Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/kzWsjuBJbDUWCoaQC5xExW8JbMw.roa
File: kzWsjuBJbDUWCoaQC5xExW8JbMw.roa (raw, json)
Hash identifier: eJui7djO6u4Ea4M7hvTtBN72DFEyqM1S6sfRJ7DatKU=
Subject key identifier: 93:35:AC:8E:E0:49:6C:35:16:0A:86:90:0B:9C:44:C5:6F:09:6C:CC
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 018AD65B6FBF6C77F4483D2E7662E3354D69
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/kzWsjuBJbDUWCoaQC5xExW8JbMw.roa
Signing time: Wed 27 Sep 2023 11:17:11 +0000
ROA not before: Wed 27 Sep 2023 11:17:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35608
IP address blocks: 193.19.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 06:26:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d6:5b:6f:bf:6c:77:f4:48:3d:2e:76:62:e3:35:4d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Sep 27 11:17:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9335ac8ee0496c35160a86900b9c44c56f096ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c1:f9:1e:3f:0c:30:9a:57:ee:d2:67:8e:79:
89:a7:7b:d9:5c:5b:b4:99:ac:a9:15:1d:84:e3:a3:
29:15:39:fe:69:a4:7d:f2:10:70:1c:a5:90:37:96:
25:65:a0:8e:2d:56:60:e1:1b:32:b7:5d:83:8d:31:
dc:ac:d5:0c:28:1b:5d:ec:c7:03:b5:3f:86:8d:3a:
67:df:5d:86:1a:b9:c1:b3:12:1c:87:ef:ad:57:d3:
49:34:ad:71:cc:56:41:93:18:13:e1:05:0a:99:19:
38:4c:38:91:4c:82:75:32:f5:ce:dc:57:eb:e6:ef:
a8:57:41:e1:80:ef:28:e6:4e:9a:e3:44:a0:84:ad:
92:b2:6e:e0:db:db:48:52:81:03:9d:90:6e:cd:b5:
a1:48:91:ae:9f:fd:19:a6:0f:f9:3c:04:e1:6a:cb:
6b:22:95:f2:b1:e7:69:0c:42:d4:4b:88:ba:49:72:
1e:f3:cd:84:9b:8d:85:e5:08:82:94:d9:71:27:3e:
83:34:aa:a6:b8:11:6b:6c:f6:c1:0e:7b:86:3e:cf:
7a:93:5b:0a:a2:28:1e:7c:8c:d8:5e:fe:44:42:dd:
07:fd:01:f8:0f:0c:08:28:bd:00:01:1e:1b:98:d7:
5c:de:13:da:7b:d1:b0:cf:be:67:53:02:e0:23:88:
6f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:35:AC:8E:E0:49:6C:35:16:0A:86:90:0B:9C:44:C5:6F:09:6C:CC
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/kzWsjuBJbDUWCoaQC5xExW8JbMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.111.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:bb:ed:17:87:fe:c1:9a:de:9c:e8:2c:ee:23:41:da:21:4f:
84:80:1b:59:c8:8b:1e:4e:a2:e8:b0:64:f8:e2:96:58:d5:0e:
4e:9e:63:2c:24:6e:14:1a:b1:aa:c1:20:90:20:20:1c:a0:09:
c9:d1:3c:4c:c3:d3:39:66:d8:28:02:d5:63:a5:76:5a:a6:a4:
b5:84:38:27:c4:d6:ee:c5:e5:96:26:91:cf:e8:96:0f:e9:32:
73:95:34:1c:a9:7a:cd:e7:24:2a:32:17:06:cb:c1:56:21:17:
83:a4:6e:79:84:2f:ed:f3:3f:e9:91:d7:2c:d7:8d:90:d5:72:
a7:bc:d5:12:d8:5b:5c:71:f2:9a:ad:c5:00:f7:e8:9c:d4:f8:
b7:ba:a4:7b:c2:9b:52:06:ab:43:ea:ed:03:8b:fe:11:ef:e7:
e4:14:0f:8e:94:70:31:5b:ea:dd:ed:7f:43:29:ae:0a:2d:ea:
a0:2a:c0:14:a0:7c:0d:68:48:3e:1c:b6:17:0f:36:7f:de:65:
4c:5e:95:e9:0e:44:92:dc:7e:79:76:f6:ec:bf:b7:97:1b:6b:
aa:f7:28:9d:c6:51:78:86:a8:5a:cf:85:91:a5:04:bb:0f:81:
d1:62:be:11:19:c8:03:ec:7f:21:80:06:e5:71:4e:8d:bb:ce:
26:3a:63:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:27 2024 by rpki-client on console-fra.rpki-client.org