Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/b3P_EP-BIo6rJ4cW4EWtx7n4Zq4.roa
File: b3P_EP-BIo6rJ4cW4EWtx7n4Zq4.roa (raw, json)
Hash identifier: 2aSfvNmEE6uXuGPqQ0wIPGfjUhg7m9FKGwxFutymrMs=
Subject key identifier: 6F:73:FF:10:FF:81:22:8E:AB:27:87:16:E0:45:AD:C7:B9:F8:66:AE
Certificate issuer: /CN=74d7da63929999603395877448ce50ac6e0213a9
Certificate serial: 01856D53DD7F3870C2B7D5F2F7DE3DE7C83F
Authority key identifier: 74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/b3P_EP-BIo6rJ4cW4EWtx7n4Zq4.roa
Signing time: Sun 01 Jan 2023 12:34:50 +0000
ROA not before: Sun 01 Jan 2023 12:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 193.16.56.0/22 maxlen: 22
193.16.60.0/23 maxlen: 23
193.16.62.0/24 maxlen: 24
193.16.48.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:dd:7f:38:70:c2:b7:d5:f2:f7:de:3d:e7:c8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74d7da63929999603395877448ce50ac6e0213a9
Validity
Not Before: Jan 1 12:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f73ff10ff81228eab278716e045adc7b9f866ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:9e:85:f3:36:7b:a2:9d:83:91:63:d8:2f:37:
95:9f:d1:88:f1:dc:5c:51:eb:cd:70:c4:2a:84:b5:
e0:31:02:a7:8d:1d:a5:1a:69:22:27:ea:53:73:c6:
70:f6:13:bb:a6:49:89:08:39:f3:5a:2e:da:3e:48:
18:1d:e3:07:a5:42:24:56:f6:ef:70:ad:2c:89:92:
94:69:77:73:0f:75:9f:46:b9:e1:ee:2b:b9:0b:a0:
e7:6d:6d:34:6c:c5:3a:0d:e3:cf:d4:aa:21:ce:fe:
55:aa:fb:44:37:17:6d:db:a4:24:b9:09:a6:e1:8e:
6d:ba:db:70:c6:6d:68:30:34:52:6b:dd:72:f8:c5:
ad:eb:6f:27:af:89:e6:c0:41:7a:ef:04:dd:fa:79:
e5:90:06:3f:7a:eb:5f:1a:a9:bf:40:28:6e:3d:37:
d6:a9:00:78:1f:d2:1d:bc:99:f0:cf:12:58:26:37:
92:c9:3e:7a:39:15:56:05:ba:7c:2a:eb:85:a0:dd:
68:c0:f4:cd:14:28:64:a3:cb:6a:33:15:2a:ad:56:
0f:58:9d:aa:0a:c9:aa:e4:51:42:20:a4:23:14:2f:
37:d4:a0:38:b6:4d:6f:dd:7b:24:05:65:71:1c:a2:
16:26:9a:65:24:66:6a:10:b7:25:d2:dc:75:c5:7d:
b4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:73:FF:10:FF:81:22:8E:AB:27:87:16:E0:45:AD:C7:B9:F8:66:AE
X509v3 Authority Key Identifier:
keyid:74:D7:DA:63:92:99:99:60:33:95:87:74:48:CE:50:AC:6E:02:13:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNfaY5KZmWAzlYd0SM5QrG4CE6k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/b3P_EP-BIo6rJ4cW4EWtx7n4Zq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/0eb852-af34-4cb9-872e-4b5d5d5f8699/1/dNfaY5KZmWAzlYd0SM5QrG4CE6k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.48.0-193.16.62.255
Signature Algorithm: sha256WithRSAEncryption
23:25:69:ce:71:72:d1:24:d1:d0:84:24:b2:5d:da:a2:3b:ab:
2a:a4:f7:eb:58:31:72:a5:57:a0:0f:c0:c0:77:1e:0f:25:ac:
4c:be:e6:78:d9:3a:66:0a:f2:41:09:15:ca:f4:72:66:86:b1:
37:84:6f:d9:aa:9a:15:e1:31:cd:e0:61:40:76:0f:52:85:ad:
33:1f:d6:74:4c:5f:5e:97:dd:9e:24:72:9a:86:99:e7:03:d7:
54:63:3f:b7:58:b6:62:5e:92:6c:9d:f5:45:66:70:2d:88:ea:
a0:79:8c:60:cd:28:11:24:df:4e:54:93:1f:ba:03:35:c7:7b:
be:08:c0:94:fe:88:a4:77:54:ec:8d:1f:c4:79:ef:56:8f:5e:
4a:a2:0f:a0:ee:6a:23:bc:79:74:e6:3b:cd:7e:12:45:6e:7a:
ac:3f:0a:c6:a6:8f:12:af:62:20:86:b2:e9:ca:17:52:a7:b3:
93:a9:00:84:70:24:60:95:4e:1b:b7:42:9f:e9:71:d1:26:48:
09:9b:42:6f:36:b0:f6:d1:c0:63:b6:c5:7b:dd:24:38:2d:cd:
69:2e:53:d6:bc:80:43:df:ff:3d:bd:0c:8a:08:bc:d2:23:6f:
fd:47:59:93:72:4d:b4:c7:63:d1:46:41:65:dc:9b:74:9b:c1:
4d:37:43:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:05 2024 by rpki-client on console-fra.rpki-client.org