Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/inBbL2DN7Axtc9K5vyIi8VKlSr8.roa
File: inBbL2DN7Axtc9K5vyIi8VKlSr8.roa (raw, json)
Hash identifier: NW75D3viUJ2NWtNDTMUnISVXSSvWFy7BErX+L4ehURY=
Subject key identifier: 8A:70:5B:2F:60:CD:EC:0C:6D:73:D2:B9:BF:22:22:F1:52:A5:4A:BF
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F67159A051F502066750E469930A5D9
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/inBbL2DN7Axtc9K5vyIi8VKlSr8.roa
Signing time: Sun 01 Jan 2023 22:15:04 +0000
ROA not before: Sun 01 Jan 2023 22:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212025
IP address blocks: 193.108.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:15:9a:05:1f:50:20:66:75:0e:46:99:30:a5:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a705b2f60cdec0c6d73d2b9bf2222f152a54abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8f:6e:88:fe:3a:ec:54:ae:09:f0:22:7a:a4:
fe:a5:8c:b2:b5:a6:72:9d:10:90:a5:14:2f:73:69:
3e:cd:5a:c0:38:36:d8:a5:cc:fa:15:d1:2d:e3:b4:
b9:e1:c1:a7:a8:f7:af:0f:ff:92:83:a0:a7:bf:fd:
35:ba:22:23:ba:70:86:6c:7e:16:62:9c:71:de:87:
6f:50:48:1d:3a:ef:95:b6:1c:12:a1:6d:1c:7d:1b:
b1:e0:33:5b:46:32:56:a3:09:36:2f:cd:d5:a1:81:
b4:78:20:19:71:fc:1d:bd:16:21:16:b5:48:70:58:
16:0f:04:27:93:ac:51:57:06:dd:74:c2:ac:cc:5a:
17:5f:11:fc:1d:4a:52:77:cd:67:64:48:d8:a3:f6:
4e:0c:c4:af:67:8f:66:7f:fc:5f:5b:6f:e6:0e:bd:
cf:08:b4:a9:ca:49:44:1f:6f:2a:fc:d9:a7:15:5a:
d4:c5:59:88:ed:95:08:c2:c1:85:e6:8a:64:32:97:
79:48:d7:ac:81:65:2c:b6:40:57:9a:12:9a:7b:ff:
1e:66:54:9d:c2:23:7d:93:22:0f:a4:ec:3d:99:6c:
c0:3c:4a:dc:41:86:4b:f9:c6:5e:fe:3b:68:c8:18:
90:fa:11:e5:69:fb:45:71:37:b0:81:a8:a2:1c:f0:
0d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:70:5B:2F:60:CD:EC:0C:6D:73:D2:B9:BF:22:22:F1:52:A5:4A:BF
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/inBbL2DN7Axtc9K5vyIi8VKlSr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.115.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:bd:26:3a:69:86:a8:e4:53:84:3f:9a:40:44:5a:cc:ee:47:
0f:68:05:cc:f3:11:f9:ac:d3:75:58:dd:f5:fb:67:01:df:29:
5c:4c:31:60:e6:1c:ae:42:84:02:80:a9:ee:58:2e:fc:0d:a0:
4f:61:48:ef:d6:15:07:75:ab:66:97:cc:ef:46:28:74:f0:2f:
17:62:8f:5e:56:30:d2:c4:f5:da:cb:76:4d:db:a8:c3:31:20:
a6:15:37:fb:a0:d6:5b:f8:c9:96:62:3b:38:3b:63:00:6a:c9:
b5:63:62:ca:90:57:c9:ca:8b:e6:10:13:b9:f3:3a:f3:9a:cd:
50:a1:a0:8a:f8:f8:9c:b9:eb:3b:a6:b8:2e:71:d0:4c:40:fd:
0b:10:21:0e:f7:dc:d6:a2:91:6e:26:84:cf:28:ef:68:59:9e:
f8:1d:2d:ff:ea:55:21:10:6e:4f:ef:54:d4:4c:96:a3:88:0e:
9a:61:dd:00:f4:ef:7a:ee:d1:77:1e:b5:dc:e9:25:7b:57:a7:
d9:7b:00:14:4b:1a:9d:cb:a1:37:e1:4e:d7:5e:73:50:e9:83:
ec:5a:2d:fc:d4:80:24:8e:56:da:3e:5b:e8:60:4b:0d:7c:22:
d5:b3:f3:43:ca:7e:0f:f8:77:a4:27:b3:d5:77:1b:0c:14:ef:
e3:2b:af:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:09 2023 by rpki-client on console-fra.rpki-client.org