Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/53pEfilDx0FZ8rqCw2pjCuvIamQ.roa
File: 53pEfilDx0FZ8rqCw2pjCuvIamQ.roa (raw, json)
Hash identifier: e3BUKt5nsRDnf9npxBPwWBlih9MOHO/UFoQGJWIo89U=
Subject key identifier: E7:7A:44:7E:29:43:C7:41:59:F2:BA:82:C3:6A:63:0A:EB:C8:6A:64
Certificate issuer: /CN=7b4d31ab18e41f8d959a09d55660dd32aa9c45f7
Certificate serial: 0191DB474CE37B9A58E41D1DDF5D20ACB3F3
Authority key identifier: 7B:4D:31:AB:18:E4:1F:8D:95:9A:09:D5:56:60:DD:32:AA:9C:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e00xqxjkH42VmgnVVmDdMqqcRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/53pEfilDx0FZ8rqCw2pjCuvIamQ.roa
Signing time: Tue 10 Sep 2024 09:32:48 +0000
ROA not before: Tue 10 Sep 2024 09:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21422
IP address blocks: 193.110.240.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 05 Nov 2024 15:17:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:47:4c:e3:7b:9a:58:e4:1d:1d:df:5d:20:ac:b3:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b4d31ab18e41f8d959a09d55660dd32aa9c45f7
Validity
Not Before: Sep 10 09:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e77a447e2943c74159f2ba82c36a630aebc86a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:df:06:23:e7:2e:dd:a4:72:18:21:19:ec:66:
6d:10:b2:14:a7:f3:9c:99:d5:28:46:ed:49:04:de:
86:ae:3e:b0:39:c4:6f:5f:d2:5d:6d:fb:fb:01:17:
78:4a:99:f3:1a:b0:af:43:12:6d:00:2f:c9:b3:85:
2f:ab:ee:52:87:65:07:cf:45:2c:c7:0e:e3:57:06:
08:de:c8:51:37:ab:35:30:99:38:56:59:1f:5e:2f:
70:56:21:7b:aa:5d:0b:d0:38:8c:ff:45:b1:ff:a0:
e6:c3:4b:61:6b:6b:fa:9e:95:d2:a1:32:84:96:2c:
43:70:e1:3a:28:38:b7:ab:40:92:b5:18:ad:2e:21:
dc:be:a9:e2:17:a6:ab:aa:67:93:56:84:98:b3:ac:
19:2e:a9:aa:6b:9a:1c:fd:f1:60:7e:53:d0:77:3b:
7b:e9:02:ce:ea:05:c1:55:47:48:e5:cf:44:1f:c1:
9b:64:ad:98:5d:28:89:63:93:ce:37:a3:a2:7a:f6:
82:85:f3:07:36:14:eb:2a:ac:c2:0e:e1:8d:ac:1e:
95:bc:a0:69:22:2d:6a:d0:3f:36:c4:05:a0:f9:3f:
72:0d:f1:05:15:98:31:0f:d0:13:71:13:ae:32:56:
50:ee:82:35:07:ab:ba:9d:86:1b:fa:28:88:04:56:
54:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7A:44:7E:29:43:C7:41:59:F2:BA:82:C3:6A:63:0A:EB:C8:6A:64
X509v3 Authority Key Identifier:
keyid:7B:4D:31:AB:18:E4:1F:8D:95:9A:09:D5:56:60:DD:32:AA:9C:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e00xqxjkH42VmgnVVmDdMqqcRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/53pEfilDx0FZ8rqCw2pjCuvIamQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/9c2508-11f1-4ae7-8720-bff023b344f7/1/e00xqxjkH42VmgnVVmDdMqqcRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.110.240.0/21
Signature Algorithm: sha256WithRSAEncryption
66:aa:55:6c:15:36:96:be:0c:77:e8:2d:a3:d7:90:88:c2:2a:
3f:75:0c:6d:73:b3:3b:a0:23:d9:da:f9:99:28:49:5f:1c:e0:
2c:f5:95:62:57:0e:f2:6e:43:b9:13:5b:91:52:f6:aa:c5:f4:
e9:40:23:f6:06:fb:fa:b0:0a:43:e2:77:3d:5a:5c:59:63:ba:
7b:c1:8f:a5:55:40:eb:01:5d:60:df:1c:d2:72:5f:19:ee:72:
74:71:a7:a5:82:ef:64:9f:82:32:27:49:bb:82:94:65:69:71:
ea:da:06:d8:4f:bf:92:e7:91:da:4e:98:33:c9:75:38:70:da:
a7:9f:70:43:0e:3c:f9:ae:af:83:7a:43:d0:f9:b2:01:63:e6:
af:3b:b8:7d:0a:19:69:cd:8d:49:42:1d:60:dc:ab:f9:02:96:
7f:f2:70:2e:2f:98:8b:11:6f:90:87:54:b3:66:03:47:5a:e6:
ab:02:73:e9:7d:b5:ec:10:60:d9:91:84:bd:8b:f6:9a:80:d2:
79:83:a5:f2:c7:7c:f4:ce:55:1d:11:f0:bd:69:e3:93:df:85:
55:25:95:14:37:18:40:66:26:d3:16:07:b9:31:53:81:e7:96:
ca:c7:8d:3e:fb:d5:c3:30:83:1f:99:24:44:43:63:0b:64:bc:
8e:a2:54:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 19:27:10 2024 by rpki-client on console-ams.rpki-client.org