Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/I16beG374Mh_c25zWIiGe8vQiQE.roa
File: I16beG374Mh_c25zWIiGe8vQiQE.roa (raw, json)
Hash identifier: GJ1OWBgjBsqVenpH95q9x3O5an1/vikDB9UgGmZta6I=
Subject key identifier: 23:5E:9B:78:6D:FB:E0:C8:7F:73:6E:73:58:88:86:7B:CB:D0:89:01
Certificate issuer: /CN=0dd441c3ffae829842249e944b03851081f4d9e0
Certificate serial: 01926DBA7FD1FA63FFCC9C99F3595E65BE13
Authority key identifier: 0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/I16beG374Mh_c25zWIiGe8vQiQE.roa
Signing time: Tue 08 Oct 2024 20:03:11 +0000
ROA not before: Tue 08 Oct 2024 20:03:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49127
IP address blocks: 193.23.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 16:37:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6d:ba:7f:d1:fa:63:ff:cc:9c:99:f3:59:5e:65:be:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd441c3ffae829842249e944b03851081f4d9e0
Validity
Not Before: Oct 8 20:03:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=235e9b786dfbe0c87f736e735888867bcbd08901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ee:0d:e0:69:07:4c:31:c5:d1:11:b6:70:82:
5d:94:43:ec:eb:8d:2c:d7:9a:d4:6c:c0:9d:35:3b:
36:15:d3:56:42:bf:49:57:9f:68:ef:fc:c4:e8:70:
5e:8f:c4:21:22:d5:72:8b:b1:0e:3e:dc:d6:fd:ef:
66:d3:e9:24:cf:4f:c4:d5:ae:04:2e:2e:52:fc:76:
5e:96:bd:e4:c4:32:1c:af:e6:76:c2:37:ab:0c:fc:
01:ee:07:dd:fc:2c:68:4b:58:0b:0c:09:a5:3a:0b:
18:31:ce:a6:8a:27:3e:30:b2:1f:57:8a:e9:50:2c:
bb:5b:03:dd:a2:a9:9a:86:68:73:97:5c:fb:a7:b9:
a0:09:cf:da:d4:3e:f8:48:cd:4d:ac:af:a9:a7:7f:
11:14:46:97:c2:a8:82:87:8d:83:2d:43:36:b8:c3:
16:17:d2:d2:48:24:2c:b7:11:1a:f0:97:a7:31:52:
12:45:43:00:a9:05:58:6e:64:33:00:fd:95:24:05:
e7:a9:83:96:82:a1:63:82:9a:61:4a:0c:db:13:67:
f4:ec:d3:81:7c:c1:2c:d5:a1:45:b0:0b:07:32:ce:
5d:62:d5:5a:99:b6:bc:4f:f1:31:c4:bc:3d:c0:6f:
34:96:e3:90:c4:61:c0:44:0f:ff:30:c2:c1:dd:fa:
d2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5E:9B:78:6D:FB:E0:C8:7F:73:6E:73:58:88:86:7B:CB:D0:89:01
X509v3 Authority Key Identifier:
keyid:0D:D4:41:C3:FF:AE:82:98:42:24:9E:94:4B:03:85:10:81:F4:D9:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdRBw_-ugphCJJ6USwOFEIH02eA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/I16beG374Mh_c25zWIiGe8vQiQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a7ef4d-dc44-4faf-9513-e9c9132836ff/1/DdRBw_-ugphCJJ6USwOFEIH02eA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.118.0/24
Signature Algorithm: sha256WithRSAEncryption
01:96:16:28:df:c9:1b:b2:3e:cc:2b:fa:2e:77:b3:4c:e6:28:
84:80:cb:a0:64:8c:36:64:39:b8:0e:b2:63:9c:e0:86:f7:c0:
19:57:c9:6f:99:53:0a:a0:df:ab:ef:e8:fe:cc:ca:03:5c:7e:
65:52:6d:03:57:7e:5a:bd:4e:d0:91:68:36:03:40:b6:52:c5:
b9:fa:5b:3d:24:76:40:87:15:b7:f1:d8:3a:d2:e6:17:58:74:
be:c9:02:18:c6:23:a9:0d:25:9f:d2:ca:73:82:65:1c:9d:2b:
76:7c:9b:1c:ac:55:bc:e0:b6:ea:75:a5:89:f4:91:c3:80:42:
20:f9:87:e2:39:a1:b2:83:5d:7c:d3:ef:49:b6:f6:9a:81:ba:
1a:01:e9:f2:8b:f8:91:39:b1:68:0a:46:62:96:33:c4:61:86:
d1:e0:0a:1f:43:4a:63:54:60:83:a8:7e:7b:78:2d:e8:58:e3:
93:1c:69:6e:ab:06:b0:15:52:d3:0e:10:d1:de:90:be:cb:0a:
2d:b7:df:c0:88:8c:05:07:02:9b:6d:7c:b5:6e:96:93:dd:88:
7c:9a:e6:73:d2:4e:80:01:53:2c:68:03:02:e0:d1:16:38:0f:
4e:bc:8f:6c:85:ee:b2:d3:66:5c:d9:e1:d6:f3:0f:e7:3c:4b:
e1:b1:b9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 18:30:09 2024 by rpki-client on console-fra.rpki-client.org