Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/syqpnVg19Nzwbahkkdm6m82WZqQ.roa
File: syqpnVg19Nzwbahkkdm6m82WZqQ.roa (raw, json)
Hash identifier: 1pa3siVUfmxP9MYaMuyQ9le/KfftJ9TNvZU0oJ5LDys=
Subject key identifier: B3:2A:A9:9D:58:35:F4:DC:F0:6D:A8:64:91:D9:BA:9B:CD:96:66:A4
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018571DD8D1E2C551FD6C5FBC422A42644FF
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/syqpnVg19Nzwbahkkdm6m82WZqQ.roa
Signing time: Mon 02 Jan 2023 09:43:43 +0000
ROA not before: Mon 02 Jan 2023 09:43:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 193.37.196.0/22 maxlen: 24
88.214.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jul 2023 05:40:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:dd:8d:1e:2c:55:1f:d6:c5:fb:c4:22:a4:26:44:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 2 09:43:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b32aa99d5835f4dcf06da86491d9ba9bcd9666a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b0:42:24:af:20:e6:6f:70:5e:95:da:76:65:
47:25:8a:e7:23:b6:24:72:17:e8:74:c6:9e:8c:27:
64:9d:de:04:08:c4:3f:c3:47:34:46:1e:e0:57:56:
f5:e4:0e:df:c1:22:f6:63:cc:38:7f:47:0d:b9:7b:
d8:cc:2b:88:33:e7:f3:b9:b7:e6:83:49:c1:c3:ec:
28:2f:5e:87:1b:a5:85:2b:37:7e:ca:bb:18:f3:46:
22:80:bd:8c:02:a1:50:dc:31:24:63:ee:84:ad:5b:
04:61:23:06:05:84:1f:df:cd:79:15:ed:57:29:30:
73:df:91:8f:d7:26:62:0b:ec:5d:21:0a:d0:5e:6d:
ee:be:0d:b8:38:b3:85:bc:9a:26:f7:b8:3f:62:f0:
7b:96:53:bd:3a:a2:02:be:88:84:c3:8f:92:60:47:
10:af:12:40:f9:f8:2e:fc:61:a3:c8:73:56:9e:55:
df:8a:c5:c0:e2:a6:fa:b1:2e:80:49:8e:e8:e8:29:
d4:82:01:f2:5a:83:89:94:29:4a:48:87:d4:f7:51:
d2:29:5c:e0:50:d0:63:54:bc:f5:ff:53:e5:0b:6d:
b0:07:8a:57:d6:64:35:c8:7d:36:3f:a2:a0:65:b9:
e9:d7:fe:68:8c:42:b4:92:1c:5f:a1:49:aa:e8:81:
11:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:2A:A9:9D:58:35:F4:DC:F0:6D:A8:64:91:D9:BA:9B:CD:96:66:A4
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/syqpnVg19Nzwbahkkdm6m82WZqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.214.52.0/22
193.37.196.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:6f:f5:b5:c9:b8:5a:b8:30:e4:e4:f7:c4:51:06:3a:50:cb:
84:c8:bc:99:1f:e3:b6:21:bf:40:b2:e9:af:ac:a2:94:2e:f5:
f1:b4:42:54:06:3b:9d:b9:18:1b:08:9d:56:f0:48:e9:38:a5:
af:a1:9f:46:e1:98:79:c2:fb:ba:6f:3a:2f:f1:87:7e:f9:9c:
9f:02:3f:46:67:e5:98:80:fc:50:e9:ab:17:6e:43:4c:44:5f:
8c:6e:16:0e:ed:29:f2:9b:e2:b7:aa:e9:40:da:d3:09:8a:9b:
a2:9f:74:52:8e:b2:33:52:48:8c:4f:cc:05:16:c6:9c:42:9f:
4a:55:44:a7:d4:ac:9d:5b:44:71:d0:94:0b:45:96:d7:c4:38:
1c:ea:1b:1a:a6:31:b7:2f:af:d2:cd:bc:0d:3c:30:f6:83:57:
fd:d2:d4:b1:03:8a:c4:54:a5:f6:43:e7:04:b6:cd:8e:ec:57:
cc:ff:cb:ce:2a:d9:0c:c3:b9:2f:ec:8d:73:10:36:55:fe:7e:
88:f7:50:d2:fc:d5:d5:e9:11:f4:c2:bf:43:ca:91:4b:2c:26:
fa:54:85:e5:f0:0d:b7:96:62:e0:02:e2:0e:82:38:7b:d4:c6:
22:25:3d:7b:48:8e:36:42:c5:4b:a4:e5:06:28:34:94:cb:bb:
ad:3e:38:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org