Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/kn7FpQG39pQKV1vV6rukbtm7u5s.roa
File: kn7FpQG39pQKV1vV6rukbtm7u5s.roa (raw, json)
Hash identifier: Kw2GM7tD5lKcswAIkccE5XrTHolE3pAXoaM3rB6GUlE=
Subject key identifier: 92:7E:C5:A5:01:B7:F6:94:0A:57:5B:D5:EA:BB:A4:6E:D9:BB:BB:9B
Certificate issuer: /CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Certificate serial: 01856DD43A188667FFB15A23A131CE1BE92E
Authority key identifier: 89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/kn7FpQG39pQKV1vV6rukbtm7u5s.roa
Signing time: Sun 01 Jan 2023 14:55:03 +0000
ROA not before: Sun 01 Jan 2023 14:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44129
IP address blocks: 193.169.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:3a:18:86:67:ff:b1:5a:23:a1:31:ce:1b:e9:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=895364dd8ff730a908b09b5f9913c153fc16aa3c
Validity
Not Before: Jan 1 14:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=927ec5a501b7f6940a575bd5eabba46ed9bbbb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b3:ea:a8:2c:2c:03:72:ae:a9:b9:e2:bd:c1:
ff:ab:3a:ff:c4:05:49:f4:d4:02:64:af:f0:89:5f:
8d:57:14:c3:8d:3f:89:4f:ca:99:98:5a:09:3a:79:
24:db:96:7a:7a:93:8d:97:32:e9:5a:39:7a:17:48:
23:c0:a7:47:35:b9:38:2a:43:35:9f:c6:e0:fe:65:
74:10:c5:da:5e:e2:26:43:b4:b1:c8:c3:85:32:3c:
ca:46:94:9b:34:01:2b:b7:c4:b3:01:70:df:6d:e4:
95:5d:9b:bb:7e:c3:bd:03:a7:de:19:da:3e:91:33:
ba:2d:41:07:2d:b5:37:76:19:c2:ac:36:7b:9b:0b:
4c:85:f8:bd:86:bd:23:f0:9f:df:f5:8b:88:15:30:
99:8c:10:8d:c2:7d:92:46:70:d7:4d:d6:10:8a:6b:
9a:16:b0:45:33:46:d4:14:e3:c0:cd:70:05:20:62:
5b:4c:ee:9d:06:08:05:be:5e:f0:4a:25:2c:72:5f:
92:5b:cd:81:a4:53:d2:cf:e9:fe:f3:28:c4:68:47:
d7:92:82:a3:26:6a:8f:97:e2:1e:46:ed:a0:56:cc:
b6:2b:60:0f:a5:76:35:75:d7:91:f8:51:e2:55:78:
3a:0f:a1:05:6c:b0:51:e1:9d:dc:53:8c:8f:a1:8a:
41:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7E:C5:A5:01:B7:F6:94:0A:57:5B:D5:EA:BB:A4:6E:D9:BB:BB:9B
X509v3 Authority Key Identifier:
keyid:89:53:64:DD:8F:F7:30:A9:08:B0:9B:5F:99:13:C1:53:FC:16:AA:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/kn7FpQG39pQKV1vV6rukbtm7u5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/922bcd-f1ad-4d63-8243-294b1aa14866/1/iVNk3Y_3MKkIsJtfmRPBU_wWqjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ef:7c:11:dd:c0:73:c3:9d:1a:86:cc:11:cd:19:5c:e5:94:
87:ed:f1:03:86:3b:f2:d9:1b:f6:e9:52:f8:75:77:25:78:34:
6e:e5:a2:a9:8e:9f:f8:ec:f0:93:b0:79:0e:65:4b:56:34:b6:
11:ad:c6:a0:ae:77:c7:9a:b7:4d:d0:0d:69:8e:31:5c:2a:a8:
a7:34:e5:41:49:9d:c7:11:6e:7e:32:8c:b5:d9:53:0f:a7:03:
b0:a3:f7:8c:76:d0:ab:5c:1e:3a:be:4b:56:f2:b2:53:1a:64:
a0:2d:94:3c:3d:21:7b:d3:90:86:8d:e3:99:09:c6:d5:66:d7:
40:52:5f:06:24:29:2e:f4:e0:46:83:09:d6:02:d1:bd:52:c5:
74:46:a0:63:06:18:84:92:8d:bc:bb:9e:79:72:d4:c7:8c:85:
69:4a:96:10:5d:0a:9e:81:dd:c6:5a:ba:c4:81:02:a6:2b:7e:
27:bf:ee:cc:16:69:ca:e3:24:23:d7:2d:ef:16:35:34:1b:8c:
6c:fb:fa:ac:aa:25:0e:24:d5:18:fc:a0:33:22:81:5a:9a:81:
03:ea:0d:83:69:3a:6d:29:27:17:7c:18:2d:78:2e:38:a3:ae:
2d:d5:e3:ca:c8:b5:61:28:d4:f5:63:58:47:f2:fe:aa:a3:38:
58:2b:a3:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:03 2024 by rpki-client on console-fra.rpki-client.org