Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/G380g2mtna01I7SYf8m0Y5Yh-r4.roa
File: G380g2mtna01I7SYf8m0Y5Yh-r4.roa (raw, json)
Hash identifier: rAZ7l4gWhn1GIMYSO7hHEshvxRGUjtEBwds/gCF+Z0E=
Subject key identifier: 1B:7F:34:83:69:AD:9D:AD:35:23:B4:98:7F:C9:B4:63:96:21:FA:BE
Certificate issuer: /CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Certificate serial: 018A229CDD61EEEFCECF292E4C842A5774E0
Authority key identifier: A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/G380g2mtna01I7SYf8m0Y5Yh-r4.roa
Signing time: Wed 23 Aug 2023 13:36:59 +0000
ROA not before: Wed 23 Aug 2023 13:36:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61977
IP address blocks: 193.0.232.0/24 maxlen: 24
2a13:1500::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:22:9c:dd:61:ee:ef:ce:cf:29:2e:4c:84:2a:57:74:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a38b176a7d92e501eedaef6c60e8ce3a68d75224
Validity
Not Before: Aug 23 13:36:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b7f348369ad9dad3523b4987fc9b4639621fabe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3b:cc:ba:ab:ef:09:46:cb:02:2b:57:99:6f:
41:de:6c:36:30:e0:fd:5c:2b:55:56:cf:46:b7:0c:
16:b8:0b:cf:1c:81:75:6d:4b:e6:12:42:a6:2e:93:
98:51:99:32:ed:a4:77:b7:27:96:39:40:00:71:e6:
50:fd:ac:cb:70:12:3e:1b:92:5b:b6:c5:c3:4d:65:
fa:6c:d2:43:30:e6:f2:02:9d:f5:bb:7d:b2:0a:ef:
99:d5:6c:db:e1:34:5f:16:f4:fb:4d:26:ec:33:4a:
14:7c:13:21:f8:3f:01:f9:7e:14:c5:36:83:9b:44:
a4:9b:44:dd:cc:c0:4f:4d:29:a5:67:a7:09:7a:26:
a5:71:8b:80:fa:87:dd:e3:ef:60:93:30:f0:1e:38:
16:d2:27:e1:26:4c:64:46:dd:1d:95:41:6d:1d:ea:
cc:d9:e3:89:dc:cc:8e:3f:7b:ba:cb:53:98:a7:b1:
42:62:f8:e9:0d:1f:a2:53:39:92:fe:10:9c:82:09:
84:9e:ad:0c:74:48:4c:0f:1d:d1:8c:74:0e:e2:8b:
ce:9e:0d:0f:e9:0c:b2:19:68:5b:8a:73:1d:47:33:
06:c7:17:62:46:42:a7:5a:f8:17:f5:52:ce:b9:3a:
e6:a0:6a:7f:ed:75:35:8a:c2:22:2b:a9:ec:43:ed:
d0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:7F:34:83:69:AD:9D:AD:35:23:B4:98:7F:C9:B4:63:96:21:FA:BE
X509v3 Authority Key Identifier:
keyid:A3:8B:17:6A:7D:92:E5:01:EE:DA:EF:6C:60:E8:CE:3A:68:D7:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4sXan2S5QHu2u9sYOjOOmjXUiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/G380g2mtna01I7SYf8m0Y5Yh-r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/8100db-443a-4c7e-bbe2-efe79c254e25/1/o4sXan2S5QHu2u9sYOjOOmjXUiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.232.0/24
IPv6:
2a13:1500::/29
Signature Algorithm: sha256WithRSAEncryption
a8:d3:80:4a:20:53:7f:00:98:d7:10:c6:96:e2:e5:88:d5:97:
46:e8:fa:3e:18:f6:35:2d:17:2a:2e:d7:98:78:21:76:a7:4a:
32:10:f2:6a:7f:ef:80:73:6f:6e:71:40:d1:cf:72:ee:5c:02:
23:e8:8d:22:e7:56:ce:0f:98:ce:64:6e:b2:c0:8d:2f:bf:fe:
3b:f9:29:6a:7f:71:51:40:c4:9f:73:0c:9b:71:67:27:e8:9a:
38:9f:6a:a9:3c:0f:09:91:76:97:7a:c1:d0:2f:28:b6:c8:e2:
af:ac:3f:17:c4:72:85:25:54:64:c2:f7:17:8f:e9:99:74:db:
69:f5:e6:c8:1a:fe:8a:ab:75:ab:d5:62:f8:90:61:5f:c8:00:
cf:b2:7b:2a:d4:92:2d:34:ce:74:ff:da:5b:70:7a:d7:84:2a:
e8:cf:c6:f3:54:32:16:9d:6f:3f:f7:cf:18:b1:45:8f:73:07:
ad:55:44:75:50:5b:67:91:e0:32:31:8f:9b:b1:7d:55:59:fb:
c6:42:99:f2:a2:70:ec:71:7e:6d:d5:5d:51:70:6e:4f:89:64:
9d:c0:5b:93:3b:95:d5:76:99:8e:91:f7:29:dc:7c:48:aa:ba:
d9:7a:49:35:83:43:45:03:6b:d9:54:01:fc:5d:3e:74:3e:aa:
44:84:e6:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:52 2024 by rpki-client on console-fra.rpki-client.org