Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/fb3e98-d00f-45dd-bd19-eff8b95d20c5/1/aU-B3mL9XfoEPgL8cuYh9ezKgZ0.roa
File: aU-B3mL9XfoEPgL8cuYh9ezKgZ0.roa (raw, json)
Hash identifier: 4OB+QNYwLWfRBSKLv+Pj+lWzIPpWL0aLWzMCWoHX3pQ=
Subject key identifier: 69:4F:81:DE:62:FD:5D:FA:04:3E:02:FC:72:E6:21:F5:EC:CA:81:9D
Certificate issuer: /CN=f52e9a043f3128336e3c97c2542574c8ad929ac9
Certificate serial: 018BF61013D724D4B11A05CBD889572B6C70
Authority key identifier: F5:2E:9A:04:3F:31:28:33:6E:3C:97:C2:54:25:74:C8:AD:92:9A:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9S6aBD8xKDNuPJfCVCV0yK2Smsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/fb3e98-d00f-45dd-bd19-eff8b95d20c5/1/aU-B3mL9XfoEPgL8cuYh9ezKgZ0.roa
Signing time: Wed 22 Nov 2023 08:05:30 +0000
ROA not before: Wed 22 Nov 2023 08:05:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 193.200.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:10:13:d7:24:d4:b1:1a:05:cb:d8:89:57:2b:6c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f52e9a043f3128336e3c97c2542574c8ad929ac9
Validity
Not Before: Nov 22 08:05:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=694f81de62fd5dfa043e02fc72e621f5ecca819d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:79:04:97:fe:ec:9f:03:5d:17:da:df:e5:24:
af:74:14:14:1b:b7:5c:f7:24:40:22:96:07:28:b0:
c4:52:8d:a7:74:8c:4c:fd:10:9a:66:23:bd:3d:0d:
17:9f:72:88:25:4f:80:ca:0d:74:3a:11:85:15:dd:
27:ab:54:1a:ff:e3:2e:71:99:92:17:13:64:45:dd:
7c:7f:4f:7a:c5:ad:d0:b0:71:1f:13:e7:40:67:6c:
00:fa:38:b2:92:73:6f:6c:95:8c:49:eb:3d:a1:21:
f2:d3:5e:fb:24:23:2f:9c:a1:b4:f9:57:89:82:a9:
26:cb:ac:59:81:0f:b7:b1:c2:d1:33:27:41:ed:52:
de:48:3f:19:24:96:5b:71:13:be:d8:fa:ed:d4:21:
87:8f:6a:ea:52:99:1e:27:28:c0:19:9f:6b:e9:24:
76:4f:76:3b:16:d4:fe:13:e0:04:93:92:c0:ef:8f:
2e:0a:4a:c8:48:20:6d:91:a7:b9:e5:36:97:67:61:
a7:9e:aa:f9:81:d9:81:0f:e1:b8:c7:49:00:b2:45:
96:1e:10:40:8b:d9:2a:e7:43:4d:f1:16:22:23:10:
b5:b1:ff:c7:07:16:11:49:a7:95:18:30:0c:ff:93:
23:44:3d:23:fc:45:90:3a:9f:f6:ee:97:0d:90:ea:
9c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:4F:81:DE:62:FD:5D:FA:04:3E:02:FC:72:E6:21:F5:EC:CA:81:9D
X509v3 Authority Key Identifier:
keyid:F5:2E:9A:04:3F:31:28:33:6E:3C:97:C2:54:25:74:C8:AD:92:9A:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9S6aBD8xKDNuPJfCVCV0yK2Smsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/fb3e98-d00f-45dd-bd19-eff8b95d20c5/1/aU-B3mL9XfoEPgL8cuYh9ezKgZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/fb3e98-d00f-45dd-bd19-eff8b95d20c5/1/9S6aBD8xKDNuPJfCVCV0yK2Smsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.157.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:1f:49:07:10:9a:ea:57:e4:21:13:c6:76:26:27:8f:2b:5e:
b5:b2:4e:09:fd:d9:13:df:91:33:4a:ee:72:92:52:7d:0d:12:
46:e8:fe:e1:04:2e:51:a0:68:b9:9a:de:be:4d:f6:a9:16:72:
c5:1c:be:7b:51:25:11:fa:e0:6c:e2:4c:96:55:e4:19:e6:fa:
5f:23:3e:76:2d:81:d7:35:ca:b9:67:ad:6f:71:32:de:74:51:
e2:78:dc:43:40:41:0e:06:29:e6:b5:a7:7d:39:8a:26:10:c3:
5e:53:cc:74:d0:0f:ad:6e:23:6b:a6:32:18:f8:d1:15:41:f0:
38:d7:7d:2b:fa:4d:e2:fa:4c:95:4e:9f:ff:a7:8d:8f:e2:84:
8a:a2:86:a7:3b:d8:4c:f5:87:76:57:a3:d7:7a:96:f7:96:e2:
ec:0e:76:fc:20:b8:a7:ec:50:e6:34:03:b5:24:ac:96:2e:bd:
54:a6:b7:0d:c3:b5:c3:79:00:0e:90:f9:df:04:45:3f:36:15:
60:c1:f5:d5:4e:12:f3:51:33:a9:17:17:8c:8c:a6:82:95:09:
ae:b1:8e:aa:19:36:88:dc:4d:a3:c8:95:e1:5c:b1:10:99:40:
9a:1a:74:90:0d:11:60:fb:a8:5a:04:f3:9f:fa:12:18:24:12:
66:2e:70:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:33 2024 by rpki-client on console-ams.rpki-client.org