Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/2XuARCdKmao3vp4nJUdeoZcoJyg.roa
File: 2XuARCdKmao3vp4nJUdeoZcoJyg.roa (raw, json)
Hash identifier: QOjxKyZm+7BVFWZMUcX0QHcgjEamkXQrmKfdbqUjv0k=
Subject key identifier: D9:7B:80:44:27:4A:99:AA:37:BE:9E:27:25:47:5E:A1:97:28:27:28
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018AEF2BE50485CA2DB195DC42835EEA0CD3
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/2XuARCdKmao3vp4nJUdeoZcoJyg.roa
Signing time: Mon 02 Oct 2023 06:55:45 +0000
ROA not before: Mon 02 Oct 2023 06:55:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.37.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:2b:e5:04:85:ca:2d:b1:95:dc:42:83:5e:ea:0c:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Oct 2 06:55:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d97b8044274a99aa37be9e2725475ea197282728
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:00:b1:61:f8:78:2a:ec:31:66:bd:00:79:a5:
48:d6:15:27:8f:d8:09:38:d3:9c:52:4b:26:ed:6a:
c7:11:5d:8e:0f:28:71:33:d3:1c:ce:74:5d:c7:12:
ae:9d:55:13:2d:55:fd:40:d0:63:c8:09:f6:da:9a:
e3:60:ca:67:05:c1:d8:9b:81:c9:62:76:2f:80:25:
28:c5:a7:12:0e:ee:1b:23:54:33:9f:51:2b:9d:fd:
63:42:90:f5:d0:4e:a6:4d:c7:63:14:1b:98:17:69:
49:d7:ce:fc:82:ce:8e:48:0e:50:d2:b0:01:75:34:
78:6d:66:87:90:71:14:26:20:ef:a8:43:f7:05:95:
95:4b:a6:c6:47:60:f1:43:bf:61:e7:ed:20:66:3c:
b7:ac:e3:ad:f4:71:e5:fc:b8:15:be:36:27:40:77:
db:a0:13:33:89:3c:e8:22:d5:e7:c0:61:81:48:94:
a5:2a:3a:f6:de:a0:47:e8:87:6a:75:2a:b1:dd:e9:
24:bd:ae:7f:da:f6:3b:d9:36:17:71:5c:83:dd:49:
a7:41:82:a1:9e:df:1a:92:fa:07:0f:a6:a6:43:83:
99:e8:63:fa:df:22:0e:d2:6a:61:71:9b:bf:75:f9:
c7:4f:4a:2b:ab:6d:d0:21:04:b3:51:a4:02:8b:cc:
ec:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7B:80:44:27:4A:99:AA:37:BE:9E:27:25:47:5E:A1:97:28:27:28
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/2XuARCdKmao3vp4nJUdeoZcoJyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.248.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:a7:5e:c8:29:b7:06:7c:11:6d:6c:cf:09:43:21:c2:fe:ab:
f4:f2:9a:fc:0d:67:42:38:53:6c:6d:9f:ec:18:18:c0:d5:d5:
27:1c:f7:2f:78:28:82:16:19:f1:e3:83:56:33:99:b6:91:70:
9b:1f:29:9c:4e:85:8d:2d:c3:71:54:ff:96:54:f5:83:e1:ae:
f8:5a:2c:8c:9b:a8:8e:57:f0:bf:48:02:d1:c3:da:01:05:2d:
48:70:7c:c4:13:dd:ce:b6:ea:7f:36:b0:49:56:17:81:18:bb:
a7:7d:37:56:19:0d:d3:07:07:cb:32:d8:09:81:5c:41:72:97:
13:9d:a8:65:96:42:e2:d3:80:e4:83:cf:a9:66:5f:6d:a3:29:
e5:9d:db:02:ae:8d:86:90:3a:33:7e:4d:ff:e7:30:96:06:01:
3d:aa:18:b9:e3:d5:4b:2c:b0:0f:86:6f:3c:bf:cf:3c:ea:48:
a0:80:af:c4:61:15:37:dc:97:42:e6:62:0d:e6:5c:1e:4b:ae:
c8:a0:9d:18:cb:5f:81:26:cc:fa:f6:96:78:b6:5a:5d:8d:7d:
4b:e7:75:5b:9f:8c:c1:fc:55:a2:a9:80:9d:91:94:0b:0a:51:
f5:2a:c2:db:65:80:37:b8:c2:94:ef:67:be:7e:98:d4:41:1a:
2b:b4:c7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 13:08:31 2023 by rpki-client on console-ams.rpki-client.org