Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/eM3MTvAydqlGHjAgxQOLVmnUqw0.roa
File: eM3MTvAydqlGHjAgxQOLVmnUqw0.roa (raw, json)
Hash identifier: chQ2BZjkJFJoTMd1rgOhDAd9KAvaECB6UP0pq6q0Zrg=
Subject key identifier: 78:CD:CC:4E:F0:32:76:A9:46:1E:30:20:C5:03:8B:56:69:D4:AB:0D
Certificate issuer: /CN=c3a8e8648e0ba36a323ab9df6341d668bda6b4d2
Certificate serial: 0188E232236B9EA0333B45737256FED0410B
Authority key identifier: C3:A8:E8:64:8E:0B:A3:6A:32:3A:B9:DF:63:41:D6:68:BD:A6:B4:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w6joZI4Lo2oyOrnfY0HWaL2mtNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/eM3MTvAydqlGHjAgxQOLVmnUqw0.roa
Signing time: Thu 22 Jun 2023 08:21:56 +0000
ROA not before: Thu 22 Jun 2023 08:21:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211826
IP address blocks: 193.38.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 23 Jun 2023 14:24:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e2:32:23:6b:9e:a0:33:3b:45:73:72:56:fe:d0:41:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3a8e8648e0ba36a323ab9df6341d668bda6b4d2
Validity
Not Before: Jun 22 08:21:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78cdcc4ef03276a9461e3020c5038b5669d4ab0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:54:61:f4:bb:df:0a:80:25:d7:7b:be:11:49:
3c:e6:b8:2d:89:12:2c:e2:85:51:55:83:ea:3a:f9:
9a:96:0d:00:08:c2:d1:0d:28:5a:68:22:10:51:87:
4d:78:6c:5c:01:c9:bf:71:5a:ed:ff:85:74:9f:48:
3f:4e:34:c8:ae:e6:48:86:d0:01:fa:23:ac:ba:95:
b7:80:57:28:22:65:47:b8:24:4d:e0:04:97:94:d0:
96:e0:09:9d:11:70:35:9d:ca:c0:f3:3f:35:ac:e1:
1c:6b:b5:a2:d2:af:57:3c:11:31:b8:2f:84:57:13:
93:ab:ca:74:fc:35:b3:b0:f5:55:f3:ce:87:1b:9c:
00:17:fb:14:cc:29:1f:49:e5:57:26:8b:ae:ca:bf:
c8:68:8f:c2:a8:37:46:6a:59:c7:c8:f4:e1:1f:df:
f2:d0:72:7e:99:8a:98:aa:a3:96:05:c5:65:61:ac:
2e:30:0d:d9:17:4c:4a:a1:90:ae:e0:67:37:0b:51:
f7:ad:eb:9b:24:a3:d0:eb:96:38:9a:1f:13:5c:6e:
56:c4:35:db:16:fe:93:de:66:ec:4a:f7:04:8a:ad:
d3:78:e7:b0:78:12:c9:55:48:1f:70:98:e5:9f:9d:
34:45:25:23:24:dc:7d:4b:65:12:e2:01:45:2f:ca:
84:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:CD:CC:4E:F0:32:76:A9:46:1E:30:20:C5:03:8B:56:69:D4:AB:0D
X509v3 Authority Key Identifier:
keyid:C3:A8:E8:64:8E:0B:A3:6A:32:3A:B9:DF:63:41:D6:68:BD:A6:B4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w6joZI4Lo2oyOrnfY0HWaL2mtNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/eM3MTvAydqlGHjAgxQOLVmnUqw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/5a3d20-ecaa-40ea-9db2-d59845fb9b3d/1/w6joZI4Lo2oyOrnfY0HWaL2mtNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.244.0/24
Signature Algorithm: sha256WithRSAEncryption
66:11:21:05:63:79:16:f4:d3:39:3a:44:f8:1c:26:7f:e9:b9:
f4:b5:f6:d8:ae:fe:d6:ff:55:f7:4e:83:bd:44:34:3e:b9:b7:
7f:63:7c:9f:d8:3e:60:fb:27:e2:72:c3:a8:c8:11:e1:6a:12:
6e:eb:6e:29:05:6b:ca:46:17:96:dd:b1:70:52:88:25:e8:93:
c3:1e:27:6b:9e:29:38:4c:01:8e:95:94:f0:5f:ae:65:39:08:
92:7b:07:40:24:7d:0c:e0:f4:d9:b3:94:48:ff:4f:d5:8c:d2:
82:60:f0:de:35:80:a6:b5:c0:38:d2:8a:01:cd:fc:9f:54:8d:
67:5e:f5:ed:6d:bc:32:29:17:72:be:58:ab:20:f8:b2:cd:84:
5b:92:a2:fb:4b:fe:1f:d2:91:ae:35:ce:51:c2:e6:d9:1d:24:
47:de:65:b2:aa:98:af:3c:66:61:95:a6:24:f9:25:bc:43:8a:
46:a2:d0:e8:9a:c1:eb:bc:9f:3b:d4:b1:dc:1d:2d:06:a5:aa:
c6:fd:b6:a5:54:98:68:78:62:af:9c:a9:ef:ed:5f:84:62:2c:
ac:7e:8b:16:fc:cf:8e:56:f0:ba:0a:53:8d:3e:5a:b5:0e:d3:
b8:22:67:71:8a:85:04:9d:8f:99:ce:49:92:da:6f:bd:7d:06:
9f:93:01:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:13 2024 by rpki-client on console-ams.rpki-client.org