Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/abcc07-9a60-49f6-a1ef-8d52902ac830/1/fMJh3g1wUyhWeBshbIcF8GK1Emw.roa
File: fMJh3g1wUyhWeBshbIcF8GK1Emw.roa (raw, json)
Hash identifier: oJBktzVw5btGcWg+9maMmrGeR/KVVZoZU2LMYHx9NDo=
Subject key identifier: 7C:C2:61:DE:0D:70:53:28:56:78:1B:21:6C:87:05:F0:62:B5:12:6C
Certificate issuer: /CN=f3ba90c71eb4cb0169c94843e5c72fd777501906
Certificate serial: 01856B77ADCC8A5962E72D55D25E1243C64F
Authority key identifier: F3:BA:90:C7:1E:B4:CB:01:69:C9:48:43:E5:C7:2F:D7:77:50:19:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/87qQxx60ywFpyUhD5ccv13dQGQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/abcc07-9a60-49f6-a1ef-8d52902ac830/1/fMJh3g1wUyhWeBshbIcF8GK1Emw.roa
Signing time: Sun 01 Jan 2023 03:54:43 +0000
ROA not before: Sun 01 Jan 2023 03:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21437
IP address blocks: 193.104.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:77:ad:cc:8a:59:62:e7:2d:55:d2:5e:12:43:c6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3ba90c71eb4cb0169c94843e5c72fd777501906
Validity
Not Before: Jan 1 03:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cc261de0d70532856781b216c8705f062b5126c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e5:4a:75:69:19:7b:6d:ce:50:f6:08:f7:5d:
41:27:9b:f6:ce:fa:37:24:27:58:9c:75:9f:7c:08:
76:e9:15:bf:92:49:e9:85:b3:dd:5b:f7:4b:1f:55:
e7:08:41:28:9a:13:ed:e8:ca:03:5a:91:07:88:29:
26:8a:28:38:24:08:46:41:98:a0:d1:cd:46:4d:ab:
d3:e7:35:72:36:42:18:60:1a:bc:0a:0d:8d:28:77:
ca:3f:27:c3:8d:91:83:3e:94:61:38:b3:94:67:41:
02:59:cb:d7:94:17:ef:7d:c8:c0:4a:c0:f9:9e:3a:
28:4f:ce:bb:a4:5c:0e:99:80:f8:6a:c8:bc:d0:e0:
b1:38:01:72:92:8e:9f:97:fe:67:4c:77:af:25:6b:
8f:9a:67:a5:58:d8:a9:54:9b:de:fa:aa:27:aa:29:
83:94:9e:fc:2d:60:4f:01:0e:45:18:32:4f:1a:e9:
3e:af:c8:77:3e:a7:62:4d:a5:19:1f:c0:b3:d3:3d:
70:f2:52:48:a3:fd:8d:fb:ec:8d:44:a2:c4:c2:6e:
89:de:30:70:4d:7f:d3:96:0b:bd:31:6d:5d:03:af:
8d:18:11:36:25:41:46:ee:7e:63:73:7e:dc:3f:f2:
b4:88:22:68:f7:20:c6:54:87:62:12:9c:c3:53:9d:
85:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C2:61:DE:0D:70:53:28:56:78:1B:21:6C:87:05:F0:62:B5:12:6C
X509v3 Authority Key Identifier:
keyid:F3:BA:90:C7:1E:B4:CB:01:69:C9:48:43:E5:C7:2F:D7:77:50:19:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/87qQxx60ywFpyUhD5ccv13dQGQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/abcc07-9a60-49f6-a1ef-8d52902ac830/1/fMJh3g1wUyhWeBshbIcF8GK1Emw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/abcc07-9a60-49f6-a1ef-8d52902ac830/1/87qQxx60ywFpyUhD5ccv13dQGQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.133.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:45:f2:dd:dd:3c:71:75:5f:a2:5d:39:55:59:74:6a:64:b9:
29:8d:10:05:f5:77:e5:17:97:bb:11:55:26:76:68:1d:05:eb:
1f:e8:5a:02:9d:15:83:aa:c8:e1:60:3c:f4:cb:48:6b:3f:53:
2d:f2:1c:87:bd:4f:18:d6:80:cb:38:5c:13:b9:63:d4:d5:8e:
ea:dd:a8:de:d4:60:ec:7d:0b:16:41:40:c2:e6:22:7b:7e:83:
e9:78:f2:63:c7:9b:0f:3d:06:61:fd:72:b0:74:14:1c:45:5b:
92:cf:fa:28:9e:67:95:0c:5d:75:ce:92:63:cd:6f:36:b3:08:
73:ee:6b:3e:2e:ad:f6:ff:a6:cd:a1:35:03:56:bc:d5:53:64:
93:12:9d:a6:8b:f9:62:c2:30:47:de:5c:45:00:ed:1f:82:72:
92:76:e2:96:c0:d8:c1:f4:80:75:41:86:68:b4:31:06:0c:fb:
7f:b0:51:be:36:1f:64:22:d6:54:85:5c:3d:d0:ba:e7:c9:ae:
1a:90:b3:f4:7f:1c:8b:ad:c1:6b:38:06:79:9d:df:1a:1d:b2:
9e:9b:2b:f4:90:22:ea:18:d6:80:76:fa:db:69:43:1e:73:f6:
7d:61:cf:33:ac:15:3d:04:1b:f3:69:83:33:a2:00:8b:ec:b8:
2a:e1:1a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:01 2024 by rpki-client on console-fra.rpki-client.org