Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/9LZB_43B02MkqgQ4U1MLiwKrgKo.roa
File: 9LZB_43B02MkqgQ4U1MLiwKrgKo.roa (raw, json)
Hash identifier: IVn4qa6TZZPpTjPihkd4HynIXfOZwcwmODe1F0Uob08=
Subject key identifier: F4:B6:41:FF:8D:C1:D3:63:24:AA:04:38:53:53:0B:8B:02:AB:80:AA
Certificate issuer: /CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Certificate serial: 01856C6F1EACA7EA8B63388D6C6FBB460555
Authority key identifier: DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/9LZB_43B02MkqgQ4U1MLiwKrgKo.roa
Signing time: Sun 01 Jan 2023 08:24:59 +0000
ROA not before: Sun 01 Jan 2023 08:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 193.142.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:1e:ac:a7:ea:8b:63:38:8d:6c:6f:bb:46:05:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe6ab8e0c46e841b44d2b9c6b03bb65f5621db1
Validity
Not Before: Jan 1 08:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4b641ff8dc1d36324aa043853530b8b02ab80aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:82:95:d0:68:ed:28:47:3e:37:f4:a8:0c:74:
e7:a4:7d:e4:22:a0:93:3e:6a:78:79:43:35:14:16:
86:91:50:7c:26:4c:22:5c:f4:df:79:4e:fa:44:63:
1c:38:e4:3b:c8:5b:92:1f:48:86:9a:49:3c:72:03:
19:df:e4:5f:3c:6b:a6:e5:03:8e:e1:18:6f:b5:c1:
32:16:9d:19:56:e4:9d:62:cd:de:2d:7f:da:27:6a:
3f:44:34:7a:e0:83:f3:5c:36:0b:90:6e:c2:61:19:
9e:fe:cc:56:e0:19:29:31:f8:49:a2:af:72:6b:18:
12:c7:05:0c:c9:09:07:84:65:c7:9e:54:dc:35:50:
f4:70:75:9a:cb:d3:f6:df:61:0c:3a:1c:8b:97:9d:
69:6d:0d:68:1e:5b:de:f2:e5:c8:b6:cd:56:53:5e:
5a:03:5e:96:5d:8e:24:b4:c5:c6:3e:77:35:70:28:
37:f1:9a:e3:2f:27:5a:00:7b:b8:6f:b4:2e:1a:95:
63:52:38:6e:44:37:13:a7:bf:c3:fa:6c:c7:46:b8:
ac:bf:9d:36:34:b0:b6:d4:9e:c8:37:79:0e:3b:f6:
00:18:ad:44:c3:82:5e:be:85:f4:3e:17:8f:00:b3:
bd:85:cb:63:cd:27:6f:ee:d1:05:60:4b:3d:eb:86:
ce:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:B6:41:FF:8D:C1:D3:63:24:AA:04:38:53:53:0B:8B:02:AB:80:AA
X509v3 Authority Key Identifier:
keyid:DB:E6:AB:8E:0C:46:E8:41:B4:4D:2B:9C:6B:03:BB:65:F5:62:1D:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-arjgxG6EG0TSucawO7ZfViHbE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/9LZB_43B02MkqgQ4U1MLiwKrgKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/96436c-f6fa-40ba-a27c-fb1030651067/1/2-arjgxG6EG0TSucawO7ZfViHbE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.58.0/24
Signature Algorithm: sha256WithRSAEncryption
34:23:19:65:91:7d:ca:12:ff:84:33:48:b1:69:6b:69:d4:07:
ad:1b:07:0d:d3:68:7a:53:e5:e5:a3:17:89:a5:dd:02:10:75:
cd:c0:ac:6d:fd:0d:4b:8f:70:26:5e:50:7c:7e:77:f6:36:3c:
45:08:6a:10:25:0f:75:0d:d6:92:91:4e:c5:8d:49:80:5f:62:
8b:ae:57:19:2f:00:1c:8f:e3:db:bc:f2:b5:e7:42:bb:e6:a9:
23:dd:1d:ed:c3:f0:4d:4c:00:fb:43:4c:1d:60:e5:8e:ff:4d:
28:fa:04:ae:d5:05:01:31:a1:e4:06:ce:60:ff:8e:48:ac:d2:
e3:8b:32:da:44:a3:24:e5:95:a0:b2:35:61:e5:22:16:68:88:
46:ff:13:ef:a9:b2:9e:97:fa:3f:76:5c:92:a9:b3:cc:47:11:
8a:32:37:b3:43:b4:51:76:71:d0:db:49:de:1b:f9:e8:5c:be:
85:cc:3e:b2:c6:69:d3:9a:af:d0:8b:4b:2f:87:1b:71:e3:fa:
c5:d4:97:5d:52:d9:06:45:d7:37:d8:a5:37:d9:15:b0:7d:33:
61:65:29:05:68:58:cd:7c:16:3c:c5:58:ad:04:62:0d:ab:87:
8e:e5:4f:19:3c:ce:45:af:49:64:d3:4f:20:8c:2d:d8:c9:a8:
ac:30:c4:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:55 2024 by rpki-client on console-fra.rpki-client.org