Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RUIJrNJCxohYrNd1ejn5ftZyNwE.roa
File: RUIJrNJCxohYrNd1ejn5ftZyNwE.roa (raw, json)
Hash identifier: bxaTHqeMvlpmZa8ottWcDPyVXgRKS30k4bQXNigMSM8=
Subject key identifier: 45:42:09:AC:D2:42:C6:88:58:AC:D7:75:7A:39:F9:7E:D6:72:37:01
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0186EA5D49290ABEEFBCE7C7467C7E715B10
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RUIJrNJCxohYrNd1ejn5ftZyNwE.roa
Signing time: Thu 16 Mar 2023 12:20:27 +0000
ROA not before: Thu 16 Mar 2023 12:20:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15083
IP address blocks: 193.23.131.0/24 maxlen: 24
193.23.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 06:17:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:5d:49:29:0a:be:ef:bc:e7:c7:46:7c:7e:71:5b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Mar 16 12:20:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=454209acd242c68858acd7757a39f97ed6723701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:17:04:4d:e9:cf:e1:5d:42:b2:b7:e3:20:17:
c2:02:3d:9a:7a:67:09:f2:54:53:29:f2:d5:5c:c6:
40:e6:fd:05:34:82:1f:5e:49:fd:a8:69:14:95:a0:
42:74:40:15:34:0a:15:79:ba:bf:c7:00:9c:bc:d1:
ff:c7:a2:b3:98:45:5c:e3:0a:30:a9:07:4d:92:40:
bf:e5:e5:76:2a:cc:d3:62:22:f3:0c:4d:58:4e:d6:
ba:14:f1:0e:c0:47:db:76:a0:eb:82:27:18:42:b4:
94:dc:e4:6e:2c:22:71:a1:d6:79:dc:d7:87:4c:49:
6f:1b:fe:77:51:26:d6:b4:76:7b:14:e3:17:b3:32:
4d:02:52:e4:a1:a8:63:fb:60:dd:0c:f1:31:90:99:
4a:48:19:0b:8d:06:23:b3:cc:56:75:d2:89:a2:4e:
a1:1c:14:dc:84:4f:81:4a:80:51:93:cb:86:ff:bb:
4d:13:96:3b:6d:15:78:90:a0:1b:aa:28:a2:cf:9e:
24:29:d8:14:78:c6:ff:6d:c9:29:67:15:9f:91:51:
cd:2a:d4:9b:fe:1f:bd:cd:40:60:3a:46:61:2d:4e:
37:b1:fd:fb:d2:46:bb:34:88:a3:56:cf:c1:bf:fd:
cf:d5:7f:93:37:7a:b9:0d:4e:15:d3:ac:96:7b:5a:
c2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:42:09:AC:D2:42:C6:88:58:AC:D7:75:7A:39:F9:7E:D6:72:37:01
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/RUIJrNJCxohYrNd1ejn5ftZyNwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.130.0/23
Signature Algorithm: sha256WithRSAEncryption
56:a8:48:3a:9d:bf:33:e7:db:db:8a:45:3f:51:19:54:32:1d:
57:d7:f4:fa:7b:89:4d:4e:44:8f:20:54:71:5e:eb:52:64:cd:
76:de:de:ab:69:c0:7c:d1:23:06:58:2f:3e:68:de:6c:d3:b0:
89:26:68:4e:6f:fe:dc:45:06:a1:74:cc:a2:14:81:f7:03:f8:
9f:c8:6a:b7:73:15:41:c2:b2:7b:5a:1e:86:6d:b1:82:c5:c6:
0b:cc:02:3f:5e:aa:61:78:8f:2b:0c:6a:33:55:b3:5a:ee:06:
1f:bc:f4:7a:c7:62:7a:e3:fb:63:f7:39:ea:9c:b4:85:18:1a:
e7:b3:0f:62:65:26:57:f9:1f:c1:1b:5c:70:19:59:92:a8:ac:
80:e6:98:01:32:87:05:2b:2d:39:c0:5c:08:72:b4:08:3a:e9:
6e:11:50:a0:a9:98:c9:84:42:dd:fe:9e:30:2d:44:de:4f:24:
93:06:a2:d5:7f:b0:1e:0b:be:1f:70:87:cc:91:d5:67:01:31:
72:c8:9a:77:6e:ee:d8:07:6d:25:ae:87:08:ee:9c:44:17:05:
c0:45:34:6c:a6:59:07:1d:45:3f:d7:de:3b:19:43:47:a1:3d:
7f:3f:f1:5e:2b:3b:9a:d3:6e:3b:d3:d2:f9:94:1b:25:34:f2:
c4:a4:c2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:11 2024 by rpki-client on console-ams.rpki-client.org