Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/3yC6Qi39AMjvwt9dAVx9LDRFIsk.roa
File: 3yC6Qi39AMjvwt9dAVx9LDRFIsk.roa (raw, json)
Hash identifier: QuDNkGvMGON1eGHZTmYccDuu2R+khs391+uaV9H1ycg=
Subject key identifier: DF:20:BA:42:2D:FD:00:C8:EF:C2:DF:5D:01:5C:7D:2C:34:45:22:C9
Certificate issuer: /CN=644c50d1dadf8b84b174fdb0587afb5f42df8a5f
Certificate serial: 01880474E45239687EA89FFEB0A5FD291201
Authority key identifier: 64:4C:50:D1:DA:DF:8B:84:B1:74:FD:B0:58:7A:FB:5F:42:DF:8A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZExQ0drfi4SxdP2wWHr7X0Lfil8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/3yC6Qi39AMjvwt9dAVx9LDRFIsk.roa
Signing time: Wed 10 May 2023 06:59:09 +0000
ROA not before: Wed 10 May 2023 06:59:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34273
IP address blocks: 193.138.200.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 10 May 2023 12:21:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:74:e4:52:39:68:7e:a8:9f:fe:b0:a5:fd:29:12:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644c50d1dadf8b84b174fdb0587afb5f42df8a5f
Validity
Not Before: May 10 06:59:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df20ba422dfd00c8efc2df5d015c7d2c344522c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:17:2c:db:41:cd:79:a5:ec:ab:86:bd:16:92:
65:4f:62:fb:11:32:73:6f:f5:6a:29:dc:8f:48:bb:
b0:c3:93:a5:c6:b1:c4:88:cd:56:c4:28:19:c5:f7:
6c:98:f6:40:a1:29:45:72:29:a8:3e:7f:84:4e:03:
39:57:a9:48:cc:ab:5f:4e:8e:dd:ab:90:ac:08:7e:
bd:ba:74:69:55:a5:82:27:88:47:49:9c:46:87:3f:
5a:13:16:bb:19:eb:28:81:a8:f2:c1:ec:d6:73:58:
3f:64:bb:9c:d8:15:14:11:78:53:5f:2e:c6:5d:b3:
f9:ef:14:96:b8:c9:72:59:00:2e:2d:6a:07:7f:10:
3d:83:a3:15:69:d6:77:87:60:50:f6:5f:65:ac:85:
43:44:ea:0b:80:64:09:1c:c2:bd:f9:99:e8:12:f9:
5f:30:83:8f:a6:c4:e6:51:7e:91:be:01:88:ce:06:
84:59:d5:21:3a:5a:e4:79:39:8b:be:ce:59:20:12:
18:ef:67:53:bd:09:93:0a:a6:1e:61:9a:c3:04:22:
06:21:65:18:41:cb:41:fb:c2:25:77:20:db:f3:0a:
62:2d:25:03:1e:6d:82:cb:63:85:45:27:bd:a1:36:
86:0b:8c:0e:b5:df:e7:f5:37:4a:e5:e4:7f:09:c8:
0d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:20:BA:42:2D:FD:00:C8:EF:C2:DF:5D:01:5C:7D:2C:34:45:22:C9
X509v3 Authority Key Identifier:
keyid:64:4C:50:D1:DA:DF:8B:84:B1:74:FD:B0:58:7A:FB:5F:42:DF:8A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZExQ0drfi4SxdP2wWHr7X0Lfil8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/3yC6Qi39AMjvwt9dAVx9LDRFIsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/28bde3-a4ca-488d-8061-d38d843bfa1d/1/ZExQ0drfi4SxdP2wWHr7X0Lfil8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.200.0/22
Signature Algorithm: sha256WithRSAEncryption
34:2e:0d:54:e1:25:99:45:c7:2b:93:86:98:26:d1:fd:5f:9f:
84:9b:30:a1:84:9b:53:15:a7:f2:52:8e:c9:a8:20:89:b8:fd:
25:86:ab:4f:34:f8:ac:b4:a3:49:0a:53:1f:a7:d4:2e:df:89:
ca:f3:29:c2:14:75:1b:76:e3:8e:99:86:52:47:7e:03:b8:e6:
b3:a0:22:16:9b:a5:bf:a4:63:08:91:c9:dc:1a:33:19:1a:8c:
a2:aa:33:b5:c3:ef:9c:a6:5c:a0:b5:97:aa:c1:3b:4b:49:23:
63:2a:55:89:a4:c1:93:8f:4e:75:6b:fb:43:ed:51:78:04:22:
3e:0b:e6:c6:5d:55:a2:e6:4f:8e:47:24:c1:c6:ab:a5:8f:81:
86:a2:f4:81:70:ec:7a:9f:6f:34:af:0a:51:86:f2:4f:2f:04:
05:ba:1d:4f:d2:6e:74:b6:32:eb:5b:4c:54:cf:eb:53:88:cf:
3f:01:7d:2f:05:a3:11:ab:38:b1:be:a7:1f:13:a6:48:7f:ad:
25:b3:9a:de:b3:71:32:b5:3e:cd:9a:db:3e:13:83:34:18:11:
cc:f7:90:e2:59:8e:95:f8:b0:ac:41:74:88:6a:11:f1:72:6c:
fd:f8:5a:ee:a5:50:79:65:11:72:c3:b8:b0:59:ce:7b:58:a0:
ca:00:01:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:57 2024 by rpki-client on console-ams.rpki-client.org