Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/4LwtgB3VdSVuU37_fYE9hjlRo8Q.roa
File: 4LwtgB3VdSVuU37_fYE9hjlRo8Q.roa (raw, json)
Hash identifier: SXbsfDWAy0y8d/CQM+m8a4zjggVGdf3yDjmZTuC0EH0=
Subject key identifier: E0:BC:2D:80:1D:D5:75:25:6E:53:7E:FF:7D:81:3D:86:39:51:A3:C4
Certificate issuer: /CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Certificate serial: 01867F210B43F4E3F770B1970362047C594C
Authority key identifier: 67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/4LwtgB3VdSVuU37_fYE9hjlRo8Q.roa
Signing time: Thu 23 Feb 2023 16:35:17 +0000
ROA not before: Thu 23 Feb 2023 16:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199785
IP address blocks: 193.43.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:21:0b:43:f4:e3:f7:70:b1:97:03:62:04:7c:59:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67955b1aa1c0284d2843b96f26c5fe751e66946f
Validity
Not Before: Feb 23 16:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0bc2d801dd575256e537eff7d813d863951a3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:96:06:8a:ef:ba:18:a2:22:ad:a5:d7:76:90:
dd:aa:b5:15:78:3c:af:07:cd:3f:34:2c:89:fd:40:
d1:f0:50:39:95:48:10:5e:73:5f:77:db:3e:fd:97:
63:a8:64:cf:00:26:9c:0f:64:d6:e1:53:ea:f7:3c:
27:c1:0e:c1:2d:f2:d3:22:d7:76:c8:3b:44:9d:10:
d1:b6:e6:7e:d1:a3:42:11:a5:b7:db:9b:a4:f4:e3:
d6:b4:e9:c9:80:b6:a5:13:f6:af:3f:bc:56:e5:c2:
b3:ba:93:ab:21:91:20:93:1b:2a:be:a7:dd:37:ec:
10:b6:ee:ee:d0:32:21:77:3d:f3:de:e0:f7:4f:de:
67:d6:2c:86:77:4c:a8:b8:f1:9d:d4:3d:ea:d2:ef:
a7:d8:53:81:a9:b5:7f:7d:88:55:db:4e:0c:ad:3f:
84:f0:ab:7c:b9:32:17:33:20:5c:5e:2e:ba:0d:80:
1e:cb:a0:1d:68:bf:ae:47:0a:8d:e8:83:92:8f:d0:
02:88:e8:7b:7f:ca:f8:11:58:eb:5c:96:6c:e6:38:
0f:f9:af:b7:8d:76:8b:11:43:90:12:2c:fd:63:81:
2a:ae:32:32:e0:05:ce:63:12:70:2c:bc:df:44:f0:
25:78:3c:ed:8e:b2:26:f1:60:b2:f0:70:4c:4e:10:
0e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BC:2D:80:1D:D5:75:25:6E:53:7E:FF:7D:81:3D:86:39:51:A3:C4
X509v3 Authority Key Identifier:
keyid:67:95:5B:1A:A1:C0:28:4D:28:43:B9:6F:26:C5:FE:75:1E:66:94:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/4LwtgB3VdSVuU37_fYE9hjlRo8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/631925-6b0e-4ea5-91d7-08ad94101d7e/1/Z5VbGqHAKE0oQ7lvJsX-dR5mlG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.249.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7a:cd:68:97:d1:91:da:1d:16:e4:dd:5f:d0:66:fe:32:b4:
32:8f:f5:5b:58:15:87:75:d7:b4:8d:0f:1e:58:6d:aa:e6:b9:
b5:d3:2a:3a:be:b9:b5:aa:36:73:e4:37:6d:2f:82:4b:64:88:
99:22:5d:94:35:d2:eb:9f:67:d2:5e:11:87:56:fe:08:58:a3:
38:e1:da:58:ca:6c:3f:11:8b:04:4c:a6:78:bd:f8:9c:57:67:
66:5a:d9:63:3e:70:c1:86:76:dd:6b:1c:19:83:47:90:24:b5:
ae:82:5d:c4:46:04:84:aa:28:58:76:a0:6a:3c:f7:09:91:de:
fe:fb:a9:78:d5:e4:09:ed:42:02:c1:ff:85:4b:34:a1:55:7c:
ea:21:65:43:1c:8a:20:69:e8:1d:55:06:66:72:b1:98:aa:6d:
b0:ca:de:74:53:82:91:17:3d:8c:e0:a9:0a:e9:65:9a:ab:8a:
39:77:9a:4a:3f:29:63:0a:7b:56:cd:9c:44:51:3a:a3:87:17:
dc:98:e9:ee:5f:5f:dc:dd:7e:90:47:95:23:6b:36:d4:bc:3b:
ce:b5:29:b2:12:e2:bc:9e:c6:67:07:6d:46:37:33:76:84:7a:
04:02:0d:44:3a:d7:7b:1a:04:3a:7f:e7:96:c4:72:e6:c4:22:
a3:0c:21:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 18 00:41:34 2023 by rpki-client on console-ams.rpki-client.org