Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/B-OXL4H8G1sG9_kXh3Xn-oIRlDw.roa
File: B-OXL4H8G1sG9_kXh3Xn-oIRlDw.roa (raw, json)
Hash identifier: pL4Y/347a54MLK0T/tnZjpXTPeC/rzAkakdTkLzwQwE=
Subject key identifier: 07:E3:97:2F:81:FC:1B:5B:06:F7:F9:17:87:75:E7:FA:82:11:94:3C
Certificate issuer: /CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Certificate serial: 01856B2E9F58B61224E9039333D6E9031779
Authority key identifier: 2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/B-OXL4H8G1sG9_kXh3Xn-oIRlDw.roa
Signing time: Sun 01 Jan 2023 02:34:55 +0000
ROA not before: Sun 01 Jan 2023 02:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35262
IP address blocks: 193.27.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:2e:9f:58:b6:12:24:e9:03:93:33:d6:e9:03:17:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d7f3ddca0cb38ec7b08c69029e20f52dc408f17
Validity
Not Before: Jan 1 02:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07e3972f81fc1b5b06f7f9178775e7fa8211943c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:93:40:5a:13:b8:22:23:98:a7:e1:b6:8b:d7:
43:e7:46:91:d3:5f:62:5c:d5:06:56:3c:a2:d4:32:
5e:8e:03:c4:22:ea:2c:d9:49:25:69:82:e0:6b:c8:
7a:77:35:9a:cc:61:26:c8:26:50:bd:ab:c7:92:6e:
a2:23:a2:16:89:fc:ed:4f:94:14:cd:d4:cd:cf:e2:
b6:f8:43:75:1d:39:eb:e2:84:fb:9b:01:bd:23:a9:
fd:a5:33:93:fb:b3:7d:b7:8c:64:19:28:30:9d:99:
37:86:52:5e:e2:52:ee:90:33:7a:14:26:98:23:ec:
13:db:6c:2d:a7:9c:93:d1:ad:23:5e:68:46:8e:85:
0b:a7:83:c7:c1:b0:9b:ff:1d:af:1f:bd:ac:75:b9:
cc:e6:ae:1f:bd:b2:33:a3:3f:02:16:7c:45:8f:40:
64:98:7a:84:c3:23:00:3c:d9:d5:70:c9:4b:c9:cf:
66:0f:04:01:c9:ee:76:03:47:9d:15:b8:c6:08:4b:
f0:02:c8:92:8d:73:9d:38:f3:39:c8:14:8b:38:e1:
8f:74:f5:4e:5d:58:89:57:f6:24:b5:e7:58:b0:1c:
0f:e3:9e:ee:00:99:8d:11:6c:8f:9b:1b:2f:81:c8:
da:8c:a4:14:fb:db:97:77:35:c3:28:fe:29:0e:cd:
96:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E3:97:2F:81:FC:1B:5B:06:F7:F9:17:87:75:E7:FA:82:11:94:3C
X509v3 Authority Key Identifier:
keyid:2D:7F:3D:DC:A0:CB:38:EC:7B:08:C6:90:29:E2:0F:52:DC:40:8F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LX893KDLOOx7CMaQKeIPUtxAjxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/B-OXL4H8G1sG9_kXh3Xn-oIRlDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/c75af4-9d26-4290-b027-a56c52be198c/1/LX893KDLOOx7CMaQKeIPUtxAjxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.1.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ea:33:ca:b5:a9:76:a7:64:79:5d:15:d3:fb:41:4f:34:31:
6f:38:63:4b:c0:30:02:3a:2f:74:ce:46:54:df:22:f6:85:58:
eb:87:84:73:e8:ab:be:f4:d0:a4:1c:52:fc:38:69:d7:26:9a:
c3:82:12:bd:01:a6:96:6b:bb:ba:4c:7a:d3:5a:61:fb:31:b9:
ae:44:fa:4a:6f:b9:37:b0:01:fb:cc:22:3e:82:65:f8:80:f8:
43:3a:13:90:5d:96:f1:53:26:4a:bf:f5:20:35:2d:f4:3b:35:
e4:5c:87:a3:fc:cd:f8:38:d0:5d:11:d3:50:ca:8c:05:a1:e6:
bd:62:1e:33:e2:4a:7e:2e:62:e2:61:dc:86:05:ce:cc:58:4a:
08:dc:14:7a:49:2a:58:6a:93:4c:29:7a:16:a7:07:b7:12:a7:
a8:ed:06:96:71:bd:40:f5:e7:cd:8f:2f:aa:df:a6:70:28:4a:
d3:b9:5b:ca:ab:eb:25:b9:ad:72:ab:0f:04:4c:82:eb:5a:23:
b7:8d:88:fb:9e:29:1d:81:89:e7:2a:18:e6:08:36:4c:c6:66:
7d:c7:64:62:0d:63:4d:4a:07:e8:14:ab:ae:aa:f3:f6:5d:8b:
90:34:e2:92:72:91:36:d0:90:25:23:cf:97:c3:31:b6:9c:48:
01:2a:a7:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:15 2024 by rpki-client on console-fra.rpki-client.org