Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/3YALjXSoaETpGEliWf5b8st9-04.roa
File: 3YALjXSoaETpGEliWf5b8st9-04.roa (raw, json)
Hash identifier: wMDcI0EhbxOGRoaKGtD9vVknaIOp2MB4dEKW6EMHoOE=
Subject key identifier: DD:80:0B:8D:74:A8:68:44:E9:18:49:62:59:FE:5B:F2:CB:7D:FB:4E
Certificate issuer: /CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Certificate serial: 01856C65C70DE09F9EAA6C6A6606EB5715FD
Authority key identifier: 3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/3YALjXSoaETpGEliWf5b8st9-04.roa
Signing time: Sun 01 Jan 2023 08:14:47 +0000
ROA not before: Sun 01 Jan 2023 08:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12886
IP address blocks: 193.23.148.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:c7:0d:e0:9f:9e:aa:6c:6a:66:06:eb:57:15:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d70fe1d75f7da76d2e3dc344fb1f0b0b69de001
Validity
Not Before: Jan 1 08:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd800b8d74a86844e918496259fe5bf2cb7dfb4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:01:f4:fa:4d:22:f7:0d:0b:4c:e8:22:c3:af:
38:8b:18:e9:28:4d:dc:9b:eb:3a:bd:dd:fa:21:c7:
63:52:ec:57:84:dd:7a:42:67:bb:68:cf:55:13:0d:
fd:f0:9c:03:b4:1a:8a:d5:73:ff:44:4e:d8:26:4f:
6b:6c:cc:6a:30:f2:da:91:eb:cd:ea:8d:2f:25:f9:
c2:51:fd:76:7b:21:db:04:09:1f:2e:cb:16:e8:5c:
be:fc:69:da:17:08:54:d4:35:ce:3e:ff:7f:aa:b8:
1c:ac:32:4e:33:47:ea:96:37:82:33:b9:38:56:ef:
6b:84:07:b2:58:e5:dc:e7:ed:ea:e6:3e:5e:97:d0:
20:e0:a8:d0:2e:8c:55:34:5b:53:27:19:7c:8c:1b:
d2:5b:e5:e3:fc:b2:db:8f:12:5d:4f:b7:cf:81:59:
4e:94:a4:52:e9:07:09:80:70:74:f4:3e:21:d0:1b:
61:69:61:81:47:19:5e:1a:d6:f7:0b:62:a9:df:a4:
53:4f:0b:8f:58:af:57:90:0b:d7:9f:7c:e9:79:b9:
ea:ab:de:21:7d:c0:1f:e7:d0:c6:73:4b:f5:08:36:
6d:bb:97:b2:19:66:82:a0:18:d6:b7:a0:24:4f:36:
aa:65:e2:77:54:71:56:65:77:c7:31:4a:df:eb:e1:
ea:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:80:0B:8D:74:A8:68:44:E9:18:49:62:59:FE:5B:F2:CB:7D:FB:4E
X509v3 Authority Key Identifier:
keyid:3D:70:FE:1D:75:F7:DA:76:D2:E3:DC:34:4F:B1:F0:B0:B6:9D:E0:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PXD-HXX32nbS49w0T7HwsLad4AE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/3YALjXSoaETpGEliWf5b8st9-04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/2456e5-61dd-4ae3-a24f-b852bd8123f0/1/PXD-HXX32nbS49w0T7HwsLad4AE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.148.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:d2:17:8a:b3:60:4a:af:28:f2:6d:f7:8a:54:25:46:be:4b:
2d:aa:8e:9b:74:7f:d9:24:75:b9:d7:c2:f2:1b:fd:2b:74:f6:
32:22:f6:e5:cd:50:8d:bf:5d:aa:1a:c8:17:cd:c5:7c:ea:d5:
72:0e:20:c6:e5:dc:5d:e5:35:ef:37:b8:6b:12:62:e8:cb:a7:
8a:9f:67:63:f2:34:e2:f3:4e:d6:05:e8:12:64:bf:88:22:89:
0c:51:f3:6a:28:16:99:75:fa:20:09:0d:18:12:33:55:00:e7:
85:b5:19:a7:ba:b5:26:f3:89:5f:6c:48:b0:03:1a:b9:b4:1f:
1a:d0:59:79:c7:45:bb:c0:c1:e3:a4:1d:bb:3e:c0:66:48:30:
5e:43:b7:77:1d:17:1d:ba:aa:93:99:21:96:e5:e6:75:37:e5:
19:cd:41:2d:a8:d1:11:bc:e1:79:83:8f:ac:02:7b:39:cf:2b:
96:a5:0c:5f:42:4d:10:cd:8a:74:36:cb:a3:76:22:4c:18:0f:
b1:1d:b1:a4:c5:52:83:f8:f6:cb:93:25:67:25:26:ce:05:5f:
57:be:d8:e7:3c:25:26:30:d2:d2:e6:de:6d:f1:47:2b:a0:5f:
e5:a6:51:f6:32:2b:04:d7:6a:39:a2:2a:d2:5f:19:79:c7:8c:
91:70:c5:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:11 2024 by rpki-client on console-ams.rpki-client.org