Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/lscBuCUvZ4ExYTQRMkz-1GuM7TI.roa
File: lscBuCUvZ4ExYTQRMkz-1GuM7TI.roa (raw, json)
Hash identifier: TWVHtYd4imrMx0hAMyPNeMosLh0XEuTQFepTEQqJuO4=
Subject key identifier: 96:C7:01:B8:25:2F:67:81:31:61:34:11:32:4C:FE:D4:6B:8C:ED:32
Certificate issuer: /CN=29187f811597dd03513be42f43155bc15a3a0b3f
Certificate serial: 0186377965747F66EDDB788999A17538CADA
Authority key identifier: 29:18:7F:81:15:97:DD:03:51:3B:E4:2F:43:15:5B:C1:5A:3A:0B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/lscBuCUvZ4ExYTQRMkz-1GuM7TI.roa
Signing time: Thu 09 Feb 2023 18:39:08 +0000
ROA not before: Thu 09 Feb 2023 18:39:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58012
IP address blocks: 193.17.70.0/24 maxlen: 24
193.17.179.0/24 maxlen: 24
193.17.193.0/24 maxlen: 24
193.17.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Feb 2023 22:07:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:37:79:65:74:7f:66:ed:db:78:89:99:a1:75:38:ca:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29187f811597dd03513be42f43155bc15a3a0b3f
Validity
Not Before: Feb 9 18:39:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96c701b8252f678131613411324cfed46b8ced32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:1f:fa:66:92:10:78:9f:ab:c2:b7:ff:f2:07:
b8:d8:80:f6:51:63:c3:16:e5:f2:4f:cc:b5:25:90:
eb:13:4d:7a:5a:6d:28:b5:98:93:7f:e8:ff:a9:4f:
9d:e8:52:73:75:92:70:5a:16:65:71:b7:ee:df:8e:
84:9e:40:8f:27:26:81:bf:6f:40:11:4b:7d:77:56:
fe:cb:b4:5a:5f:5e:fa:b4:14:32:40:6b:d2:e3:9f:
d5:f9:6c:15:0f:04:d3:82:11:28:14:6c:27:88:ec:
15:b2:61:8c:d8:20:73:91:73:f1:10:bf:a5:bc:67:
b6:fc:94:b8:1a:3c:6c:bf:83:31:35:77:7c:d8:ee:
fc:02:b5:76:d3:6a:73:77:72:19:4a:78:e9:7a:36:
a1:0e:a5:86:c6:11:f1:6f:ed:d3:a0:cb:fa:0e:9d:
06:a1:fb:6e:d1:cd:02:e6:2b:91:21:06:cd:da:e5:
e3:4d:5b:ca:71:6a:48:c7:4c:20:36:6f:a0:95:33:
68:66:86:25:a6:58:d7:55:cb:2e:4b:36:af:ba:d7:
4c:a0:bd:c7:e8:65:1a:e4:59:c2:ea:66:82:97:ad:
8d:c9:d2:02:7a:14:df:cb:2e:8f:f8:01:54:01:0c:
cc:44:5b:40:1c:e1:8f:8f:d1:8f:8f:52:79:b9:d8:
58:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C7:01:B8:25:2F:67:81:31:61:34:11:32:4C:FE:D4:6B:8C:ED:32
X509v3 Authority Key Identifier:
keyid:29:18:7F:81:15:97:DD:03:51:3B:E4:2F:43:15:5B:C1:5A:3A:0B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/lscBuCUvZ4ExYTQRMkz-1GuM7TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8c006d-50f5-445d-b7e8-24994b040f41/1/KRh_gRWX3QNRO-QvQxVbwVo6Cz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.70.0/24
193.17.179.0/24
193.17.193.0/24
193.17.220.0/24
Signature Algorithm: sha256WithRSAEncryption
37:52:85:26:f2:7b:37:bb:c9:42:51:4a:74:a2:34:47:98:78:
ea:08:d8:e5:63:0b:02:da:85:ae:c8:32:1f:30:04:84:34:dd:
39:78:91:7f:72:a0:bd:9b:83:93:14:90:25:53:32:07:e3:63:
84:22:f7:da:ef:dd:b6:73:1d:48:65:18:a4:84:ac:06:97:d8:
5e:df:6b:92:1b:1f:ea:a1:f5:93:14:7b:e3:82:91:aa:f7:98:
c3:b3:05:95:35:7d:da:0a:6f:a2:02:b4:1b:75:59:85:60:e9:
2f:cb:89:f3:5e:6f:2e:4a:44:47:9a:13:4b:43:8e:97:47:a1:
c1:b7:01:ac:d2:34:b3:24:db:2c:15:75:19:c1:9c:3d:ac:33:
3d:ea:c4:6d:c2:a6:7d:13:bf:ab:ea:c3:e4:63:98:86:23:1c:
32:21:f7:28:91:17:ef:79:8b:71:ce:e3:6b:d4:71:2a:32:86:
cb:09:82:d1:c0:d3:bd:96:f3:8c:63:6c:64:8d:bd:3d:68:a1:
53:4f:02:ea:8a:15:ca:54:b4:7f:7c:29:17:ee:1a:18:8f:c1:
c7:5d:61:43:a8:09:53:e6:54:e9:69:05:c8:eb:ae:31:52:d2:
49:61:3f:68:95:c2:fc:76:8b:e8:33:4c:f1:7e:86:ea:0a:9e:
09:b3:25:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:15 2024 by rpki-client on console-ams.rpki-client.org