Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/I7NTF3Vjt1rUe7F2SuvgGb5GnE0.roa
File: I7NTF3Vjt1rUe7F2SuvgGb5GnE0.roa (raw, json)
Hash identifier: oxSaFU0WWNiGKPATpzETGjzyEOTxALIMFMEP0NPBXe8=
Subject key identifier: 23:B3:53:17:75:63:B7:5A:D4:7B:B1:76:4A:EB:E0:19:BE:46:9C:4D
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 018BD2C3A9D62FEC9EDA00E220964483331D
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/I7NTF3Vjt1rUe7F2SuvgGb5GnE0.roa
Signing time: Wed 15 Nov 2023 11:35:20 +0000
ROA not before: Wed 15 Nov 2023 11:35:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20668
IP address blocks: 193.169.142.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:c3:a9:d6:2f:ec:9e:da:00:e2:20:96:44:83:33:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Nov 15 11:35:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23b353177563b75ad47bb1764aebe019be469c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8b:4d:20:8d:56:1b:b2:ce:2f:f1:d2:60:b2:
ae:c8:91:4c:f4:ee:2d:f2:11:05:71:e7:62:48:22:
3d:fa:3c:c4:8c:b4:05:9d:3c:a9:7e:2b:be:e1:e9:
07:06:62:8c:b3:65:50:f3:fc:75:b2:c4:a5:3a:28:
d2:47:33:68:45:e9:35:83:5e:8a:60:2e:34:ca:a3:
ca:66:b8:59:30:db:8d:69:b7:7b:3e:fb:0d:0e:67:
36:8e:36:ba:93:08:9d:92:0f:36:ad:f8:90:44:ec:
55:9b:05:a9:7b:27:a1:01:61:31:d3:0a:1b:80:36:
05:7e:61:34:1d:cc:ca:53:ee:b7:40:4f:1e:0b:7c:
e0:e2:f1:6b:a6:d8:2e:ce:cf:92:8b:dc:38:84:33:
ca:ce:35:63:e5:1a:9e:cd:8b:cb:d2:23:02:8d:0e:
2c:42:4e:87:bd:16:d7:f3:16:d6:b8:d2:46:b6:74:
16:27:6f:52:5e:b1:09:c6:d7:ab:9b:28:3e:f0:1d:
60:77:6e:68:e5:5e:09:82:74:e9:5c:0a:b3:8f:8d:
fd:45:96:dc:4d:8b:7e:d6:d5:a2:1e:34:35:82:ca:
ad:8d:0b:38:8f:61:ec:d6:fb:e2:23:3d:c5:c9:1c:
17:ef:56:7d:dc:1a:8d:6c:3b:a4:75:d2:db:06:e5:
97:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B3:53:17:75:63:B7:5A:D4:7B:B1:76:4A:EB:E0:19:BE:46:9C:4D
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/I7NTF3Vjt1rUe7F2SuvgGb5GnE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.142.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:ee:14:af:17:ea:c7:38:cd:7b:37:9c:ab:22:66:75:0a:90:
1c:d9:67:41:6e:7e:2a:c2:76:6d:cf:73:f0:6e:b8:38:24:6f:
ac:eb:e5:60:9f:e4:f2:71:81:1d:8c:de:1a:c4:21:1e:1d:f3:
74:ad:db:8e:59:58:ad:a3:38:2b:3b:46:b0:20:f9:be:74:52:
4a:e6:13:2d:22:c7:c3:8d:fe:23:fc:ef:12:ff:3b:aa:72:b4:
8e:eb:27:95:75:97:85:ea:5a:53:ba:8f:54:af:ff:ae:db:e9:
33:c9:59:b3:53:be:18:0f:49:93:a4:9b:dc:3e:18:e6:61:18:
37:16:9b:0e:9a:fb:11:a8:04:4d:54:f3:61:44:fd:73:d0:fe:
92:3d:0d:a5:c6:b2:27:df:00:f1:cf:99:56:3d:f6:d8:39:ec:
8a:97:3e:dd:68:43:31:db:0d:01:71:7f:71:53:00:39:09:ab:
56:86:34:a6:e7:6f:31:22:db:78:bb:4d:b4:5e:28:1c:9c:88:
55:2b:11:29:59:66:d3:aa:81:af:ec:13:64:30:98:7d:8e:ea:
2f:b7:94:a2:0f:6a:d4:a6:85:1f:fa:49:06:42:5c:ec:cb:0c:
92:c2:15:81:a6:5c:53:b4:b7:2a:27:33:50:ca:61:9b:5f:cf:
6c:0e:97:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org