Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/H0PZ8pm_8wmn02XgT7tbefSskMo.roa
File: H0PZ8pm_8wmn02XgT7tbefSskMo.roa (raw, json)
Hash identifier: 3U88F/Kcrra7HyFFsmEHN/jUHvn3r7sQZehvzXhLWwI=
Subject key identifier: 1F:43:D9:F2:99:BF:F3:09:A7:D3:65:E0:4F:BB:5B:79:F4:AC:90:CA
Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Certificate serial: 01856DAF59A5F1F5D41BCCAD69C035A758C9
Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/H0PZ8pm_8wmn02XgT7tbefSskMo.roa
Signing time: Sun 01 Jan 2023 14:14:46 +0000
ROA not before: Sun 01 Jan 2023 14:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6461
IP address blocks: 193.34.72.0/23 maxlen: 23
193.34.74.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:af:59:a5:f1:f5:d4:1b:cc:ad:69:c0:35:a7:58:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Validity
Not Before: Jan 1 14:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f43d9f299bff309a7d365e04fbb5b79f4ac90ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a5:9b:e0:79:65:41:62:af:27:89:6a:fe:13:
53:46:0b:8a:bf:c7:dd:e7:f4:ac:13:19:e8:55:2b:
e3:fb:1b:fe:90:0b:ec:2c:35:28:38:b6:7b:1c:61:
5c:ae:68:91:da:0e:35:f8:df:81:b6:05:e4:19:a9:
77:cf:70:54:9d:e3:ec:a8:14:96:a6:cb:9c:f6:af:
c7:ad:ba:25:16:7a:1e:42:41:57:ee:a1:49:32:44:
5c:54:b0:52:53:0f:94:e7:22:fa:c2:7d:d7:c7:77:
1e:95:c2:c8:40:76:9e:f5:8a:51:75:ee:a9:31:90:
47:bb:f5:98:a6:75:7b:55:e3:b6:dc:7d:e1:8e:7a:
33:16:bf:0a:d2:a1:f2:f3:3f:e9:6b:07:71:9e:7c:
52:ca:3c:c5:4b:40:bf:58:20:5c:8b:48:e2:2a:a9:
8a:92:6b:d9:e5:ee:61:13:d1:9b:04:1a:3f:24:50:
3c:10:6f:14:51:29:f0:0c:1a:2a:1c:df:5e:f0:2d:
43:7f:98:ab:89:df:10:48:41:1b:81:c4:df:38:9b:
6c:e9:33:f1:d6:3d:9f:42:fb:68:e8:d7:2f:7e:0c:
cd:78:62:e1:34:cb:b7:85:02:fd:48:97:b4:e6:1e:
63:a9:ee:e3:44:97:55:0a:cd:50:d3:0f:6b:4f:71:
16:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:43:D9:F2:99:BF:F3:09:A7:D3:65:E0:4F:BB:5B:79:F4:AC:90:CA
X509v3 Authority Key Identifier:
keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/H0PZ8pm_8wmn02XgT7tbefSskMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.72.0/22
Signature Algorithm: sha256WithRSAEncryption
99:14:ec:19:9b:a3:51:15:63:f9:b8:c1:19:83:2c:8d:b0:2a:
15:c4:88:9d:40:03:49:c0:4e:97:55:5a:3e:86:00:bf:b4:b5:
53:cb:14:f6:b4:e2:55:33:ae:57:73:a4:9a:a4:d7:32:05:f9:
ea:62:c1:03:3f:3b:7d:9e:49:19:df:2d:a2:8b:f2:57:32:da:
a0:86:66:f6:72:9a:34:53:dc:22:63:a0:6b:4b:b2:8c:87:e5:
73:09:a9:e9:87:d9:93:f5:f7:68:b2:cd:cb:d9:d5:a7:4b:ca:
0a:43:4c:9e:6a:1b:40:70:ae:2f:99:f7:8c:71:d9:cd:d0:73:
d6:7d:50:fe:13:3d:db:38:04:c7:8d:31:b2:dd:6b:d4:26:40:
21:62:1c:44:13:71:04:43:d3:7a:66:84:a4:ec:81:4d:00:f9:
6d:da:1b:54:3e:b1:75:57:4a:da:c5:d8:c9:56:3d:16:c6:bd:
6a:10:a9:79:77:29:d2:88:b1:45:fe:9a:06:ab:a7:d1:91:13:
37:93:03:29:6b:82:9b:b6:4a:29:23:f4:6a:08:f0:5b:25:72:
02:59:ca:8e:ef:cb:39:d0:8b:c8:d0:25:bf:50:e2:28:66:b1:
72:20:c1:f5:21:38:32:cc:06:2d:77:45:16:81:4b:5a:61:f7:
d0:d2:a7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:06 2024 by rpki-client on console-fra.rpki-client.org