Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/a821df-6b49-4489-8a77-d1246cc2c34e/1/dq33NBKWeNO2HvfWFvaGW7VHD1c.roa
File: dq33NBKWeNO2HvfWFvaGW7VHD1c.roa (raw, json)
Hash identifier: ml4ggN3smadvoASIWMjzh/2WUjVdluHe/3E5ccula1k=
Subject key identifier: 76:AD:F7:34:12:96:78:D3:B6:1E:F7:D6:16:F6:86:5B:B5:47:0F:57
Certificate issuer: /CN=0e0134fafba72e06339cadc55d5f13bae482b12d
Certificate serial: 01856F26C225C3D3995A504BCC461554AB1E
Authority key identifier: 0E:01:34:FA:FB:A7:2E:06:33:9C:AD:C5:5D:5F:13:BA:E4:82:B1:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgE0-vunLgYznK3FXV8TuuSCsS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/a821df-6b49-4489-8a77-d1246cc2c34e/1/dq33NBKWeNO2HvfWFvaGW7VHD1c.roa
Signing time: Sun 01 Jan 2023 21:04:49 +0000
ROA not before: Sun 01 Jan 2023 21:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28878
IP address blocks: 193.30.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:c2:25:c3:d3:99:5a:50:4b:cc:46:15:54:ab:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0134fafba72e06339cadc55d5f13bae482b12d
Validity
Not Before: Jan 1 21:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76adf734129678d3b61ef7d616f6865bb5470f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0a:e3:83:66:4b:9a:ef:77:12:09:00:4c:8d:
e8:57:f3:d1:8a:d0:c6:e0:21:5a:9b:fe:59:f8:9f:
2d:99:f0:51:76:17:49:93:71:e8:15:4c:25:a9:4d:
70:d4:48:55:f1:57:7e:da:e5:b0:82:be:40:b5:65:
af:ab:98:3e:d6:78:a1:42:b3:81:95:79:ad:d6:33:
b7:0d:9a:2d:56:70:bd:9b:5c:8a:b3:08:89:e7:aa:
8a:4d:70:de:ac:73:80:c1:5c:67:a8:2f:37:fe:61:
35:1b:f7:e6:a8:8f:2e:6c:7e:c7:11:16:2d:1a:c6:
d9:46:66:d9:66:2e:b8:f3:65:5d:47:87:a6:09:2c:
ca:83:b2:b2:b7:68:91:0f:4d:55:f6:1a:80:02:3a:
fa:01:b2:78:fc:65:b5:be:bf:b2:e1:48:45:f0:96:
1a:da:97:79:0f:3e:b5:be:3f:18:d3:32:4b:58:50:
ac:a4:12:16:27:2e:b0:e7:74:97:ed:c4:27:8e:fa:
4f:12:76:b0:df:8d:ff:94:43:f7:85:bb:58:aa:42:
40:79:15:75:f3:72:7e:7b:12:aa:36:d3:1a:4d:1f:
13:01:99:02:2d:3c:cd:eb:9a:37:e2:16:0a:19:cd:
8b:33:4d:48:05:ef:ce:88:c3:20:20:76:ba:c6:7d:
2e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AD:F7:34:12:96:78:D3:B6:1E:F7:D6:16:F6:86:5B:B5:47:0F:57
X509v3 Authority Key Identifier:
keyid:0E:01:34:FA:FB:A7:2E:06:33:9C:AD:C5:5D:5F:13:BA:E4:82:B1:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgE0-vunLgYznK3FXV8TuuSCsS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a821df-6b49-4489-8a77-d1246cc2c34e/1/dq33NBKWeNO2HvfWFvaGW7VHD1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/a821df-6b49-4489-8a77-d1246cc2c34e/1/DgE0-vunLgYznK3FXV8TuuSCsS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.170.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:7d:40:fa:13:68:c3:4d:2b:57:f6:a3:63:14:7f:7b:2a:f4:
1b:e1:df:00:90:42:16:7d:72:b3:15:8a:e0:32:be:1b:6f:4d:
56:17:19:4f:67:da:37:21:2b:e7:ed:c1:24:11:3e:ac:26:1a:
85:70:bb:9e:0e:d0:7d:d3:1e:c4:cb:12:e8:15:9a:9a:f0:fe:
d6:7a:72:29:80:cd:26:73:01:b3:ed:72:8d:91:01:4f:d4:9a:
23:e4:f9:c6:23:dc:95:74:9d:48:50:1c:88:84:43:9c:ba:07:
d3:12:a2:3d:e3:25:e4:bb:bb:7f:09:4a:d8:a2:3a:29:a0:ae:
da:45:8a:7e:3b:3c:2e:0e:a1:b0:d1:9c:31:b0:73:6d:65:50:
c6:9b:dc:41:e3:7a:ee:49:79:7b:55:8d:56:a4:2a:a5:1f:fa:
77:91:1d:d3:32:57:22:37:db:f5:ee:56:02:25:33:e0:6b:3f:
0d:90:6d:57:cf:4e:39:13:ae:b5:2b:61:fd:b1:06:2c:e1:57:
bc:bd:b0:e5:88:ed:6a:49:ef:c9:bd:21:ec:96:94:6e:27:c0:
e6:e0:bf:93:6f:64:5b:1a:59:e3:86:30:3e:50:d8:b8:e0:89:
62:59:99:f6:1b:46:f9:9a:29:d6:be:11:f1:45:8b:61:9c:2e:
ce:be:0a:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:00 2024 by rpki-client on console-ams.rpki-client.org