Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/bMfRABHGoDu-iDbH2_dYsI-6YmY.roa
File: bMfRABHGoDu-iDbH2_dYsI-6YmY.roa (raw, json)
Hash identifier: bXHc7Emyc87Pt659THJpFfQTsGfSd8nDs9t4YqHWAGQ=
Subject key identifier: 6C:C7:D1:00:11:C6:A0:3B:BE:88:36:C7:DB:F7:58:B0:8F:BA:62:66
Certificate issuer: /CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Certificate serial: 0187511923A93D92D172BA49C57736F79372
Authority key identifier: 4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/bMfRABHGoDu-iDbH2_dYsI-6YmY.roa
Signing time: Wed 05 Apr 2023 11:06:54 +0000
ROA not before: Wed 05 Apr 2023 11:06:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210820
IP address blocks: 193.134.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 May 2023 11:35:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:51:19:23:a9:3d:92:d1:72:ba:49:c5:77:36:f7:93:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4acef45fbb0f26930aeb833cf79fc41e22ca9235
Validity
Not Before: Apr 5 11:06:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cc7d10011c6a03bbe8836c7dbf758b08fba6266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8f:23:a3:bc:76:fd:bd:d3:0a:63:01:2d:40:
d2:34:21:ba:11:8c:70:eb:03:23:83:3c:cb:c0:7a:
a7:b7:56:3a:6a:93:fe:f3:00:73:89:56:44:22:0b:
4c:d1:37:62:90:32:06:78:19:90:19:93:1b:97:1f:
88:6b:c4:a8:1e:13:9c:05:f9:83:01:a5:8d:5e:01:
d4:5c:53:a0:b5:90:79:40:87:32:92:c2:f2:61:8f:
3b:02:98:17:1e:ad:4b:b6:b6:fd:0a:6e:a6:cb:9b:
81:82:f7:b2:75:49:92:b0:c9:c5:ee:79:41:ce:48:
65:c4:9f:d6:b5:09:6e:5c:9c:b5:f5:ef:34:72:cc:
11:fd:2c:52:cb:74:0b:16:4b:59:8f:af:47:d5:c4:
56:09:6c:45:11:01:66:42:f6:b9:c0:01:12:56:63:
03:3a:c8:ad:97:c3:f4:a9:ff:0e:15:65:84:b8:a6:
7b:a2:fb:fa:bc:75:a1:92:c1:f7:1f:b4:7f:6f:77:
ed:96:91:5e:e0:ba:79:3e:1b:3a:90:68:59:67:79:
3f:c2:f9:d9:83:13:e4:44:cd:fa:8f:e1:57:04:1e:
e4:1d:02:e0:fc:28:93:5e:f0:86:98:7c:90:3d:d6:
06:6d:55:31:4f:6f:d8:0f:62:a8:64:0d:ee:2a:99:
35:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C7:D1:00:11:C6:A0:3B:BE:88:36:C7:DB:F7:58:B0:8F:BA:62:66
X509v3 Authority Key Identifier:
keyid:4A:CE:F4:5F:BB:0F:26:93:0A:EB:83:3C:F7:9F:C4:1E:22:CA:92:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ss70X7sPJpMK64M895_EHiLKkjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/bMfRABHGoDu-iDbH2_dYsI-6YmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/97fb36-ea9b-43f4-aad5-06f7290dc44a/1/Ss70X7sPJpMK64M895_EHiLKkjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.101.0/24
Signature Algorithm: sha256WithRSAEncryption
38:69:a0:fa:41:25:58:c4:d8:d9:cd:26:81:0c:87:52:81:82:
f1:9f:68:94:1c:12:b4:ff:4d:2d:75:2f:b0:bf:d6:33:50:35:
e2:d6:fb:b1:99:b5:4e:a9:78:ac:2b:df:07:da:3a:6b:a2:e8:
03:db:2b:e9:3f:1f:37:1d:2b:e8:f4:47:32:25:d8:aa:20:7d:
47:3a:b5:20:ae:0d:d5:db:e1:82:18:63:5b:92:37:ae:f8:6d:
a4:32:4f:e3:c0:7f:e7:90:1c:97:08:1f:35:23:aa:98:c2:3d:
41:7a:23:bf:91:76:ba:7f:2f:46:4f:01:05:42:67:1a:db:1e:
33:03:90:d0:1b:58:de:80:d0:19:7b:8d:dd:8a:01:b6:b5:b4:
05:44:ed:7e:9e:36:c0:82:0f:d8:39:1e:8f:bd:d4:d4:e2:b7:
78:e6:66:bd:87:7d:5a:62:b5:7e:cc:e2:eb:88:4f:af:69:26:
e3:e9:fb:e0:d8:49:fb:b9:44:61:7d:5b:ed:52:d1:a3:47:24:
ea:c3:51:64:fc:35:aa:eb:95:03:be:32:61:f0:0e:96:73:87:
93:29:43:ea:22:af:9d:cf:4a:55:be:45:fc:a2:95:62:4f:f3:
be:2d:74:27:a3:69:51:fa:aa:6b:78:bf:8f:45:55:86:85:db:
fa:f5:44:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:15 2024 by rpki-client on console-fra.rpki-client.org