:d5:52:28:b8:b1:8f:82:c5:72:ce:8c:e9:
8b:52:47:6e:19:4b:6e:0b:1a:22:0c:3c:dc:21:c5:
f5:37:38:48:b6:d1:85:22:c3:72:20:1c:bd:78:d5:
03:09:2c:50:87:ee:fb:7e:8d:46:d6:c0:9c:57:e9:
d4:66:8b:2e:75:64:91:0f:3c:9e:e6:85:6c:f3:31:
86:99:f0:d7:eb:45:3a:37:d5:64:d4:5a:4b:00:5c:
76:2a:45:15:7b:6e:16:27:94:9d:d5:f4:1b:7d:dd:
67:62:49:46:54:a9:bb:9a:92:a8:ad:0c:58:a4:d4:
5f:ba:c3:6c:fc:4e:c5:9e:5c:1d:b6:93:3e:15:d4:
48:11:df:c2:2a:04:9e:f0:6d:7c:e5:3e:7e:58:68:
d9:29:a1:a9:8f:e8:b8:d4:52:fe:cc:d0:a4:ce:4d:
de:c0:f7:ea:6e:fc:c8:fe:af:d8:44:60:4c:d7:87:
cc:21:3b:9d:ff:c4:bb:3d:37:5e:f3:61:fe:99:05:
7a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:81:F4:86:B5:6E:46:FA:33:11:6A:B4:8A:3B:70:9A:C9:86:4D:55
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/N4H0hrVuRvozEWq0ijtwmsmGTVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.250.0/24
Signature Algorithm: sha256WithRSAEncryption
96:c4:b5:27:c4:e4:3b:eb:70:59:2d:21:68:fe:94:67:29:cf:
c0:16:4c:a7:c7:a6:8e:32:ca:01:86:65:3d:45:7f:51:f3:e0:
ca:46:6d:08:fb:da:80:6e:da:2c:9a:48:0f:08:8a:27:84:20:
86:49:41:2d:b6:49:89:31:5f:2c:ba:e2:0d:44:6d:27:57:52:
27:f7:e9:f3:60:d0:04:d1:ac:a5:55:42:ba:06:fc:a0:9b:f3:
9c:d5:b0:a8:06:5f:87:7e:b6:d4:0a:b5:a0:ec:90:c8:2d:6c:
0c:cb:91:0b:77:5b:5c:78:d1:25:a9:ea:70:9e:9c:29:68:18:
99:fe:16:e1:0d:a6:3c:70:82:83:9e:9d:85:94:d4:47:33:6f:
1b:b6:ad:2a:26:90:05:dc:f4:f7:1c:11:b3:d6:2a:5a:4f:84:
0e:1c:bb:d1:c6:3f:6a:09:c5:44:c5:e9:e3:a5:61:91:70:70:
e9:83:df:65:7d:c2:5b:c9:18:3f:e1:45:48:ae:a9:6d:19:85:
f1:7c:7b:80:55:10:2a:ef:f8:56:2e:7b:13:0f:ed:65:de:6d:
0c:43:ce:84:86:40:87:24:d9:56:cf:37:65:29:d0:3f:df:04:
2d:5f:c8:1e:ff:01:18:a3:36:bc:b0:ab:1d:fa:40:54:32:2c:
b6:ab:cc:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:52 2024 by rpki-client on console-fra.rpki-client.org