Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/08fKb2EnReXlOthQ3__zyXO1stg.roa
File: 08fKb2EnReXlOthQ3__zyXO1stg.roa (raw, json)
Hash identifier: g9YqFQXqgY32Y/z4IbXxydZc8owV57aJE0JtSNUknNE=
Subject key identifier: D3:C7:CA:6F:61:27:45:E5:E5:3A:D8:50:DF:FF:F3:C9:73:B5:B2:D8
Certificate issuer: /CN=9748fcd3ceecdb8e04a524af9674cb58803ff668
Certificate serial: 01856B9C84FDAA7E1528E219FB2360ABA9CD
Authority key identifier: 97:48:FC:D3:CE:EC:DB:8E:04:A5:24:AF:96:74:CB:58:80:3F:F6:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0j8087s244EpSSvlnTLWIA_9mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/08fKb2EnReXlOthQ3__zyXO1stg.roa
Signing time: Sun 01 Jan 2023 04:34:57 +0000
ROA not before: Sun 01 Jan 2023 04:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202499
IP address blocks: 193.142.188.0/22 maxlen: 24
2a0c:9b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:84:fd:aa:7e:15:28:e2:19:fb:23:60:ab:a9:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9748fcd3ceecdb8e04a524af9674cb58803ff668
Validity
Not Before: Jan 1 04:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3c7ca6f612745e5e53ad850dffff3c973b5b2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4b:ec:9c:f7:f1:1b:7f:ee:db:b9:8e:d8:5a:
5d:97:8c:4e:a7:83:31:d1:24:f7:d6:1f:f8:50:58:
39:3b:5c:b7:30:9d:d1:e6:68:09:e2:17:f5:fc:d8:
ec:94:35:31:9d:9c:e7:63:fc:bb:f5:a2:15:d1:a1:
65:7d:42:70:c4:28:f7:df:d1:55:4d:ff:15:37:8f:
1c:50:c5:6c:84:f4:06:94:69:7c:af:4e:dd:87:8d:
33:1f:35:9d:54:d9:f4:77:cb:7a:39:00:f0:91:64:
c2:a1:d5:a7:96:af:05:a7:51:1e:f8:da:03:78:5c:
8b:0d:98:84:10:6f:28:20:f3:4d:c4:75:bb:26:a6:
ea:0e:83:74:7a:40:ab:69:f6:6b:2e:d5:49:05:1b:
a5:f1:31:e7:d9:d9:d9:6e:79:c3:e7:c7:a6:bd:b3:
56:46:d6:e8:d6:18:af:d1:a6:13:58:77:7c:ec:46:
d5:82:fd:de:06:6a:02:9d:f3:3c:99:20:4a:78:45:
bb:3d:5e:ad:ef:1f:e1:76:97:f8:64:fa:cc:22:63:
da:a0:0a:59:da:28:d0:ad:a5:31:96:a7:8f:5d:21:
f7:ae:4d:bc:ad:98:d7:42:fd:97:7a:c1:c6:93:34:
35:b9:df:6b:ee:89:af:23:e3:7b:5f:c4:58:60:75:
a1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:C7:CA:6F:61:27:45:E5:E5:3A:D8:50:DF:FF:F3:C9:73:B5:B2:D8
X509v3 Authority Key Identifier:
keyid:97:48:FC:D3:CE:EC:DB:8E:04:A5:24:AF:96:74:CB:58:80:3F:F6:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0j8087s244EpSSvlnTLWIA_9mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/08fKb2EnReXlOthQ3__zyXO1stg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/11592e-3296-48c6-a4d4-8708f697e669/1/l0j8087s244EpSSvlnTLWIA_9mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.188.0/22
IPv6:
2a0c:9b40::/29
Signature Algorithm: sha256WithRSAEncryption
24:55:e6:bf:ca:1a:5f:c7:02:4e:c6:1a:47:2b:62:8c:00:f4:
d7:62:02:d6:94:08:dc:52:34:e2:4e:c1:65:e5:69:eb:36:34:
75:77:aa:c5:04:96:cc:5b:07:fd:4b:b4:2e:84:42:1c:df:bd:
98:03:8c:9e:4a:67:18:0f:3a:e1:12:73:d3:6e:fc:0a:cb:a5:
12:c2:d6:83:4f:96:07:55:c6:ad:cf:cf:38:b6:5b:11:d8:a4:
fa:f2:8c:2a:63:10:d0:6c:bd:0a:01:0a:3a:07:3c:68:6b:94:
d2:ca:36:e0:5b:fa:88:d0:f5:68:fd:00:a9:f3:ef:c0:1c:bd:
7e:98:c0:2a:98:80:ae:ce:56:86:22:87:c0:04:3f:25:c9:f5:
92:d0:6f:ee:67:cf:12:e4:00:e5:62:50:c0:ee:eb:29:b9:dd:
8f:e4:5e:6c:c3:6c:d3:7d:47:26:a2:81:28:32:bb:fa:ec:fe:
0d:67:e2:10:12:20:1d:3f:af:ea:07:1f:65:f9:2e:96:e5:dd:
e3:b2:f0:63:37:a9:1d:38:23:03:36:b3:bc:24:2e:8b:05:c6:
8e:78:e3:6c:ce:f7:de:35:04:ab:4f:72:5d:5a:b4:7b:3c:18:
51:88:22:65:84:47:c4:e8:08:ad:4b:53:bc:dd:8c:37:b0:6a:
a2:dc:4a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:31 2024 by rpki-client on console-fra.rpki-client.org