Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/68VFoy8nnZydNmIBWB7t7-GNEJQ.roa
File: 68VFoy8nnZydNmIBWB7t7-GNEJQ.roa (raw, json)
Hash identifier: qPxEqC7cE1yeqia1OBB46zV5M+qnnZ8dEeyU6Q2J0wk=
Subject key identifier: EB:C5:45:A3:2F:27:9D:9C:9D:36:62:01:58:1E:ED:EF:E1:8D:10:94
Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c
Certificate serial: 01856E41DC69B19B46C5AA27FAB27AEC2447
Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/68VFoy8nnZydNmIBWB7t7-GNEJQ.roa
Signing time: Sun 01 Jan 2023 16:54:48 +0000
ROA not before: Sun 01 Jan 2023 16:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49298
IP address blocks: 93.119.172.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:41:dc:69:b1:9b:46:c5:aa:27:fa:b2:7a:ec:24:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c
Validity
Not Before: Jan 1 16:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebc545a32f279d9c9d366201581eedefe18d1094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:f5:26:8d:e4:32:c3:93:4e:38:85:ad:8d:
8a:10:54:4e:cd:81:37:95:9f:f4:a3:65:68:bc:69:
fa:0b:c8:f2:3b:60:7c:67:e7:56:a5:ba:c3:78:7a:
26:3d:d3:40:e4:ca:55:ca:71:41:7d:2d:73:8b:86:
13:ff:ab:08:19:f1:e4:73:cc:1e:8d:e7:5d:da:54:
bc:d9:22:4f:01:8b:1d:14:35:e3:4d:48:62:90:d6:
52:20:4b:52:7a:25:85:71:77:43:dd:a1:30:88:33:
70:37:7e:c9:da:db:58:b6:cd:20:ca:ec:58:c5:40:
c7:2e:9e:67:d6:cf:f0:fc:1b:36:26:9b:41:50:64:
87:9f:01:ad:58:d6:f3:6a:99:f1:2f:28:fb:1a:0a:
42:17:74:f1:03:43:52:e7:12:f1:fc:35:50:97:99:
8e:31:d3:47:06:76:38:3c:4a:65:96:56:46:7e:4a:
e1:a3:7d:c0:0a:aa:56:22:44:6f:2d:51:3a:b5:67:
02:60:28:c5:54:10:f4:e6:93:76:62:c1:1b:98:e5:
5b:9f:47:2b:c8:b1:ac:80:8a:25:b3:c4:67:4e:30:
ed:9f:70:c4:ef:a9:3f:1f:fc:8f:1e:57:5f:81:55:
53:56:1c:ea:06:14:54:0b:a5:c5:29:a4:8d:10:6d:
93:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C5:45:A3:2F:27:9D:9C:9D:36:62:01:58:1E:ED:EF:E1:8D:10:94
X509v3 Authority Key Identifier:
keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/68VFoy8nnZydNmIBWB7t7-GNEJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.119.172.0/22
Signature Algorithm: sha256WithRSAEncryption
20:63:94:20:6e:59:9f:49:49:aa:22:80:4b:12:9b:a8:49:4f:
6f:91:fe:2b:81:39:3a:19:87:36:4c:60:dd:75:fc:f7:70:c7:
e1:72:a5:b2:32:e9:a5:85:ce:89:83:4e:bd:4e:36:3f:b0:d0:
29:a7:f0:4f:1c:12:14:66:c0:ff:a2:3a:50:81:0a:9b:7a:75:
14:86:82:74:8a:b1:e7:02:3b:da:2f:7e:b4:06:14:44:df:82:
a4:f3:f7:07:6c:31:2a:69:c7:c7:85:0a:c7:ad:d7:cc:b0:2e:
c0:27:42:36:99:4c:7a:77:d5:54:f8:28:12:f3:87:b5:80:36:
cc:d4:83:91:47:90:bc:73:37:f5:85:ce:49:54:fc:81:53:6e:
8d:f9:c5:c9:0e:ec:15:60:f3:df:9e:d7:fe:2a:5a:48:64:69:
b5:ad:cc:f7:4e:bf:c7:a4:b2:8b:ce:63:19:53:17:d4:e5:7b:
c5:98:4d:bd:03:ae:ba:d8:6d:3d:4f:1d:fd:87:9b:ed:7b:5d:
06:ea:ae:8d:ca:0c:ef:1a:7e:3f:80:5f:ee:9f:fe:69:cf:c8:
f1:ac:c4:ef:72:15:7f:de:33:a0:d7:e9:99:7b:a7:07:b1:68:
0b:b6:dc:cd:da:b8:aa:62:e3:0d:b4:fd:ee:da:22:a3:0e:68:
13:97:2f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:06 2024 by rpki-client on console-fra.rpki-client.org