Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/0e83e8-151d-4f80-b61d-17e0d24c32c1/1/Aq-qJfXk4qNm6IncZi85IXqBj9o.roa
File: Aq-qJfXk4qNm6IncZi85IXqBj9o.roa (raw, json)
Hash identifier: HdfuECPYsxutvRrb4bW5wdrCYAq0MYvq0P4I8yblPz4=
Subject key identifier: 02:AF:AA:25:F5:E4:E2:A3:66:E8:89:DC:66:2F:39:21:7A:81:8F:DA
Certificate issuer: /CN=712d0af87b0662f31e483e01efefc02a74326355
Certificate serial: 01919342ED85696D4E2DBC5933299796F0FE
Authority key identifier: 71:2D:0A:F8:7B:06:62:F3:1E:48:3E:01:EF:EF:C0:2A:74:32:63:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS0K-HsGYvMeSD4B7-_AKnQyY1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/0e83e8-151d-4f80-b61d-17e0d24c32c1/1/Aq-qJfXk4qNm6IncZi85IXqBj9o.roa
Signing time: Tue 27 Aug 2024 09:55:22 +0000
ROA not before: Tue 27 Aug 2024 09:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43451
IP address blocks: 193.93.72.0/22 maxlen: 22
193.93.72.0/23 maxlen: 23
193.93.74.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 09 Oct 2024 07:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:93:42:ed:85:69:6d:4e:2d:bc:59:33:29:97:96:f0:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712d0af87b0662f31e483e01efefc02a74326355
Validity
Not Before: Aug 27 09:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02afaa25f5e4e2a366e889dc662f39217a818fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ed:16:6d:be:a1:8a:76:dd:dd:8b:5c:bf:a7:
10:7d:c3:ad:3f:f6:ba:d5:2c:8b:2c:8e:97:b8:24:
bf:c1:74:ae:e9:6f:f0:fd:7e:1c:3c:f4:10:57:af:
34:41:c1:5c:9d:49:08:a1:39:53:27:09:3d:0b:50:
79:f9:d8:3c:10:fc:62:93:f7:22:1a:44:8c:98:1d:
e9:8d:1b:67:5e:cd:2f:89:12:70:46:89:80:8d:bc:
0b:10:ad:26:ef:9e:d2:ea:a5:13:aa:c4:aa:7f:2f:
8a:90:bd:dc:85:89:09:ba:5f:d4:9c:14:b3:10:39:
3f:8f:b4:e7:13:2f:77:04:8a:47:3d:99:f2:97:05:
a6:4c:11:ee:ae:f3:b2:e1:e0:b3:ac:3d:18:f7:72:
b5:db:17:dc:f3:4c:0c:f0:7b:9b:3f:46:1e:84:ef:
87:65:ab:30:a1:dd:44:6d:33:99:27:aa:ea:8a:b5:
0b:2f:ad:37:70:22:29:73:55:90:88:c9:35:77:03:
81:5d:20:9f:0c:22:89:4a:9f:fa:2c:fe:82:92:fd:
97:b7:8f:0d:be:80:95:1a:ea:fc:fd:8a:a1:f3:d7:
a8:30:96:50:aa:1e:1f:dc:1d:57:48:e0:e4:c9:a1:
ab:22:38:f5:7b:72:e0:70:0c:af:7f:3a:b2:d2:66:
7b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:AF:AA:25:F5:E4:E2:A3:66:E8:89:DC:66:2F:39:21:7A:81:8F:DA
X509v3 Authority Key Identifier:
keyid:71:2D:0A:F8:7B:06:62:F3:1E:48:3E:01:EF:EF:C0:2A:74:32:63:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS0K-HsGYvMeSD4B7-_AKnQyY1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/0e83e8-151d-4f80-b61d-17e0d24c32c1/1/Aq-qJfXk4qNm6IncZi85IXqBj9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/0e83e8-151d-4f80-b61d-17e0d24c32c1/1/cS0K-HsGYvMeSD4B7-_AKnQyY1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.72.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:02:8b:04:8e:20:65:6c:ca:06:2c:79:34:fa:dd:c5:cd:74:
a2:17:6a:d5:73:4a:91:e8:50:e8:75:20:d5:b5:64:0d:67:24:
84:eb:c5:50:42:25:06:f5:dc:6b:27:53:40:6e:9e:dd:5b:de:
5b:85:05:43:b6:f3:40:ea:42:53:c9:e6:24:0b:de:7a:be:e0:
89:34:23:1f:2b:60:98:f9:49:5f:ba:35:24:3a:a1:96:0b:77:
55:d8:dc:23:71:32:9e:f2:cc:5f:13:4e:6c:ba:f3:cd:ca:99:
65:ae:58:fd:dd:33:52:a8:9c:55:8d:30:07:0e:c8:11:ce:1c:
f4:83:71:66:f3:c9:f1:0c:fa:5f:6a:65:e4:71:e0:22:95:b4:
3a:36:f1:96:1d:04:68:76:13:5a:3f:e1:32:63:70:ff:1d:fa:
59:01:f0:11:3c:20:2d:a4:0b:3c:d4:47:75:39:26:ed:6d:e8:
9f:33:7c:05:11:a9:0d:b1:32:65:66:12:c8:59:79:6c:62:52:
8a:65:dc:55:cf:c8:6e:c4:f1:e5:dc:12:74:f0:b7:aa:c6:f9:
32:95:e6:2a:51:7a:9f:b8:8d:7a:be:fb:d1:4f:e9:ff:e6:32:
c4:01:55:4f:71:53:52:d9:85:6a:a4:bd:9e:e4:b6:3b:84:f3:
eb:01:37:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 9 09:56:46 2024 by rpki-client on console-fra.rpki-client.org