Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/4fukXa7u_hLuzVonHZ_PTYtGFd0.roa
File: 4fukXa7u_hLuzVonHZ_PTYtGFd0.roa (raw, json)
Hash identifier: e6TCViyj74XHJ7aeEaEMZ9dUdr5jldATC16Yz+ojioA=
Subject key identifier: E1:FB:A4:5D:AE:EE:FE:12:EE:CD:5A:27:1D:9F:CF:4D:8B:46:15:DD
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0185710301037E1CBCDE1DBDF37479729C81
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/4fukXa7u_hLuzVonHZ_PTYtGFd0.roa
Signing time: Mon 02 Jan 2023 05:45:00 +0000
ROA not before: Mon 02 Jan 2023 05:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 193.218.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:01:03:7e:1c:bc:de:1d:bd:f3:74:79:72:9c:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1fba45daeeefe12eecd5a271d9fcf4d8b4615dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a2:f8:2d:88:6e:37:dc:94:ce:47:56:9e:c5:
f3:8e:1b:96:17:fc:1e:ac:60:d9:59:43:f5:1d:08:
64:12:80:63:55:35:e9:2d:83:4f:ce:35:0b:1c:bc:
85:15:2d:06:d1:8a:b5:57:63:e1:9b:63:ec:f1:a8:
68:9a:9f:f9:a8:b1:4d:ec:a8:0f:0d:00:f4:72:8c:
e7:a2:26:e8:69:61:bf:df:d3:e2:f3:9b:0a:f4:77:
24:66:a9:ab:70:9a:59:9c:9d:58:3c:ba:a3:ae:33:
f8:c2:e1:92:58:e6:8b:ed:0b:59:80:57:72:3d:c4:
95:c2:e5:99:1e:53:c5:ca:8c:5c:9b:0f:8e:87:06:
dd:6f:b8:48:ee:e4:ad:48:e5:36:78:f5:c3:08:ab:
40:e9:b6:77:a9:b8:49:92:ba:a5:6e:45:e7:2c:d0:
e7:45:8d:e6:77:6a:f1:3d:b1:11:55:aa:61:15:71:
3e:33:52:02:b5:d0:89:16:54:ea:78:e1:d6:80:6e:
f7:e1:1e:22:fe:25:ed:33:cd:35:4c:ad:ce:ab:c7:
c3:fc:f8:6c:5f:8b:f2:fc:4a:5c:42:68:3e:00:0d:
eb:d8:60:89:df:b4:46:9b:9e:7e:87:4f:4f:f9:86:
2f:51:2b:56:67:a0:29:77:90:9a:63:fd:65:16:08:
a7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:FB:A4:5D:AE:EE:FE:12:EE:CD:5A:27:1D:9F:CF:4D:8B:46:15:DD
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/4fukXa7u_hLuzVonHZ_PTYtGFd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.218.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:37:6f:27:e4:37:5a:11:8c:26:7a:e6:f5:50:c0:74:dd:a7:
83:c2:d4:6c:cf:b9:2a:54:da:34:e4:48:f5:1e:fa:56:8b:a9:
70:13:02:1b:f3:b5:e9:8c:09:90:c0:90:54:a3:1e:42:3a:3e:
16:e3:40:69:52:11:81:ca:fb:58:f6:f3:71:07:2f:19:d1:a3:
03:2a:17:46:79:e2:a3:53:26:7a:50:1c:2e:97:55:62:8e:6b:
46:67:a5:1d:e6:d3:61:8a:a2:47:f5:b3:9c:2e:2e:41:ec:8a:
25:f0:f6:90:b5:05:a5:78:c4:13:86:d5:ca:5a:88:0a:d7:6c:
b9:be:f3:88:28:5c:c1:3a:36:24:c8:48:72:7b:92:6d:c8:e1:
4e:c6:65:50:53:ba:fb:3f:1d:b9:28:21:99:d7:86:5f:b1:32:
bb:d6:73:43:60:8e:ac:5f:98:0b:05:38:ae:70:c4:0d:e9:95:
f7:1b:a8:4d:94:be:52:c9:81:77:b7:4f:bc:77:75:c2:f8:a4:
ef:31:8a:fd:f0:2d:f5:a0:fc:34:f6:15:45:20:fd:0a:fc:70:
c7:2b:46:b9:f2:89:e8:b1:af:e8:ae:08:f4:3e:58:f7:81:71:
d5:95:46:a1:f6:40:74:d9:a6:55:a5:6e:b2:db:c0:6c:74:12:
aa:86:b1:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:57 2023 by rpki-client on console-fra.rpki-client.org