Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/m3xr1BLi-zSFrSP89fvSZ5xRfnk.roa
File: m3xr1BLi-zSFrSP89fvSZ5xRfnk.roa (raw, json)
Hash identifier: szDB6fy9SzjVi8N6ZCjyiOfT9AWkeFJFwD0mwdDzgjM=
Subject key identifier: 9B:7C:6B:D4:12:E2:FB:34:85:AD:23:FC:F5:FB:D2:67:9C:51:7E:79
Certificate issuer: /CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Certificate serial: 01856D5D1F58C7CA0FB925280B880F02BA96
Authority key identifier: B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/m3xr1BLi-zSFrSP89fvSZ5xRfnk.roa
Signing time: Sun 01 Jan 2023 12:44:57 +0000
ROA not before: Sun 01 Jan 2023 12:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17905
IP address blocks: 193.108.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:1f:58:c7:ca:0f:b9:25:28:0b:88:0f:02:ba:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53ba18d5ceb8e794c8139ce02a791b8501825ef
Validity
Not Before: Jan 1 12:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b7c6bd412e2fb3485ad23fcf5fbd2679c517e79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e2:11:49:88:27:e6:66:9c:eb:22:e3:ec:68:
04:43:dd:fb:a5:e3:bf:0b:ea:eb:d2:d4:a2:be:7c:
0c:48:29:d2:1c:37:f4:d2:a1:81:06:75:10:24:31:
e9:e4:11:23:8a:03:03:91:2a:f1:10:ae:41:52:50:
44:27:a0:8f:eb:18:c5:ae:f0:2a:83:5b:97:05:be:
64:58:66:48:27:39:65:b3:6f:3b:6e:78:3c:75:cc:
15:e3:0d:a8:96:aa:0d:91:40:79:39:a2:a5:b7:03:
c5:02:c2:49:29:18:4e:89:75:78:a0:73:87:02:85:
0c:89:40:c2:2a:7a:90:51:55:e1:57:7e:8a:1d:10:
86:a2:bf:76:c3:8b:78:98:79:7f:ae:07:3a:7f:31:
48:9e:af:6b:1e:7f:85:ab:97:7a:50:ca:27:64:0e:
1f:d7:3d:ef:e5:0b:92:a1:78:bf:a6:2e:bb:90:6a:
e6:ee:c4:6f:b6:60:6c:11:e4:91:6b:c9:95:e8:05:
9e:01:28:6b:40:3a:4d:56:22:9f:34:ee:9d:29:6f:
af:ac:56:cb:45:29:c6:68:c9:9f:b0:3b:f9:1c:bf:
dc:ec:b5:77:53:c6:33:62:82:79:f6:66:49:32:fa:
eb:8a:47:cd:d7:a3:37:e6:6a:af:1c:e7:ba:06:69:
a6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:7C:6B:D4:12:E2:FB:34:85:AD:23:FC:F5:FB:D2:67:9C:51:7E:79
X509v3 Authority Key Identifier:
keyid:B5:3B:A1:8D:5C:EB:8E:79:4C:81:39:CE:02:A7:91:B8:50:18:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTuhjVzrjnlMgTnOAqeRuFAYJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/m3xr1BLi-zSFrSP89fvSZ5xRfnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e2510d-e573-45d3-9d20-754b60c5b568/1/tTuhjVzrjnlMgTnOAqeRuFAYJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.157.0/24
Signature Algorithm: sha256WithRSAEncryption
59:32:f6:3e:b1:79:27:79:26:21:1a:ae:66:62:6a:cc:d8:50:
17:2a:35:e2:2e:90:e2:54:93:c2:90:aa:f6:49:76:c8:c1:ab:
46:d7:ef:e1:a5:d3:7c:60:46:e3:da:0d:ab:44:ab:90:75:2a:
ec:37:22:69:19:f6:46:d5:87:48:8b:a6:c4:df:3d:d8:b1:85:
65:4f:86:2b:60:6d:87:13:5b:76:5e:a2:b4:d7:9f:3c:33:57:
da:8a:99:26:84:68:38:01:92:b2:45:f1:b1:00:ac:ab:f5:0f:
b2:4d:71:cd:3a:30:9a:33:76:58:27:1c:50:ca:d5:60:d0:70:
9e:9e:55:d7:0b:ed:60:ba:83:e7:59:24:75:d0:96:b5:6c:9f:
ab:81:a3:5b:08:3d:42:dc:f1:13:73:8b:7f:c8:32:48:23:74:
01:31:4d:d2:4b:2b:ba:41:0c:72:7d:8c:ca:c8:8c:8c:16:10:
f3:f1:27:6e:4e:38:68:fb:6f:58:7f:4f:1e:c6:1b:7f:e6:74:
78:c8:63:74:54:d6:d4:aa:db:b9:3f:da:37:6e:be:c4:7c:28:
11:15:b6:65:1e:73:cf:6a:e9:35:6f:68:af:38:b5:53:59:66:
09:1d:2e:5d:e8:6c:f4:3e:58:7f:a7:6b:e8:f8:c9:2c:9b:bb:
ea:e5:a7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:31 2024 by rpki-client on console-ams.rpki-client.org