Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/KSstIPGyaN3wvBhi3thmnhSXT0A.roa
File: KSstIPGyaN3wvBhi3thmnhSXT0A.roa (raw, json)
Hash identifier: EAgVtSLVNoXnTrZkJ0SywyOf696T45ij6tAwfrhgME8=
Subject key identifier: 29:2B:2D:20:F1:B2:68:DD:F0:BC:18:62:DE:D8:66:9E:14:97:4F:40
Certificate issuer: /CN=3c2c854011140a10947da7b53bbb350f3c54b33e
Certificate serial: 018CBD1942C981E2B2E437401935B949A55A
Authority key identifier: 3C:2C:85:40:11:14:0A:10:94:7D:A7:B5:3B:BB:35:0F:3C:54:B3:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PCyFQBEUChCUfae1O7s1DzxUsz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/KSstIPGyaN3wvBhi3thmnhSXT0A.roa
Signing time: Sat 30 Dec 2023 23:39:58 +0000
ROA not before: Sat 30 Dec 2023 23:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211010
IP address blocks: 193.35.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bd:19:42:c9:81:e2:b2:e4:37:40:19:35:b9:49:a5:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c2c854011140a10947da7b53bbb350f3c54b33e
Validity
Not Before: Dec 30 23:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=292b2d20f1b268ddf0bc1862ded8669e14974f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:60:ce:cf:af:04:8d:52:78:e5:33:6d:96:5b:
0a:d1:87:53:93:78:77:19:fa:01:af:dd:15:fb:1d:
2c:41:8b:ef:0a:0a:37:d6:08:38:9b:59:27:56:99:
16:69:6e:bc:f5:ad:a5:f3:52:ac:0e:13:f2:d3:cd:
7c:bc:2a:78:89:a0:36:f0:c2:62:ec:27:92:00:59:
45:c6:52:83:8e:f8:b8:67:2f:ed:36:e5:2f:fc:65:
3f:92:85:e2:38:57:14:a3:2f:3b:65:e6:d4:99:e6:
54:5f:5d:e5:5b:67:80:24:c2:cc:e8:4c:3d:54:cf:
0f:87:76:b3:51:d0:46:d1:65:58:93:22:a9:db:55:
c0:b5:ac:f9:35:13:f5:51:8d:db:d3:a1:6e:81:c7:
94:c7:79:00:62:d3:e2:78:8e:61:5b:b3:d2:dd:e6:
89:7a:29:e8:e3:e3:d2:e0:a9:af:09:72:01:ab:dd:
f4:ea:7e:76:ff:59:63:d1:a8:20:9e:00:58:60:c0:
d0:ad:88:35:be:0a:cd:5b:79:bd:80:c1:ae:7b:86:
1f:65:4b:4d:03:25:85:c6:f1:3b:ec:24:ce:82:59:
5d:59:9e:10:c1:76:8f:ef:68:da:62:40:c0:b7:b3:
38:90:ca:c8:3f:26:02:2d:75:df:be:85:a3:b2:b1:
5e:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2B:2D:20:F1:B2:68:DD:F0:BC:18:62:DE:D8:66:9E:14:97:4F:40
X509v3 Authority Key Identifier:
keyid:3C:2C:85:40:11:14:0A:10:94:7D:A7:B5:3B:BB:35:0F:3C:54:B3:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PCyFQBEUChCUfae1O7s1DzxUsz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/KSstIPGyaN3wvBhi3thmnhSXT0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/e0580d-048a-4e6d-bec6-b5bbd0b5e0aa/1/PCyFQBEUChCUfae1O7s1DzxUsz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.63.0/24
Signature Algorithm: sha256WithRSAEncryption
19:5b:d8:cb:3f:fd:0a:00:03:49:14:67:a6:df:8b:b0:ab:fe:
1c:b3:99:58:8b:4d:7d:f2:c1:b8:7f:b1:c2:48:af:3e:76:40:
da:0c:d2:8a:ef:c9:de:ec:93:45:8e:da:e9:bd:b1:56:05:18:
47:98:bf:16:90:e1:37:21:56:80:d1:a0:86:70:7b:c8:2d:b7:
00:e2:cb:8d:52:6f:73:dc:70:5b:71:d8:de:7a:31:f8:92:5b:
20:d8:ea:da:0e:c6:90:83:4f:55:39:1e:85:53:0b:de:2d:ee:
88:20:f7:38:29:6a:6b:a8:32:ac:0b:82:18:bc:79:d8:18:a8:
31:79:e0:14:65:31:b1:3a:64:68:4c:81:35:d5:a0:96:08:16:
51:72:70:3c:4a:02:12:38:7e:a2:e6:b0:7b:f2:c0:34:97:57:
9f:af:1d:39:b1:ee:56:4d:6b:de:44:2a:81:d0:ce:33:81:e2:
f7:a3:38:e2:f4:01:9b:3a:d7:db:75:fb:61:62:99:be:0b:8e:
db:12:85:49:bd:9a:23:38:80:14:29:97:d0:98:5a:dd:59:c7:
ac:b6:8b:9d:21:d4:db:b6:79:32:82:d9:9b:62:ff:35:6b:76:
63:82:60:cd:01:02:81:73:24:e5:89:94:7b:e3:ea:4c:dd:31:
6e:f5:b9:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:16 2024 by rpki-client on console-fra.rpki-client.org