Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/3d0f40-a7dd-4689-bc32-9eed9d75c0d1/1/eS2ivqabTXErt4GS0Y_7ch4Rzmk.roa
File: eS2ivqabTXErt4GS0Y_7ch4Rzmk.roa (raw, json)
Hash identifier: Sxckc7ro/TzMQF50D8F3otNPvyKa4qK1hEf5KDuEPwY=
Subject key identifier: 79:2D:A2:BE:A6:9B:4D:71:2B:B7:81:92:D1:8F:FB:72:1E:11:CE:69
Certificate issuer: /CN=2515e8792a424ff72cc1792978e2cd4cdbeda4d0
Certificate serial: 018F52EF78A4ABB87FAB8B214D9DAB439780
Authority key identifier: 25:15:E8:79:2A:42:4F:F7:2C:C1:79:29:78:E2:CD:4C:DB:ED:A4:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JRXoeSpCT_cswXkpeOLNTNvtpNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/3d0f40-a7dd-4689-bc32-9eed9d75c0d1/1/eS2ivqabTXErt4GS0Y_7ch4Rzmk.roa
Signing time: Tue 07 May 2024 12:02:56 +0000
ROA not before: Tue 07 May 2024 12:02:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47712
IP address blocks: 93.174.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 08:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:ef:78:a4:ab:b8:7f:ab:8b:21:4d:9d:ab:43:97:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2515e8792a424ff72cc1792978e2cd4cdbeda4d0
Validity
Not Before: May 7 12:02:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=792da2bea69b4d712bb78192d18ffb721e11ce69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:dd:a6:63:0d:cd:1e:62:fd:9e:27:2c:28:63:
04:bc:90:10:e2:20:c6:5e:50:09:2f:1f:ec:92:f2:
69:5c:94:53:f7:77:2f:7f:3f:bd:ad:1c:03:c4:9c:
a4:9d:57:95:ef:82:41:a8:8d:b6:bf:fe:47:b4:bc:
63:dc:09:8d:1a:bc:1d:d1:13:41:6b:69:57:12:1c:
6c:ca:45:a2:07:ed:8a:8c:72:fc:1e:53:3e:67:86:
47:17:bb:73:c2:85:f6:a9:93:b5:b3:b6:af:8b:19:
93:ce:b6:11:83:a0:8e:e8:48:74:bd:ea:0d:ec:90:
6f:22:22:ca:74:65:18:5b:65:24:d1:84:09:6f:0c:
9f:a1:8c:fa:d2:f3:8e:d2:ee:44:ac:a0:90:2c:b8:
e3:35:56:2a:0e:06:e6:f0:fe:12:62:95:bf:aa:51:
ec:4b:49:ec:cd:a7:9c:df:13:e9:79:bf:97:65:51:
e6:38:cc:e1:24:3b:f4:2f:91:6e:4b:4c:c6:31:f7:
1f:82:a5:dd:7c:44:3e:3a:ec:ab:3e:02:84:ff:f2:
a3:9b:0f:c4:f3:d9:39:25:8f:bd:cb:f6:ad:f9:a4:
13:0d:83:f1:77:48:59:be:de:98:b7:1c:09:49:c2:
74:f3:e0:65:52:01:17:5c:a8:3a:16:17:69:4b:a1:
52:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2D:A2:BE:A6:9B:4D:71:2B:B7:81:92:D1:8F:FB:72:1E:11:CE:69
X509v3 Authority Key Identifier:
keyid:25:15:E8:79:2A:42:4F:F7:2C:C1:79:29:78:E2:CD:4C:DB:ED:A4:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JRXoeSpCT_cswXkpeOLNTNvtpNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/3d0f40-a7dd-4689-bc32-9eed9d75c0d1/1/eS2ivqabTXErt4GS0Y_7ch4Rzmk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/3d0f40-a7dd-4689-bc32-9eed9d75c0d1/1/JRXoeSpCT_cswXkpeOLNTNvtpNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.96.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b0:b5:20:98:21:b1:0b:d4:78:59:d1:10:57:06:d3:de:69:
80:f0:07:c1:a6:a9:af:b1:e8:c4:60:b6:90:88:e0:7d:2e:bc:
eb:ca:b5:4f:b2:fd:f2:a6:47:64:40:bd:36:e8:2c:58:ac:d6:
76:8e:8a:a6:83:6f:52:a4:86:32:a3:21:33:61:be:7a:3b:8d:
a2:4e:5c:f9:df:e5:69:35:c7:2f:63:dd:88:48:32:db:fc:a2:
1d:61:32:8b:6c:59:d6:96:ad:18:52:c5:fd:69:72:6f:3b:08:
b2:48:fc:93:97:3a:f7:92:6d:00:0f:49:51:21:1f:3d:24:1a:
f9:4a:bc:12:c3:94:7e:2e:c3:29:4b:9c:c0:b5:2b:01:35:b5:
12:19:1c:7d:98:09:08:81:05:7e:82:8f:ca:5f:8c:18:e0:b7:
55:51:89:e1:11:7c:5c:2e:b8:0c:89:c2:36:87:64:f1:0c:77:
b8:99:79:e2:8b:05:25:cc:4a:0b:a2:9d:ea:c8:fc:9f:ef:e2:
ff:cd:9a:c6:8b:f5:1e:6d:5e:f9:75:67:7d:2a:c6:4e:7c:43:
93:87:e8:ed:d3:2c:c3:73:6c:1e:52:49:ce:32:4e:ec:e7:d5:
e1:7f:93:fb:6e:aa:46:cd:db:80:9a:44:df:8c:96:34:a4:e5:
45:8d:cb:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:10 2024 by rpki-client on console-fra.rpki-client.org